PRIVACY & COOKIES POLICY

Privacy & cookies policy FOR THE WEBSITE www.cimes.it

Disclosure provided by C.I.ME.S. SRL, with registered office in Via Castellotti no. 15, a Maranello (Mo), VAT no. 01871960363, pursuant to and for the purposes of article 13, of Italian Legislative Decree 30 June 2003, no. 196, “Code for the protection of personal data”.



1. INTRODUCTION

In compliance with Italian Legislative Decree 30 June 2003, no. 196 (Privacy Code), as amended, we hereby provide the necessary information regarding the purposes and methods of processing of personal data to those who consult the pages of the company's website C.I.ME.S. SRL, with registered office in Via Castellotti no. 15, a Maranello (Mo), VAT no. 01871960363 (www.cimes.it), as Data Controller.
This disclosure should be considered valid only for this website (www.cimes.it) and not for other websites accessible through links provided on this website; on said third-party sites, the Data Controller cannot be held liable in any way.
Users are informed that this website is operated and updated by KRESCENDO Multimedia S.r.l., with registered office Via Gatti 3/51, 41043 in Formigine (MO), VAT No. 03058710363, the servers hosting the site are located in Italy.



2. TYPE OF DATA PROCESSED

Connection data
With regard to only aspects of a technical nature and protocols, we wish to inform you that:

  • The computer systems and software procedures used to operate this website may acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
  • This information is not collected to be associated with identified users, but by their very nature could, through processing and associations with data held by third parties, allow Users to be identified.
  • Included in this category of data are IP addresses or domain names of computers used by Users who connect to the site, URI (Uniform Resource Identifier) ​​of the requested resources, time of the request, method used to submit the request to the server, size of the file obtained in reply, numerical code indicating the status of response from the server (successful, error, etc..) and other parameters regarding the operating system and the User’s IT environment.
  • This data can be used to ascertain any liability in case of hypothetical computer crimes to the site.


Cookies

Cookies are small text files that are sent from the website visited on the User’s device (usually to the browser), where they are stored in to identify said device on the next visit. At each subsequent visit, in fact, cookies are resent from the User's device to the site. Each cookie generally contains: the name of the server from which the cookie was sent, expiry and a value, usually a unique number randomly generated from the computer. The website server that transfers the cookie uses this number to identify the User when they revisit the site or browse from one page to another.

Cookies can be installed not only by the operator of the site visited by the user (first-party cookie), but also from a site that installs cookies through the first site (third-party cookies) and is able to recognise them . This occurs because elements on the site visited may be present (images, maps, sounds, links to web pages in other domains, etc.) that reside on servers other than the site visited.

In general, cookies are classified into different types based on:

A. Duration:

  • session cookies (temporary) deleted automatically when the browser is closed.
  • persistent cookies active until their expiry date or their deletion by the user.

B. Origin

  • first-party cookies sent to the browser directly from the site being visited.
  • third-party cookies sent to the browser from other sites and not from the site being visited.

C. Purpose

  • technical cookies
  • browser/essential/performance/process or security cookies contribute to the operation of the site, such as the ability to browse between pages or access secure areas. If blocked, the website cannot function properly.
  • operational/preference/localisation/session status cookies allow information to be stored that change the behaviour or appearance of the site (preferred language, size of text and characters, geographic area where you are located). If it is blocked, the experience is less functional but not impaired.
  • statistical/analytical cookies, a) first-party cookies or b) third-party cookies with IP masking, without combination of assimilated data to the technical cookie for the purpose, is used to gather information and generate website usage statistics to understand how visitors interact.
  • non-technical cookies
  • statistical/analytical third-party cookies without IP masking, wit crossing data, are used to gather information to generate usage statistics, with possible user and website identification and tracking to understand how visitors interact.
  • profiling/marketing/advertising/tracking or conversions cookies for the selection of advertising based on what's relevant for a user (personalised advertisements). Profiling cookies are designed to create profiles relating to the user and are used in order to send advertising messages in line with the preferences expressed by the same during web browsing.

C.I.ME.S. SRL, has implemented the obligations provided by the Measure issued by the Personal Data Protection Authority "Identification of simplified procedures for the information and the acquisition of consent for the use of cookies - 8 May 2014 (Published in the Official Gazette no. 126 of 3 June 2014)", as well as the subsequent actions by the Authority with regards to "cookies."

The following provides details on cookies installed on this site, and all necessary information about how to manage User preferences in reference thereto. 
C.I.ME.S. SRL would like to inform Users that its website www.cimes.it may use the following types of cookies:

  • First-party technical cookies, which do not require User consent;
  • Analytical Third-Party cookies, assimilated to technical cookies, as tools that reduce identification power of the cookies have been adopted (by masking a significant portion of the IP address), and the third part does not cross the information collected with other information already held. In addition, note that the website www.cimes.it does not use cookies or profiling cookies and or assimilated thereto.
  • Specifically, in addition to the above, note that the website www.cimes.it uses:
  • First-party technical cookies
    Said cookies are necessary for the proper functioning of our website: these cookies are used to perform browsing or to provide a service requested by the User; they are not used for other purposes and are installed directly by the Data Controller. Without the use of these cookies, some operations may not be completed or would be more complex and/or less secure. Below, is a brief description of this type of cookies used by our website:
    • First-party C.I.ME.S. SRL
    • Name of the cookies: .......................................................................
    • Duration: session duration and/or persistence
    • Function of the cookies: .......................................................................
  • Analytical cookies by third-parties, assimilated to technical cookies
    Our website uses third-party cookies, for the management of statistics. In particular, our website uses Google Analytics: which is a web analytics service provided by Google Inc. ("Google") that uses cookies that are stored on the User's computer to allow statistical analysis in aggregate form in order of use of the website visited. Note that tools that reduce identification power of the cookies have been adopted (by masking a significant portion of the IP address), and the third part does not cross the information collected with other information already held. In particular, the Data Controller has enabled the IP address anonymisation function and signed the amendment on data processing in compliance with European rules laid down in EC Directive 95/46/EC. For these cookies we provide the name of third parties that manage them, and a link to the page where the User may receive information on the processing and give their consent.  Below, is a brief description of the types of cookies used by our website:
  • Social network buttons (Social Button) and widgets
    The Social Buttons are the buttons on the website depicting the social network icons (Facebook, Google+, Linkedin, Twitter and Youtube) and allow browsing Users by clicking directly on the icon to interact with corporate social platforms. The Social Buttons used by the www.cimes.it website are simple links that refer to the Data Controller’s accounts on social networks depicted. By using these buttons they are therefore not installed on the site third-party cookies. The following provides links where the User can view the data management privacy disclosure by the Social network to which the buttons refer.
  • https://www.facebook.com/help/cookies
  • http://www.google.com/policies/privacy/?hl=it
  • https://www.linkedin.com/legal/cookie_policy
  • https://support.twitter.com/articles/20170519-Twitter’s-use-of-cookies-and-similar-technologies-by-twitter#
  • https://www.youtube.it/t/privacy
    Google Maps provides interactive maps that can be personalised which are included within the web pages of sites that use this service. the www.cimes.it website incorporates the Google Maps widget to provide detailed information on the location of its registered and production office; this service may involve the installation of cookies, even profiling by Google (third-party). No information is instead shared by the www.cimes.it website, where the widget is incorporated. To access the combined Google privacy policy, which includes information on cookies as well as Google Maps, and for more information on how to disable these cookies, please consult the following link
  • http://www.google.com/policies/technologies/cookies/
  • In general, beyond the type of cookies used by this website, we wish to inform Users that, in addition to the protection provided by law, options are available to browse without cookies, which are for example:
  • Block third-party cookies: third-party cookies are generally not essential for browsing, and therefore can be rejected by default, through special browser functions.
  • Enable the Do Not Track option: the Do Not Track option is present in most browsers. Websites designed to comply with this option, when enabled, should automatically stop collecting some browsing data. As mentioned, however, not all websites are set up to comply with this option (discretionary).
  • Enable the "anonymous browsing" mode: through this operation you can browse without leaving a trace in the browser of browsing data. The sites will not remember the User, the pages visited will not be stored in the history, and new cookies are deleted. The anonymous browsing feature does not guarantee anonymity on Internet, because it serves not to store browsing data in the browser, whereas your own browsing data will continue to be available to the Websites operators and internet providers.
  • Directly delete cookies: there are special functions to do so in all browsers. Remember, though, that at every Internet connection new cookies are downloaded, therefore the delete operation should be performed periodically. If desired, some browsers offer automated systems for periodic deletion of cookies.
  • For any further information or clarification regarding so-called “cookies” please consult the following link: http://www.garanteprivacy.it/cookie Also, to learn how to limit, block and/ or remove cookies set on your device, please visit the following link: http://www.aboutcookies.org As mentioned above, the User can manage their own preferences with regards to cookies through their browser. To know the type and version of browser you are using, you recommend you click on "Help" at the top of the browser window, where you can access all the necessary information. If you know the type and version of your browser, just click the link corresponding to the browser that you are using to access the cookie management page.
  • Microsoft Internet Explorer
    http://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
  • Google Chrome
    https://support.google.com/accounts/answer/61416?hl=it 
  • Mozilla Firefox
    http://support.mozilla.org/en-US/kb/Enabling%20and%20disabling%20cookies
  • Safari
    http://www.apple.com/legal/privacy/ 

For more information about how to manage cookies, please visit the following web pages http://www.youronlinechoices.eu, http://www.allaboutcookies.org, https://tools.google.com/dlpage/gaoptout, http://aboutads.info/choices, http://www.networkadvertising.org/choices.

Data provided voluntarily by the User.

3. OPTIONAL NATURE OF DATA PROVISION

Further to the above stipulations with regard to browser data and cookies, the User is free to provide their information to the Data Controller through the addresses provided on the website www.cimes.it and/or completing the specific data collection forms on the site. Failure to provide certain data may, as appropriate, involve, however, the inability to implement requests for activities required by the User (for example, see mandatory fields inside information collection forms).

4. METHOD OF PROCESSING

Processing will be carried out in non-automated form (paper) and/or by means of automated tools (electronic, computerised and/or electronic), with strictly indispensable logic in relation to the purposes of the processing and with methods and tools to ensure the maximum security and confidentiality. Specific security measures have been adopted by the Data Controller to prevent loss of data, illegal or incorrect use and unauthorised access thereto.
The User's personal data will be stored and processed by the Data Controller in full compliance with the principles of fairness, legality, transparency and protection of confidentiality, strictly related to the purposes of the processing.
In particular, we inform you that the processing of personal data of Users in compliance with Appropriate Measures and Minimum Security referred to under "Title V - Data and Systems Security" of Italian Legislative Decree 196/03 (Art. 31 et. seq) and Annex B) of the aforementioned Code and that personal data shall be processed in compliance with the conditions specified in Art. 11 of the same Code The data will be stored at the Data Processes offices and/or at third parties from time to time identified, to act on the services requested by the User.
Data will be stored in a form which permits identification of the data subject for a period of time not exceeding that necessary for the purposes for which they were collected or subsequently processed, after which, if not expressly reconfirmed by the data subject they will be cancelled, subject to their transformation in anonymous form. The User can always request that processing of their data is stopped or cancelled.
Lastly, note that the data will not be transferred abroad.

5. COMMUNICATION AND DISCLOSURE OF INFORMATION

The Data Controller makes use of its employees and collaborators, as well as any external entities appointed as Data Processor or in charge of data processing in relation to the purposes for which they are collected. Personal data provided by the User, sent through the addresses provided on the website www.cimes.it and/or by filling out specific information collection forms on this site may be processed, therefore, by individuals specifically appointed by the Data Controller as Data Processor and/or persons in charge of data processing; these individuals will process data only when necessary for the performance of their duties by the Data Controller and only limited to the data necessary to perform said tasks

In addition, personal data may be disclosed to any third parties only where this is strictly necessary to provide specific services or information requested by the User.
Finally, note that the Data Controller will use internal or external computer technicians for occasional maintenance, update or assistance in case of website malfunction. No data deriving from the web service will, however, be disclosed or disseminated outside the company.

6. THE RIGHTS REFERRED TO IN "TITLE II - RIGHTS OF THE DATA SUBJECT" OF ITALIAN LEGISLATIVE DECREE 196/2003 "CODE CONCERNING THE PROTECTION OF PERSONAL DATA"

At any time, each User may exercise the rights provided by "Title II - Rights of data subject” of Italian Legislative Decree 196/2003 "Code regarding the protection of personal data" as shown below, in detail:

Art. 7. Right of access to personal data and other rights

1. The data subject is entitled to obtain confirmation of whether or not personal data concerning him/her, even if not yet recorded and their communication in intelligible form.

2. The data subject has the right to obtain information regarding:

  • the origin of personal data;
  • he purposes and methods of treatment;
  • the logic applied in case of processing carried out with the aid of electronic instruments;
  • the identity of the Data Controller, Data Processors and representative appointed pursuant to article 5, paragraph 2;
  • of the entities or categories of entity to whom or which personal data may be communicated and who or which may get to know said data in their capacity as designated representative in the country’s territory, data processor or person in charge of the processing.

3. The data subject shall have the right to obtain:

  • updating, rectification or, where interested therein, integration of the data;
  • erasure, anonymisation or blocking of data that has been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed;
  • certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected.

4. The data subject shall have the right to object, in whole or in part:

  • on legitimate grounds, to the processing of personal data concerning him/her, even though they are relevant to the purpose of the collection;
  • to the processing of personal data concerning him/her, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys.

Art. 8. Exercise of rights

1. The rights referred to in article 7 may be exercised by making a request to the Data Controller or Data Processor without formalities, also by a person in charge of the processing to which a suitable response shall be provided to said request without delay.

2. The rights referred to in article 7 may not be exercised by making a request to the Data Controller or Data Processor, or else by lodging a complaint pursuant to article 145, if the personal data is processed:

  • pursuant to the provisions of Italian Decree-Law 3 May 1991, no. 143 as converted, with amendments, into Italian Law 5 July 1991, no. 197 and subsequently amended, concerning money laundering;
  • pursuant to the provisions of Italian Decree-Law of 31 December 1991, no. 419,as converted with amendments into Italian Law of 18 February 1992,no, 172 and subsequently amended, concerning support for victims of extortion;
  • by Parliamentary Inquiry Committees set up as pursuant to article 82 of the Italian Constitution;
  • by a public body other than a profit-seeking public body, where this is expressly required by the provisions of law for purposes exclusively related to currency and financial policy, system of payments, control of brokers and credit and financial markets and protection of their stability;
  • pursuant to article 24, paragraph 1, letter f), limited to the period during which the performance of the investigations by defence or the establishment of the legal claim might be actually and concretely prejudiced;
  • by providers of publicly available electronic communications services with regard to incoming telephone calls, unless this may be actually and concretely prejudicial to performance of the investigations by defence counsel as per Italian Law of 7 December 2000 no. 397
  • or reasons of justice by judicial authorities at all levels and of all instances as well as by the Higher Council of the Judiciary or other self-regulatory bodies, or else by the Ministry of Justice;
  • pursuant to art. 53, without prejudice to Italian Law of 1 April 1981, no. 121

3. In the cases referred to in paragraph 2, letters a), b), d), e) and f), the Authority, also following a report submitted by the data subject, shall act with reference to article 157, 158 and 159; and, in the cases referred to in letters c), g) and h) of said paragraph, the Authority shall act as per article 160.

4. Exercise of the rights referred to in article 7 may be permitted with regard to data of non-objective character on condition that it does not concern rectification of, or additions to personal evaluation data in connection with judgments, opinions and other types of subjective assessment, or else the specification of policies to be implemented or decision-making activities by the Data Controller.

Art. 9. Method to exercise rights

1. The request addressed to the Data Controller or Data Processor may also be sent by registered letter, facsimile or e-mail. The Authority may identify other suitable system with reference to new technological solutions. If the request is related to the exercise of the rights referred to in article 7 paragraph 1 and 2, the request may also be made verbally; in this case, it will be annotated in summary form by either the person in charge of the processing or the Data Processor.

2. The data subject may grant, the power of attorney or representation, in writing to natural persons, bodies, associations or organisations in connection with exercise of the rights as per article 7. The data subject may also be assisted by a person of his/her choice.

3. The rights as per article 7, where related to the personal data concerning a deceased, may be exercised by any entity that is interested therein or else acts to protect the data subject or for family-related reasons deserving protection.

4. The data subject’s identity shall be verified on the basis of suitable information, also by means of available records or documents or by producing or attaching a copy of an identity document. The person acting on behalf of the data subject must produce or attach a copy of the proxy or the letter of attorney, which shall have been undersigned by the Data Subject in the presence of a person in charge of the processing signed and submitted together with a copy of a photocopy non ID document belonging to the data subject.

5. The request referred to in article 7, paragraph 1 and 2 may be worded freely without any constraints and may be renewed at intervals of not less than ninety days, unless there are well-motivated reasons.

Art. 10. Response to Data Subjects

1. With a view to effectively exercising the rights referred to in article 7, the Data Controllers shall adopt suitable measures in order to, in particular,

  • facilitate access to personal data by the data subjects, even by means of ad hoc software allowing accurate retrieval of the data concerning individual identified or identifiable data subjects;
  • simplify the method and reduce response time, also with regard to departments or services for public relations.

2. The data processor or the person(s) in charge of the processing shall be responsible for retrieval of the data, which may be communicated to the requesting party even verbally, or else displayed by electronic means - on condition that the data i easily intelligible in such cases also in the light of the nature and amount of the information. If requested, the data shall be reproduced on paper or magnetic media, or else transmitted via electronic networks.

3. Unless the request refers to either a specific processing operation or specific personal data or categories of personal data, the response provided to the data subject shall include all the personal data concerning the data subject that are processed by the Data Controller. If the request is made to a health care professional or health care body, the provision referred to n article 84, paragraph 1 shall apply.

4. If data retrieval is especially difficult, the response to the data subject’s request may also consist in producing or delivering copy of records and documents containing the personal data at stake.

5. The right to obtain communication of the data in intelligible form does not apply to personal data concerning third parties, unless breaking down the processed data or eliminating certain items from the latter prevents the data subject’s personal data from being understandable.

6. Data is communicated in intelligible form also by using legible handwriting. If codes or abbreviations are communicated, even by the persons in charge of the processing, the criteria for understanding the relevant meanings shall be made available.

7. Where it is not confirmed that personal data concerning the data subject exist, further to a request as per article 7, paragraph 1 and 2, letters a), b) and c), the data subject may be charged a fee which shall not be in excess of the costs actually incurred for the inquiries made in the specific case.

8. The fee referred to in paragraph 7 may not be in excess of the amount specified by the Authority in a generally applicable provision, which may also refer to a lump sum to be paid in case the data are processed by electronic means and the response is provided verbally. Through said measure the Authority may also provide that the fee may be charged if the personal data are contained on special media whose reproduction is specifically requested, or else if a considerable effort is required by one or more data controllers on account of the complexity and/or amount of the requests and existence of data concerning the data subject can be confirmed.

9. The fee referred to in paragraphs 7 and 8 may also be paid by bank or postal draft, or else by debit or credit card, if possible upon receiving the relevant response and anyhow within fifteen days of said response.

Users are informed that, to exercise the foregoing rights, they can send a specific request to the Data Controller, at the following addresses:

MAIL cimes@cimes.it – FAX + 39 0536 943403

The right to complain to the Authority can be exercised at any time (http://www.garanteprivacy.it/).

7. THE IDENTITY OF THE DATA CONTROLLER, AND IF DESIGNATED THE REPRESENTATIVE IN THE COUNTRY’S TERRITORY PURSUANT TO ARTICLE 5 AND THE DATA PROCESSOR

The Data Controller is C.I.ME.S. SRL, with registered office in Via Castellotti no. 15, a Maranello (Mo), VAT no. 01871960363, in the personal of it legal representative pro tempore. The Data Processor has not appointed a Data Processor.

8. AMENDMENT TO THE “PRIVACY AND COOKIES POLICY” DOCUMENT

The Data Processor data reserves the right to amend this Privacy & Cookies Policy, at any time, giving notice to the Users on this page. We ask you, Users, therefore to consult this page frequently, taking as reference the last modified date specified at the bottom.
In the event of any updates or changes to said document, Users must be in a position to understand and evaluate the changes made, by comparison between the different versions of the policy disclosure, occurring over time, as the previous versions of the document can be consulted by Users on the website.
In case of non-acceptance of any changes to this privacy disclosure, the User must cease use of this website and request the Data Controller to delete their personal data by sending specific notice to the Data Controller to the following addresses:

MAIL cimes@cimes.it – FAX + 39 0536 943403

Unless otherwise specified, this Privacy & Cookies Policy will continue to apply to personal data collected up to that point. Any questions, comments and requests regarding this privacy disclosure, we ask our users to contact us at:

MAIL cimes@cimes.it – FAX + 39 0536 943403

However, we encourage Users to report any difficulties viewing this Privacy & Cookies Policy, in order to possibly provide alternative arrangements of information.

Date last modified ......................................................