Villa Iachia Azienda Agricola is the Controller of the personal data collected in the form and by using services and website. The list of the processors is kept at its registered office.
A cookie is a small text file containing some brief information related to the activities of a user on a website, which have been stored on the accessing device. Cookies does not damage your device and consent us to offer you a better and faster navigation on our website.
Any additional information, such as those that allow us to send you advertising content, is stored only after your consent expressed with the simple navigation on the website or with the mechanisms described below.
We invite you to read the following information to better understand what kind of cookies we use and how to manage your preferences.
Kind of cookies used on our website:
- Technical cookies: they are needed to the website functioning and allows you to accede to its functions (the so-called navigation cookies) and are mostly session cookies. We may use also functional cookies which consent us to save your preferences and settings, improving your navigation experience on our website (e.g. to visit the website section in the chosen language or according to the country from which it is browsed; to save your preferences in terms of acceptance of the cookies or not). These cookies will not be deleted upon shutting down the browser to ensure their functionality and to save your preferences; they have, however, a predetermined maximum duration (up to X days) and after the expiry period they automatically are deactivated. These cookies and their collected data will not be used for other purposes. No consent is required to install technical cookies; we proceed to install them automatically by accessing the website or following your request of certain functionalities. At any time, you may decide to disable cookies changing the browser settings; however, in such a situation, you may not be able to use the full functionality of this website.
- Analytical Cookies: used to collect information related to the use of the website and for anonymous statistical analysis in order to improve the website and to make the content more attractive and accommodating the wishes of the user. This kind of technical cookies collects anonymously data related to the user’s activity and how he/she logged into the website. The analytical cookies are sent by the website itself or by third-party domains.
- Third-party cookies: they incorporate third-party functionalities into the website pages, such as icons and the expressed preferences in social network sharing the contents of the website or using third-party softwares (such as mapping softwares and others offering additional services). These cookies are sent by third-party domains and by the partner websites offering their functionalities on the website pages.
Villa Iachia Azienda Agricola in accordance with the current regulations, shall not be required to ask for consent for the technical and analytical cookies, as far they are necessary to the service provision.
For the other types of cookies, User may express his/her consent with the following:
– through specific browser configurations or related software used to navigate around the web pages;
– changing settings in using third-party services.
Both solutions may prevent the user to use or display some part of the website.
When acceding the website, it will be displayed a banner informing you that we use third-party’s cookies and by closing the banner itself or continuing to browse in the website, the user gives his/her consent in using cookies.
We will keep a record of your possible consent using a technical cookie. By this way, we avoid showing you the cookies banner during the following website visits; if you decide to delete the technical cookies, we will lose your consent and display to you the cookie banner again on you next visit.
Activation and deactivation of cookies by browser
You shall select a browser from the list of the most popular software changing cookies settings. If your browser does not appear, please refer to the manufacturer’s documentation.
INFORMATION ON PROCESSING OF PERSONAL DATA
This information is provided under Article 13 of legislative Decree. nr. 196/2003 – Codex regarding the protection of personal data (the “Privacy Code”) and Article 13 of Regulation (EU) 2016/679 – “European General personal data protection Regulation”.
The Company [rag_soc] having its registered office in [address], tax code [number] in the person of [mr_mrs_Controller], as processing Controller (hereinafter referred to as “Controller”), hereby inform you that, pursuant to the Article 13 of legislative Decree. nr. 196/2003 (hereinafter referred to as “Privacy Code”) and to the Article 13 of Regulation (EU) 2016/679 (hereinafter referred to as “GDPR”), data will be processed as follows:
[rag_soc] cares about your personal data protection and respect the applicable personal data protection Regulation (Privacy Code and GDPR 2016/679). Your personal data shall be processed as confidential and may be transferred to third-party only in accordance with this Policy or with your consent. We process your personal data you provide us using the website and/or after the registration to the website.
In particular, we process:
- the personal, identifying and non-sensitive data (particularly, name, surname, tax code, VAT number, e-mail, telephone number – hereinafter “Personal data” or “data”) provided by you during the registration on the website;
- any data not provided by you but acquired in compliance with Article 14, paragraph 5 of GDPR, whose transmission is connected to the use of Internet communication protocols (including but not limited to, visits to the page, amount of data transferred, Status message on access, session ID, IP and URL addresses, etc.).
These data allow us to reconstruct the course of your visits to the website.
Your personal data are processed:
- A) without your expressed consent (Article 24 (a), (b), (c) of the Privacy Code and Article 6, b), e) of the GDPR) with the following purposes:
- to process a contract request;
- the implementation of pre-contractual measures taken in response to your request;
iii. to compile internal statistics;
- to fulfill the pre-contractual, contractual, accounting and fiscal obligations arising from the existing relationships;
- to comply with obligations of laws, regulations, Community legislation or as ordered by an authority;
- to protect the vital interests of the data subject or of another natural person;
vii. to perform the public interest tasks or related to the exercise of official authority by the Controller;
viii. to prevent the emergence of fraudulent activities or harmful practices affecting the website;
- to pursue a legitimate interest by the Controller or third party in compliance with Article 6 (f) of the GDPR;
- to exercise the Controller’s rights, (including without limitation, his rights of defense);
- B) Only with your specific and irrevocable consent (Articles 23 and 130 of the Privacy Code, and Article 7 of the GDPR), for marketing purposes, such as:
- to send by e-mail any newsletter, commercial communication and/or promotional material on products and/or services offered by the Controller, which are different and/or dissimilar from those already acquired.
- Provision of personal data
The provision of data for the purposes laid down in Article 2 (A), n. i and ii) is necessary, since any refusal to supply the required personal data would not ensure your registration on the website or the reply to your requests.
The provision of data for the purposes laid down in Article 2 (B) is optional. You may decide to not provide any data or to withdraw the possibility of processing previously provided data. In this case, you will not receive our newsletters anymore, while we will continue to offer you our services and you will retain the right of registration on the website.
- Methods of data processing
The processing of your personal data is carried out by means of the procedures as mentioned in Article 4, n. 2 of the GDPR, namely: the collection, recording, organization, retention, consultation, processing, alteration, selection, extraction, comparison, use, networking, blocking, notification, erasure and destruction of data. The processing of your personal data shall be based on the principles of correctness, lawfulness and transparency and may be carried out electronically to store, manage and transfer them; it will be carried out using instruments which are, mutatis mutandis and according to the state of the art, suitable to guarantee the security and the confidentiality and procedures suitable to prevent the risk of loss, the unauthorized access, the illicit use and the dissemination of data.
- Retention period of data
The Controller will process your personal data as long as to fulfill the purposes mentioned above but not later than 10 years from the termination of the relationship with the service purposes and not later than 2 years from the collection of data with marketing purposes. Upon expiry of this period, data will be erased or made anonymous.
- Data access
The personal data processed by the Controller won’t be disseminated or give access to undetermined people in any form, including their public disclosure or their merely consultation. Your data may, however, be disclosed to the Controller’s employees and to certain external parties working with them. Your data may be made accessible to:
- the Controller’s employees and associate workers, qualified consultants managing the website and the provision of the related services, in their capacity as internal managers and/or as personal data processors and/or as system administrators;
- third parties (including but not limited to, credit institutions, professional firms, consultants, insurances companies, etc.) performing outsourcing activities on the Controller’s behalf, in their capacity as external managers and/or as personal data processors.
Your data may be made accessible to persons eligible pursuant to any legal provisions, regulations and Community legislations.
- Disclosure of data
Without your express consent (ex Article 24 (a), (b), (d) of the Privacy Code and Article 6 (b), (c) of the GDPR), the Controller may disclose your data with the above-mentioned purposes to supervisory bodies, judicial authorities and to any third-party to which the disclosure of data is mandatory under the law.
- Data processing
The data will be managed and stored on the Controller’s server and/or the third-party companies’ server – involved and duly named as data controllers – which are located within the European Union, in accordance with the Article 45 and followings of the GDPR.
The server is currently located in San Cesario sul Panaro (Mo) via della Meccanica 50. Your data won’t be processed outside the European Union. It is understood in any case that, if it shall become necessary to move the location of the server to Italy and/or to the European Union and/or to countries outside the European Union, this shall always take place in accordance with the Article 45 and followings of the GDPR. In such a situation, however, the Controller ensures that the data processing outsite the European Union will take place in accordance with the applicable law, also, if necessary, entering into agreements to guarantee an adequate data protection level and/or adopting the European Commission’s standard contractual clauses.
- Navigation data
IT systems and software procedures for the functioning of the website shall acquire, during the normal course of operation, some personal data whose transmission is implicit in the communication protocols of Internet. It concerns information that is not collected to be associated with specific individuals, but by their own very nature could, through the processing and association with data held by third parties, allow users to be identified (i.e. other parameters related to the operating system and the user). Those data shall be used by the Controller only in order to draw some anonymous statistical information about the use of the site and also to check their correct use, and they are erased immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the Site.
- Data subject’s rights
In your capacity as the data subject, you are entitled to exercise the rights granted in Article 7 of the Privacy Code and the Article 15 of the GDPR, namely:
- to obtain confirmation of the existence or not of personal data relating to you, although not yet recorded, and the communication of the same in an intelligible form;
- to obtain information about: a) the source of the personal data; b) the purposes and methods of the processing of data; c) the method applied in electronical processing of data; d) the identification details of the Controller, the managers and the appointed representative pursuant to the Article 5, n.2 of the Privacy Code and the Article 3, n. 1 of the GDPR; e) to whom the personal data may be communicated or who may access them in their capacity as designated representative in the territory of the Country, managers or agents;
iii. to obtain: a) updating, rectification or, where interested therein, integration of the data; b) erasure, anonymization or blocking of data that have been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed; c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected.
- to object, in whole or in part: a) on legitimate grounds, to the processing of personal data concerning the same, even though they are relevant to the purpose of the collection; b) the processing of your personal data carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys through the use of automated calling systems without human intervention, by electronic mail and/or by traditional marketing means such as telephone and/or paper-based mail. It should be noted that the data subject’s right to object, as explained above in recital b), for direct marketing purposes through automated systems shall extend to the traditional ones and it is still his/her right to object even only in part.
The data subject could therefore decide to receive only traditional communications, only electronical ones, or neither of the two types.
If applicable, you have also the rights according to the Articles 16 – 21 of the GDPR (the rights of reply, to be forgotten, of restriction of processing, to data portability and to object) and the right to lodge a complaint with the Supervisory Authority.
- Procedure for the exercise of any right
You have the right to ask to the Controller to access to your personal data, its rectification and removal, the integration of the complete data and the limitation of the processing; to receive your data in a structured, commonly used and automatic device readable format; to withdraw at any time the given consent to your data processing and to object in part or fully to the use of your data; to lodge a complaint with the Supervisor Authority as well as to exercise your rights pursuant to the applicable law.
You may, at any time, exercise your rights sending:
a registered letter to Villa Iachia azienda agricola having its registered office in Via Aquileia 2 – 33050 Ruda (UD) or sending an e-mail to email@example.com
If the data subject is younger than 16 years of age, the data processing is lawful only if and to the extent that the consent is given or authorized by the child’s parent or custodian, for which the identification data and copies of ID documents have been acquired.
- Controller, data processors and persons in charge of the processing
The data Controller is Azienda Agricola Villa Iachia having its registered office in Via Aquileia 2 – 33050 Ruda (UD) , Tax CodeIT00560350324 in the person of Andrea Iachia
The updated list of data processors and persons in charge of the processing is kept at the Controller’s registered office.
- Changes to the present document