DOM S.R.L. Unipersonale with administrative headquarters in Via Isei 30, 47521 Cesena FC - Italy, VAT no. 03349060404 (hereinafter "Data Controller"), provides below the privacy policy for the website www.domedizioni.com (hereinafter the "Website"), as data controller of the personal data of users who visit and are registered on the Website (hereinafter the "Users") pursuant to art. 13 of Italian Legislative Decree 196/2003 (hereinafter the "Privacy Code") and pursuant to art. 13 of EU Regulation 2016/679 of April 27, 2016 (hereinafter "Regulation", the Regulation and the Privacy Code together being defined as "Applicable Regulations"). The right to privacy and protection of personal data of Users is of utmost importance for the Data Controller. For further information related to this privacy policy, Users may contact the Data Controller at any time, using the following methods:
- By sending a certified e-mail or a registered letter with return receipt to the administrative headquarters of the Data Controller
- By sending an email to the address
[email protected]1. Purposes of the processingUsers’ personal data will be processed lawfully by the Data Controller pursuant to art. 6 of the Regulations for the following purposes:
1. Browsing of the website, with respect to the possibility of detecting User data that are necessary on a technical level, such as the IP address, while browsing the website.
2.Sending newsletters, when specifically requested by the data subject.
3.Responding to your requests for information, sent to us through the contact form provided.
4.Legal obligations, i.e. to fulfil obligations envisaged by the law, an authority, a regulation or European legislation.
5.Creating Custom Audiences on the Facebook advertising platform (Facebook Ads) to show targeted ads.
6. Creating Customer Matches on the Google advertising platform (Google Ads) to show targeted ads.
The provision of personal data for the processing purposes specified above is optional but necessary, as failure to provide the data will make it impossible for the user to browse the Website, register with the Website, and take advantage of the services offered by the Data Controller on the Website. With regard to the purposes set out in points 1/a, 1/b, 1/c, the legal basis for the processing is in fact the execution of the services provided through the Website and requested by you (pursuant to article 6, paragraph 1 , letter b of Privacy Regulation 2016/679). With regard to the purposes referred to in point 1/d of the previous paragraph, the legal basis of the processing is to fulfil a legal obligation of the data controller (pursuant to article 6, paragraph 1, letter c of Privacy Regulation 2016/679).
2. Processing methods and data retention timesThe Data Controller will process the Users’ personal data using manual and IT tools, with logic strictly related to the purposes themselves, and, in any case, in order to guarantee the security and confidentiality of the data. The personal data of the Website’s Users will be kept for the time strictly necessary to carry out the purposes described in paragraph 1 above, or in any case as necessary for the legal defence of the interests of both the Users and the Data Controller. With regard to the purpose referred to in 1.b., the data will be kept until you unsubscribe from the newsletter using the appropriate link contained therein or through the procedures for exercising your rights referred to in paragraph 4.
3. Scope of disclosure and dissemination of the dataThe Users’ personal data may be disclosed to the employees and/or contractors of the Data Controller who have been appointed to manage the Website. These parties, who are formally appointed by the Data Controller as "appointed processors," will process the User’s data exclusively for the purposes specified in this policy and in compliance with the provisions of the Applicable Regulations. The Users’ personal data may also be disclosed to third parties who may process personal data on behalf of the Data Controller as "External Data Processors," like, by way of example, suppliers of IT and logistics services involved in the operation of the Website, outsourced or cloud computing service providers, professionals, and consultants. Users have the right to obtain a list of any data processors appointed by the Data Controller by submitting a request to the Data Controller in the manner outlined in paragraph 4 below. With regard to points 1.e and 1.f, the data will be kept and used until you object through the procedures for exercising your rights referred to in paragraph 4.
4. Rights of Data SubjectsUsers may exercise the rights granted to them by the Applicable Regulations by contacting the Data Controller in the following ways:
- By sending a certified e-mail or a registered letter with return receipt to the administrative headquarters of the Data Controller
- By sending an email to the address
[email protected] Pursuant to the Applicable Regulations, the Data Controller informs Users that they have the right to know
1.the origin of the personal data;
2. the purposes and methods of processing;
3. the logic applied in the event of processing carried out with the aid of electronic instruments;
4. the identity of the data controller and data processors;
5. the parties or categories of parties to which the personal data may be disclosed or that may come to know them as processors or appointees.
Furthermore, Users have the right to:
1. Access, update, correct, or, if interested, complete the data.
2. Erase, transform into anonymous form or block data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed.
3. Confirmation that the operations referred to in letters a) and b) have been brought to the attention of those to whom the data have been disclosed or disseminated, except in the case in which this obligation proves impossible or involves a use of means manifestly disproportionate to the right protected.
Furthermore, Users have:
1. The right to withdraw consent at any time if the processing is based on their consent.
2. The right to the portability of the data (the right to receive all their personal data in a structured format, commonly used and readable by automatic devices), the right to restrict the processing of personal data, and the right to their erasure ("right to be forgotten").
3. The right to object:
i. In whole or in part, to the processing of their personal data for legitimate reasons even if pertinent to the purpose of their collection.
ii. In whole or in part, to the processing of their personal data for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communications.
iii. If personal data are processed for direct marketing purposes, at any time, to the processing of their data for such purposes, including profiling in so far as it is related to such direct marketing.
4. If they believe that the processing that concerns them violates the Regulation, the right to lodge a complaint with a supervisory authority (in the member state where they usually reside, work or where the alleged violation occurred). The Italian Supervisory Authority is the Personal Data Protection Authority – www.garanteprivacy.it - www.gpdp.it – E-mail:
[email protected]5.Managing newsletters, DEM and periodic communicationsThe company uses email marketing services to occasionally send newsletters and DEM (direct email marketing) to those who have chosen to subscribe by completing the relevant form on the website or by checking the relevant checkbox when requesting information of any kind using the contact form on the website. These services enable the company to manage a database containing email contacts, telephone contacts or contacts of any other kind which can be used to communicate with Users. These services may also enable the company to collect data showing the date and time Users see messages, the Users’ interaction with them and information on the clicks on the links inserted in the messages sent. Users may request their data be removed from the database by sending a request to:
[email protected] or by clicking on the unsubscribe link found in every communication sent (newsletter).