This page describes the website management procedures with regard to the Personal Data of users who consult and interact with the web services of the http://www.isolex.eu website.
The Policy complies with the provisions of articles 13-14 of Regulation (EU) no. 679/2016 (hereinafter GDPR), and is based on Recommendation no. 2/2001, adopted by the Working Party of European Personal Data Protection Authorities, the WP29, replaced with effect from 25 May by the European Data Protection Board, in order to establish minimum requirements for the online collection of personal data.
The Data Controller is ISOLEX S.r.l., which Data Subjects can contact by writing to: email@example.com
A. This website offers users an area where they can request commercial information. To access these services, Data Subjects are asked to enter some identifying Personal Data, necessary for the provision of the information.
These data are used to enable access to the information and are stored for the time necessary for the fulfilment of the request, and for a period of no more than 5 (five) years after fulfilment of the request, in order to provide information of the same type, or to allow the fulfilment of requests for additional technical support.
Data are processed on the basis of a specific request from the Data Subject, relating to a pre-contractual (information) service which he/she has requested (art. 6 (1) b of the GDPR).
B. IT systems and software procedures that are designed for the functioning of this web site will acquire – during the course of their normal operations – certain Personal Data whose transmission is implicit in the use of Internet communication protocols. These data are not gathered for association with identified subjects, but by their very nature, when processed or associated with data held by third parties, they might allow users to be identified.
This category of data includes IP addresses or domain names of the PC’s used by users who connect to the site, as well as Uniform Resource Identifiers of the requested resources, the time of the request, the method utilized in presenting a request to the server, the size of the file obtained in response, the numerical code specifying the state of the response provided by the server (positive outcome, error, etc..) and other parameters concerning the operating system and the IT environment of the user.
These data are used for the sole purpose of obtaining anonymous statistical information concerning use of the site and to check that it is operating correctly and they are deleted immediately after processing. Data might be used in order to identify those responsible in the event of IT crimes against the website; except in this case, data concerning web contacts are not currently stored for more than seven days.
Data are processed on the basis of the legitimate interest of the Data Controller in safeguarding the good operation of the website and monitoring the statistics on its use (art. 6 (1) f of the GDPR).
Personal Data may be processed manually, or with IT tools, which guarantee their security and confidentiality and prevent unauthorised access to and the dissemination, modification or removal of the data, thanks to appropriate technical, physical and organisational security measures.
Rights of Data Subjects
Data Subjects are entitled to obtain confirmation as to whether or not their Personal Data are held, even if not yet recorded, and the communication in intelligible form of the said data, their origin, and purposes and procedures for which they are used, and the logic applied if they are processed by electronic means. Data Subjects are also entitled to obtain the updating, rectification or, if this is in their interest, the supplementation of the data, the erasure, anonymisation or freezing of data held in breach of the law, and the portability of the data to another Data Controller. Data Subjects may also lodge a claim with the Personal Data Protection Supervisory Authority.
Data Subjects may exercise their rights under articles 15 to 20 of the GDPR at any time by writing to ISOLEX S.r.l. at the contacts provided above.
Cookies are pieces of code installed inside the browser which assist the Data Controller in the provision of the Service in accordance with the purposes described. However, the User’s consent may be required for some of the purposes for which Cookies are installed.
When Cookies are installed on the basis of consent, this may be freely withdrawn at any time, by following the instructions provided in this document.
Some of the services listed below gather statistics in aggregate, anonymous form and may not require the User’s consent, or may be managed directly by the Data Controller as described – without the aid of third parties.
If the tools listed below include services managed by third parties, these might implement User tracking procedures over and above the information provided here and without the Data Controller’s knowledge. Users should consult the privacy policies of the services listed for detailed information.
The services in this section enable the Data Controller to monitor and analyse traffic data and keep track of user behaviour.
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected in order to track and examine the use of this Website, compile reports and share them with the other services developed by Google.
Google may use Personal Data to contextualise and customise the adverts it displays.
In addition to the information provided in this document, Users may manage their Cookie preferences directly in their own browsers and – for example – prevent third parties from installing them. Browser preferences can also be used to delete Cookies already installed, including the Cookie containing consent to the installation of Cookies by this site, if saved. Further information concerning the management of Cookies with some of the most widely used browsers is available, for example at: Google Chrome, Mozilla Firefox, Apple Safari e Microsoft Internet Explorer.
In addition to the above, Users can also use the information provided by EDAA (EU), Network Advertising Initiative (USA) and Digital Advertising Alliance (USA), DAAC (Canada), DDAI (Japan) or other similar services. Tracking preferences for most advertising tools can be managed using these services. The Data Controller therefore advises Users to make use of these resources as well as the information supplied in this document.
The Data Controller ISOLEX S.r.l., which Data Subjects can contact by writing to: firstname.lastname@example.org
Personal Data (or simply Data)
Personal Data are defined as any information that may identify or allow the identification of a natural person, directly or indirectly and also in association with any other data, including a personal identification number.
This is information collected automatically by this Website (or by the third-party applications integrated in this Website), including: the IP addresses or domain names of the computers used to connect to this Website; addresses in URI (Uniform Resource Identifier); notation of the requested resources; the time of the request; the method used to issue the request to the server; the size of the file obtained in response; the numerical code indicating the status of the response given by the server (success, failure etc.); the country of origin; information on the user’s web browser and operating system; various visit times (e.g. the time spent browsing each page); and details on the path followed within the Application, with particular reference to the sequence of pages viewed and parameters relating to the User’s operating system and IT environment.
The person using this Website, who is also the Data Subject unless otherwise specified.
The natural person to whom the Personal Data refer.
Data Processor (or Processor)
Data Controller (or Controller)
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data and the tools used, including the security measures relating to the operation and use of this Website. Unless otherwise specified, the Data Controller is the owner of this Website.
This Website (or this Application)
The hardware or software by means of which the User’s Personal Data are collected and processed.
The Service provided by this Website as defined in the relative terms (if any) on this website/application.
European Union (or EU)
Unless otherwise specified, all references to the European Union in this document apply to all current member states of the European Union and the European Economic Area.
Small piece of data stored in the User’s device.
This policy statement is drawn up on the basis of a large number of items of legislation, including articles 13 and 14 of Regulation (EU) 2016/679.
Last changed: 07 January 2019