Privacy & Cookie Policy of www.rgmillumination.it

Information pursuant to Article 13 of EU Regulation 2016/679
on the protection of individuals with regard to the processing of personal data, as well as on the free movement of such data and repealing Directive 95/46/EC

WEBSITE USERS/VISITORS

According to the article 13 of the European Union General Data Protection Regulation 2016/679 (hereinafter referred to as “GDPR”)and Legislative Decree 196/2003 (hereinafter referred to as”Privacy Code”), as amended by Legislative Decree 101/2018, RGM Illumination Srl (hereinafter: “RGM” or “Owner”), makes known to those (“users” / “interested”) who access the website https://www.rgmillumination.it/ and on the social pages Facebook https://www.facebook.com/rgmillumination.it, Instagram https://www.instagram.com/rgmillumination/, Twitter https: // twitter. com / rgmillumination, Pinterest https://www.pinterest.it/rgmillumination/pins/, linkedin https://www.linkedin.com/company/rgm-illumination/ and Youtube https://www.youtube.com/user/rgmillumination the following information.

This information is provided exclusively in relation to the Data Controller’s site and not also in relation to other websites that can be consulted by the user through links shown or accessible on the site itself and not owned by the owner.

If you are a user of a social network and you do not want it to collect data about you through our website and to connect it to your data saved on the social network, please log-out from the social network before visiting our website.

1.Identity and contacts of the Data Controller

The Data Controller is RGM ILLUMINATION Srl – VAT number 13820691007 – with registered office in Via Gravedona, 50 – 00166 Rome in the person of its Legal Representative pro tempore.

You can contact the Data Controller at the following contacts:

Regular mail: Via Gravedona, 50 – 00166 Rome – IT

E-mail: amministrazione@rgmillumination.it

2.Types of data processed.

The data processed can be the following:

Personal data, such as any information concerning an identified or identifiable natural person (“data subject”). The natural person who can be identified, directly or indirectly, with particular reference to an identifier such as the name, an identification number, location data, an online identifier or one or more characteristic elements of his identity is considered identifiable Internet protocol (IP) address, name, surname, VAT number, tax code address, postcode, telephone, fax, e-mail.

Navigation data, the IT systems and the software dedicated to the functioning of this site can obtain, as part of their normal activities, certain personal data whose transmission is inherent to the use of Internet communication protocols.This category of data includes IP addresses or domain names of the computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and computer environment.

3.Purposes and Lawful Basis for the Processing
For all the users of the website, their personal data may be used for:

Purposes of data processing

Lawful basis for data processing

3.1 allow navigation through the public web pages of our site and check its proper operation; in this case, the category of data being processed will only be the IP addresses.

Legitimate interest of the Data Controller to ensure the proper functioning of its website. Art. 6 par. 1 lett. a) of the GDPR

3.3 responding to requests received through the e-mail addresses published on the site and through the instant messaging service on our social pages .

If you are a follower of our social pages we can contact you through these to make you aware of our promotions. Sending e-mail messages, through the form on the site or the social pages by the user entails the subsequent acquisition of the e-mail address of the same, necessary to respond to requests, as well as any other personal data included in the e-mail or in the instant message sent via social. In this case, the acquired data will be processed exclusively to respond to user requests.

Legitimate interest of the Data Controller to respond to spontaneous contact requests / information sent by users. Art. 6 par. 1 lett. a) of the GDPR

Processing is necessary in order to take steps at the request of the data subject prior to entering into a contract; Art. 6 par. 1, lett. b) of the GDPR.

3.4 promotional activities of cd. “Soft spam”, it means sending – through email or messages on social pages -comunications with information on services similar to those already purchased by the interested party.

Legitimate interest of the Data Controller to make communications to its customers regarding services similar to those they have already used. Art. 6 par. 1 lett. a) of the GDPR

3.6 defence of legal claims , expressly included therein for the purpose of debt collection.

Legitimate interest of the Data Controller to exercise his rights in court or out of court. Art. 6 par. 1 lett. a) of the GDPR

4. Communication and dissemination of personal data

The personal data of the interested parties may be communicated to specifically designated persons in charge, who operate under the Controller, or to subjects appointed as data processors. The Data Processors belong to the following categories: legal and tax consultants of the Data Controller, marketing consultants of the Data Controller, consultants who manage the website, company providing the web hosting service (Aruba Spa).

Every data communication will be performed in the respect of the data processing purposes described above. For users registered on the Facebook, Pinterest, Twitter and Instagram platforms and who interact with our page, they operate as independent Data Controllers.

The list of Data Processors can be requested to the Data Controller using contact details indicated in point 1.

Personal data may be disclosed to third parties in order to comply with legal obligations, or to comply with orders from public authorities empowered by law, or to defend and assert a right in Court.

5. How we process your data

Personal data will be processed with paper and IT tools by designated subjects, acting under the authority of the Data Controller and by Data Processors.

The data will be stored on servers owned by the Data Controller located in Italy at the Aruba Spa company

The fruition of the Data Controller’s services is reserved to subjects legally able, according to national legislation, to conclude contractual obligations. The Data Controller, where necessary for specific services, in order to prevent illegitimate access to the same, implements preventive measures to protect its legitimate interest, such as Tax ID checks and/or other permitted and appropriate checks.

Personal data retention period

The personal data collected for the purposes indicated in point 3.1 (ie to allow the function of the website) will not be stored.

Personal data collected for the purposes indicated in point 3.2. (respond to requests) will be kept for the time necessary to process the request.

The personal data collected for the purposes referred to in points 3.3 (soft spam) of this information will be kept for a maximum period of 2 years or until the withdrawal of consent and no later than three months from the same withdrawal.

7. Rights of the Data Subject

You have the right to access your data at any time and to exercise the other rights provided by the GDPR by using the contacts indicated in point 1. In particular, you have:

Right of access (Art. 15):

Right of rectification (Art. 16, GDPR)

Right to cancellation (Art. 17, GDPR)

Right to restriction of processing (Article 18, GDPR)

Right to data portability (Article 20, GDPR)

Right to object (Art. 21, GDPR)

Data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her. (art.22, GDPR)

Right to complain to the supervisory authority (Article 77, GDPR)

This privacy policy may be subject to change. Where substantial changes are applied to the processing of data of data subjects by the Controller, the latter will notify the former by publishing such changes with maximum evidence on his web pages or through alternative or similar means.

COOKIE POLICY

Name and contact details of the Data Controller.

The Data Controller is RGM ILLUMINATION Srl – VAT number 13820691007 – with registered office in Via Gravedona, 50 – 00166 Rome in the person of its Legal Representative pro tempore.

You can contact the Data Controller at the following contacts:

  • Regular mail: Via Gravedona, 50 – 00166 Rome – IT

  • E-mail: amministrazione@rgmillumination.it

What are cookies and how we use them

A “cookie” is a text file that is stored on computers, tablets, mobile phones and on any device used to surf the Internet, where it is stored and then retransmitted to the same sites on the next visit by the same user.

This website uses cookies to improve navigation and to provide services and features to its users and visitors. The use of cookies can be limited or disabled through the web browser; however, without cookies some or all of the site’s functions may be unusable.

In particular, our site uses strictly necessary technical Cookies which are essential to carry out the activities requested by the user, for example, to store information provided by the user while browsing the site or to manage the “login” status during the visit ; uses anonymized statistical cookies.

Types of Cookies

Cookies can be classified in several ways:

Session cookies: which are removed when the user closes the browser and which therefore have a duration limited to your visit;

Persistent cookies: which remain on the device used to surf the Internet for a specified time. These cookies have typical expiration dates and, therefore, their duration varies according to the cookie used.

First-party cookies and third-party cookies: depending on whether they belong to the owner of the website or to a third party.

Technical cookies

These first-party cookies are used to guarantee and facilitate the activities strictly necessary for the functioning of the Site for the normal navigation of the site and to allow its functions (such as allowing for example to authenticate to reserved areas, to save your session, your preferences navigation, saving products in the cart, remembering some selected criteria such as language, managing traffic distribution, etc.) and to collect some information in an aggregate (anonymous) form on users.

Statistical cookies

These cookies are used to collect information on the use of the site by users (number of visitors, pages visited, time spent on the site, etc.).

Profiling cookies

These are cookies needed to create user profiles in order to send advertising messages in line with the preferences expressed by the user within the pages of the Website.

For our website we use the following categories of cookies:

1. Technical cookies

These cookies are related to the functionality and aesthetics of the website. Functional cookies help to make a website usable by enabling basic functions such as page navigation and secure access to areas of the site. The website cannot function properly without these cookies.

This type of cookie is session cookie and no data is stored.

Statistical cookies

Matomo is a statistical software used by this website to analyze data directly and without the help of third parties. We do not send to Matomo any type of data on visits, neither in aggregate form, nor much less personalized.

The security features in Matomo that allow you to comply with the privacy protection laws are:

  • AnonymizeIP option, which clears the last two blocks of numbers in visitors’ IP addresses

  • System that allows visitors to disable the tracking and analysis of Web Analytics cookies (Opt Out function) on the site with a click. You can exercise the opt out function with the following option check box.

  • Deletion of logs generated by Matomo (Piwik) after a limited period of time (180 days).

For more information: //matomo.org/gdpr/

Cookie management

At any time, the user can refuse to accept all or some of the cookies used by this website by simply selecting, on his browser, the settings that allow him to refuse them.

Every browser has specific configuration instructions. Further information on the procedures to be followed to disable cookies can be found on the website of the browser provider.

Google Chrome https://support.google.com/chrome/answer/95647?hl=it

Firefox:%20e%20d%20i%20c http://support.mozilla.org/it/kb/Attivareisattivareookie

Internet Explorer: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies

Safari: https://support.apple.com/it-it/HT201265

By disabling cookies it is still possible to use some parts of the website.

Rights of the data subjects

You have the right to access your data at any time and to exercise the other rights provided by the GDPR by using the contacts indicated in point 1. In particular, you have:

Right of access (Art. 15):

Right of rectification (Art. 16, GDPR)

Right to cancellation (Art. 17, GDPR)

Right to restriction of processing (Article 18, GDPR)

Right to data portability (Article 20, GDPR)

Right to object (Art. 21, GDPR)

Data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her. (art.22, GDPR)

Right to complain to the supervisory authority (Article 77, GDPR)

This privacy policy may be subject to change. Where substantial changes are applied to the processing of data of data subjects by the Controller, the latter will notify the former by publishing such changes with maximum evidence on his web pages or through alternative or similar means.