This page describes how to manage the website in relation to the processing of personal data of users who visit it.
This information is also provided in compliance with EU Regulation 679/2016 (GDPR), the Provisions of the Guarantor for the protection of personal data and other applicable data protection regulations (hereinafter “regulations”), to those who interact with this website by electronic means from the address: http://www.mikai.it/ corresponding to the home page of the website. The information is provided only for this website and not for other websites that may be consulted through links by the user.
- Data Controller
The data controller is Mikai S.p.A., with registered office in Genoa, Via P.Gobetti 56r Zip Code 16145 F.C. /VAT No. 00972790109.
- Category of personal data
The computer systems and software procedures used to operate this website acquire during their normal operation some personal data whose transmission is implied in the use of Internet communication protocols.
This information is not collected to be associated with identified interested parties, but by their very nature could allow users to be identified by means of processing and association with data held by third parties.
This category of data includes IP addresses or domain names of the computers used by users who connect to the website, the URI addresses (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters related to the operating system and the computer environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the website and for checking its correct functioning; the data is deleted immediately after processing. The data could be used to determine the responsibility in case of hypothetical computer crimes against the website: except for this event, the web contacts data will be kept for the time strictly necessary for the pursuit of the Data Controller’s purposes.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this website entails the subsequent acquisition of the sender’s address, which is necessary in order to respond to requests, as well as any other personal data included in the message. The same applies to services requested by users by filling out forms, questionnaires or similar procedures.
Data related to the reserved area: the reserved area can only be accessed by users authorized by Mikai S.p.a commercial management. The processed data are personal identifying data (user, etc.) as users authorized to access this restricted area or otherwise processed in the relations development with the Data Controller to allow registration to the area itself and to allow you to use the services reserved for registered users (display statistics and aggregated sales data, etc.).
- Purpose of the processing and transfer of data
Subject to the provisions of point 2 regarding browsing data and cookies, the data provided/collected will be processed for the management and operation of the Website and to follow up user requests.
The personal identifying data of users of the reserved area will be processed to allow access to the reserved area of the website for 40 days.
The Data Controller does not transfer data to the non-EU territory.
- Provision of data, legal basis of processing and consequences in case of non-disclosure of data
On what concerns the above mentioned browsing data, the transmission is included in the use of Internet communication protocols.
The processing of the aforementioned browsing data is necessary for the pursuit of the legitimate interest of the Data Controller with reference to the above mentioned purposes and is carried out according to the regulations.
The processing of data provided voluntarily by the user by e-mail and filling out the questionnaires/forms or similar methods on the website is necessary to follow up the requested services. Failure to provide such data may cause the impossibility of fulfilling the requests.
The processing of the aforementioned personal identification data is necessary to access the reserved area and use its functionalities.
As regards the cookies, their use is aimed at the correct operation of the website and the collection of statistical data in aggregate form.
- Data processing methods
The data processing will be mainly carried out with the support of electronic or automated tools, according to the methods and with suitable means to guarantee the security and privacy of the data, in compliance with GDPR provisions. In particular, all technical, IT, organizational, logistic and procedural security measures will be taken in order to guarantee the level of data protection provided by law, allowing access only to persons authorized to process by the Data Controller or to the processors assigned by the latter.
Recipients/categories of recipients of personal data of the website may be other freelancers and/or other subjects, ICT service providers, etc. normally assigned as data Processors or authorized to process data. They can be exceptionally communicated to Judicial Authorities and Judicial Police for the protection of rights.
- Data storage
User data for the reserved area is kept for 40 days.
The technical data will be kept for the time strictly necessary for the pursuit of the purposes of the Data Controller.
As regards the browsing data, using anonymous Google Analytics, the data is kept for up to 14 months.
The data provided voluntarily by the user by e-mail and filling out of the questionnaires/forms or similar procedures on the website are kept for the time necessary to provide the required services and for the time required by the regulations.
- Rights (article 15 and GDPR)
The interested party has the right – in the cases provided for by law to request: access to personal data, the correction; the cancellation of personal data; the portability of personal data; the limitation of the processing of personal data; to object to the processing; etc.
The interested party may contact the Data Controller at the addresses indicated above in order to exercise these rights.
- Right to lodge a complaint
The interested party has the right to lodge a complaint with the Guarantor for the protection of personal data.
- Different purposes
If the Data Controller intends to further process the data for a purpose other than that for which it was collected, it will provide the interested party, prior to such further processing, the information regarding this different purpose and any further applicable information.
The Data Controller reserves the right to modify or amend this policy at any time.