Privacy Policy

Stretto di Messina S.p.A. > Privacy Policy

PERSONAL DATA PROCESSING POLICY

PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679

PURPOSE OF THIS POLICY
Pursuant to Regulation (EU) 2016/679 (hereinafter the “Regulation”), this page describes the methods for processing the personal data of users consulting Stretto di Messina SpA’s website, which may be accessed electronically at the following addresses:

  • strettodimessina.it

This policy does not regard other websites, pages or online services that may be accessed via hypertext links posted on the websites but referring to resources outside Stretto di Messina SpA’s domain.

DATA CONTROLLER
As a result of consultation of the websites listed above, data relating to identified or identifiable natural persons may be processed.
The Data Controller is Stretto di Messina SpA, with registered office in Via Marsala 27, 00185 Rome RM (Email: info@strettodimessina.it, PEC: info@pec.strettodimessina.it, tel.: +39 06 858 261).

LEGAL BASIS OF DATA PROCESSING
The personal data referred to on this page are processed as part of the Data Controller’s overriding legitimate interest in presenting to the public – on this “showcase website” – the goods and services offered by the Company, and giving website users the opportunity to request information, via the forms and procedures set out and implemented in the “Contacts” section.

TYPES OF DATA PROCESSED AND PURPOSES OF PROCESSING

Browsing data   

As part of their normal functioning, the computer systems and software procedures used to operate this website acquire certain personal data, which are implicitly transmitted when internet communication protocols are used.

This category of data includes the IP addresses or domain names of users’ computers and terminals, the URI/URL (Uniform Resource Identifier/Locator) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to a user’s operating system and computer environment.

These data, which are needed to use web services, are also processed for the purposes of:

  • gathering statistical data on the use of services (most visited pages, number of visitors per time slot or per day, geographical areas of origin, etc.);
  • monitoring the correcting functioning of the services offered.

Browsing data are not kept for more than seven days, and are deleted immediately after their aggregation (unless they are needed by judicial authorities to investigate criminal offences).

Data communicated by users
The optional, explicit and voluntary transmission of messages to the contact addresses, as well as compilation and submission of forms on the above websites, entails the acquisition of senders’ contact data, which are needed in order to reply, as well as all the personal data included in the communications.
Specific notices, regarding the provision of certain services, will be posted on the pages of the above websites.

Cookies and other tracking systems
The use of non-persistent cookies is strictly limited to meeting the requirements for safe and efficient browsing of the websites. Storage of session cookies in terminals or browsers is under users’ control, while at at the end of HTTP sessions, data relating to cookies is registered in service logs, including storage times, albeit no longer than seven days, just like any other browsing data. Further details may be found in the Cookie policy published on this website.

DATA RECIPIENTS
The recipients of the data collected after consultation of the above websites include the following parties designated by the Regulator, pursuant to article 28 of the Regulation, as data processors.
The personal data collected are also processed by Company personnel, who act on the basis of specific instructions provided on data processing purposes and procedures.

DATA SUBJECTS’ RIGHTS
In the cases provided for, data subjects have the right to obtain access to their personal data, and its rectification or erasure, as well as to restrict or object to the processing of data regarding them (article 15 et seq. of the Regulation). The relevant request should be submitted to the Data Controller and/or Data Protection Officer by contacting them at the addresses shown above.

RIGHT TO LODGE COMPLAINTS
Data subjects who deem that the processing of personal data relating to them carried out through this website is in breach of the Regulation have the right to lodge a complaint with the Regulator, as provided for in article 77 of the Regulation, or to take appropriate legal action (article 79 of the Regulation).

The Data Protection Officer
Among many other innovations, the GDPR introduces the role of Data Protection Officer (DPO), who is responsible for overseeing compliance with the Regulation.

Stretto di Messina SpA’s Data Protection Officer may be contacted at: protezionedati@strettodimessina.it