EOLO SpA acknowledges the importance of personal data protection and considers their protection one of the principal goals of its own activity, pursuant to EU Regulation 679/2016 - General Data Protection Regulation ("GDPR") –, to the “Codice in materia di protezione dei dati personali” (D. Lgs. 196/2003) as amended by D. Lgs. 101/2018 and to other applicable national legislation (hereinafter GDPR, the Codice in materia di protezione dei dati personali and other applicable national legislation are collectively referred to as "Applicable Law").
EOLO invites you to carefully read this policy, as it contains important information on personal data protection and the security measures adopted. The policy is intended only for the website www.eolo.it and it does not apply to other websites that may be connected via external links.
EOLO informs that the processing of personal data will be based on the principles of lawfulness, correctness, transparency, purpose limitation and conservation, data minimization, accuracy, integrity and confidentiality.
Data Controller and Data Protection Officer
The Data Controller is EOLO SpA with headquarter in Via Gran San Bernardo, 12 - 21052 - Busto Arsizio (VA), (hereinafter, "EOLO" or "Controller"), mail: firstname.lastname@example.org.
EOLO appointed a Data Protection Officer ("DPO") for any information concerning the processing of personal data carried out by the Controller, available at: email@example.com.
Personal information we collect about you
a. Navigation data
During their normal operation, computer systems and software procedures used within the website www.eolo.it, acquire data whose transmission is implicit in the use of Internet communication protocols. This information could allow users identification through processing and associating with other data. This category includes navigation data such as, internet protocol address (IP) used to connect your computer to the internet; computer and connection information such as browser type and version; information about the device (for example the device ID), the request time, the method used in submitting the request to the server, the size of the file obtained in response, the numeric code indicating the server response status (ok, error, etc.); other parameters relating to the operating system and the user's IT environment.
These data are only used to obtain anonymous statistical information about the use of the site, to check its correct functioning and to allow the correct execution of the functions requested by the user. Data will be stored for technical time necessary for these purposes, without prejudice to further storage for any verification of cybercrimes, for security reasons or specific regulatory obligations.
b. Data voluntarily provided by the user
Data voluntarily provided are communicated by the user in relation to information requests (also via chat), for the purchase of a service through the website www.eolo.it, or for other request types addressed to EOLO.
The user is free to provide the personal data requested unlike the automatically collected data necessary to process IT and electronic protocols. These data will be only processed to allow the use of the involved services and to handle requests; their retention is indicated in the appropriate information available at https://www.eolo.it/home/chi-siamo/informazioni-legali/privacy/informativa-privacy.html.
c. Cookies and similar technologies
What are cookies
Cookies are small text files stored on your computer or mobile device when you visit a website. These allow the site to determine if the used device has already visited the site and, in this case, it improves the access methods. Moreover, they allow to memorize some information on the user navigation and make it accessible to other sites (third parties) that use these tools to determine user preferences.
For "technical" cookies is not necessary user consent because some of the aforementioned operations could not be performed or would be more complex and / or less secure without them.
Instead, user consent is required for cookies used to analyse behaviour and send personalized advertising messages (so-called "profiling" cookies) or to obtain, through services provided by third parties, aggregate information on the number of users and on how they visit the site (so-called "analytics cookies").
Depending on their characteristics and duration, cookies can be distinguished as follows:
- session cookies are temporary files that exist only for the duration of the user's browsing session. When the browser is closed, session cookies are automatically deleted;
- persistent cookies are files that remain stored in the user's device until a specific termination date is reached. They allow the site to remember user data and settings for later reference so that it is not necessary to log in again.
- EOLO website cookies
Below, we report information on the type, purpose, third parties and access for each cookie operating on the site.
- "Third-party" cookies
While browsing on our site, it is possible that some cookie doesn’t belong to EOLO domains but to a different site. Third Parties may send, through the EOLO websites, cookies that allow to understand the habits and preferences expressed by users while browsing, in order to adapt the advertisements shown on the website.
For third-party cookies, identified in the following table, it is possible to access the policy and the consent forms, by clicking on the links below:
All cookies can be removed directly from the browser settings. In this case, some of the site's services may not work as expected and it may be possible to lose the user's preferences. You can find information on how to manage cookies in your browser at the following web addresses:
The data may be processed by EOLO's employees appointed to pursue the aforementioned purposes. They have been expressly authorized for processing and have received adequate operating instructions.
Rights of interested parties
Within the limits of the Applicable Law, the interested party has the right to ask EOLO, at any time:
- access to his/her data, their cancellation, the correction of incorrect data, the integration of incomplete data, as well as the processing limitation or opposition;
- to receive data in a structured, commonly used and readable by an automatic device format, and, if technically feasible, to transmit them to another controller ("right to data portability").
Requests should be sent by e-mail to the address:firstname.lastname@example.org.
Pursuant to the Applicable Law, the interested party has the right in any case to fill a complaint on behalf of the competent Control Authority (art. 77 GDPR), as well as to appeal to the appropriate competent judge (art. 79 GDPR).
Last update: October 2019