WEBSITE PRIVACY POLICY

Dear User,

Naviris S.p.A.., in its capacity as data controller, hereby provides you with information regarding the processing of the personal data of the Users who consult the website www.naviris.com (the "Site") pursuant to Article 13 of EU Regulation no. 679/2016 (the "Regulation").

This policy is provided only for the Site and not for other websites that may be consulted by the user using links.

1. Data controller for personal data processing

The data controller for the processing of your personal data, collected when the website is used, is NavirisS.p.A., Piazza Borgo Pila 39 Torre B interno 1, 16129 Genova, Italy, tax code and registration number with the Register of Companies of Genova: 02654990999 (hereinafter also referred to as the “Controller"), e-mail address: privacy@naviris.com

2. Types of data and purposes and legal basis of data processing

Navigation data will be collected through the Site and will be processed, with the support of computer systems, solely for the purposes of technical management of the site.

Navigation data: the computer systems and software procedures used to operate the Site acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow Users to be identified.

This category of data may include IP addresses or domain names of computers used by users connecting to the site, URIs (Uniform Resource Identifiers) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc.) and other parameters regarding the user’s operating system and IT environment.

This data is used only to obtain anonymous statistical information on the use of the site and to monitor the correct functioning of the Site.

3. Cookies

The Site makes use of cookies as better specified in the Cookie Policy banner provided accessing the website.

4. Recipients of personal data

Your personal data will not be disclosed to third parties, with the exception of suppliers involved in the activities and always strictly for and in line with the purposes set out above.

5. Transfer of personal data to a third country or an international organisation

The Controller may transfer your personal data outside the European Economic Area ("EEA"). In order to protect your data in the context of international transfers, the Controller will adopt appropriate safeguards, i.e. European Commission adequacy decisions pursuant to Article 45 of the Regulation, standard contractual clauses approved by the European Commission and contractual instruments providing adequate safeguards (Article 46 of the Regulation); alternatively, transfers will take place subject to the exceptions provided for in Article 49 of the Regulation (i.e. consent of the data subject, necessity of the transfer for the purposes of contractual/pre-contractual measures, overriding public interest, right of defence before the courts, vital interests of the data subject or of other persons, data entered in a public register).

6. Period of retention of personal data

The technical data will be kept for the time necessary to provide the requested services.

7. Nature for the processing of personal data

The navigation data collected are necessary to allow the data subject to browse the site.

8. Rights of the data subject

We inform you that, as the data subject for the processing, you have the right to obtain from the Data Controller:

Right of access:

(Article 15 of the Regulation)

confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, the right to obtain, among other things, access to your personal data and information regarding the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipient to whom the personal data have been or will be disclosed.

Right to rectification:

(Article 16 of the Regulation)

(i) rectification without undue delay of inaccurate personal data concerning you and (ii) completion of your personal data, where incomplete.

Right to erasure ("right to be forgotten"):

(Article 17 of the Regulation)

erasure of personal data concerning you without undue delay (the Data Controller has the obligation to erase personal data without undue delay in the cases set out in Article 17 of the Regulation).

Right to restriction of processing:

(Article 18 of the Regulation)

restriction of processing in the cases set out in Article 18 of the Regulation.

Right to data portability:

(Article 20 of the Regulation)

receipt in a structured, commonly used and machine-readable format of personal data concerning you; the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, in the cases set out in Article 20 of the Regulation.
Right to object for processing carried out under Article 6(1)(e) or (f): (Article 21 of the Regulation)right to object, at any time, on grounds relating to your particular situation, to processing of personal data concerning you based on point (e) or (f) of Article 6(1), including profiling based on those provisions.

You also have the right to lodge a complaint with the Supervisory Authority for the protection of personal data if you believe that the processing of your personal data violates the provisions of EU Regulation no. 679/2016.

 

Cookies Policy

Introduction

This page describes how the website www.naviris.com operates and is managed with regard to the processing of the personal data of the users who consult it and use its services.

The information is provided pursuant to art. 13 of EU Regulation no. 679/2016 ("General Data Protection Regulation" or "Regulation") to those who interact with NavirisS.p.A.’s web services, accessible electronically from the address www.naviris.com.

The information is provided only for the website www.naviris.com and not for other websites that may be consulted through the links present and for which Naviris S.p.A. is not responsible.

 

1- Scope

The Policy applies to Naviris web site.

2- References

#

ID

Description

[R1]NV-10-008General principles of the privacy management system
[R2]NV-10-011Website privacy policy

 

3- Data Controller

Following consultation of the Website, data relating to identified or identifiable persons may be processed.

The data controller for the processing of your personal data is Naviris S.p.A., VAT no. 02654990999, with registered office in Genova, Piazza Borgo Pila 39 Torre B Int. 1, 16129 (hereinafter also referred to as “Controller" or “Company”), e-mail privacy@naviris.com.

 

4- Place and principles of data processing

The processing connected to the web services of the Website takes place at the headquarters of Naviris S.p.A. or at the premises of its suppliers who support the Data Controller. In general, these systems are, however, kept within the boundaries of the European Union.

The data collected during the use of the Website are processed, exclusively by authorized persons, with automated and non-automated means, and for the time necessary to achieve the purposes for which they were collected.

In order to prevent the loss of data, as well as unlawful or incorrect use thereof, specific security measures are implemented to ensure confidentiality and to avoid illegitimate access by third parties or unauthorized personnel, in accordance with legal obligations.


 

5- Types of data processed

Anonymous navigation data

The computer systems and software procedures used to operate the Website www.naviris.com acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of computers used by users connecting to the Website, the URIs (Uniform Resource Identifiers) of resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the user’s operating system and IT environment.

This data is used only to obtain anonymous statistical information on the use of the Website and to check its correct functioning.

 

6- Cookies

6.1- What are cookies?

Cookies are a kind of “memorandum", short "lines of text" containing information that can be saved on a user's computer when the browser (e.g. Chrome or Internet Explorer) calls up a certain website.

Thanks to cookies, the server sends information that will be re-read and updated each time the user returns to that site. In this way, the website can automatically adapt to the user, improving the browsing experience.

 

6.2- What cookies are for?

Cookies are used for different purposes, have different characteristics, and can be used both by the controller of the site you are visiting, and by third parties.

Cookies are mainly used for:

  • improving the user’s navigation experience by, for example, storing information on specific configurations for users accessing servers;
  • providing the operator of the site with information on user browsing, obtaining statistical data on the use of the site and improving navigation.

 

6.3- Technical cookies

These cookies are necessary to allow:

  • navigation and use of the website (for example, they allow you to authenticate your identity to gain access to restricted areas, "navigation or session cookies");
  • navigation based on a set of selected criteria (e.g. language, "functionality cookies") in order to improve the service provided to the user.

 

6.4- Analytics cookies

They are essential to navigate within the site, using all its features. The installation of cookies does not require the user’s consent, but only carries the obligation to inform users of their use.

Analytics cookies are designed to create anonymous user profiles and are used to analyse the flow of navigation on the site.

Cookies other than the technical ones indicated above are installed or activated only following the consent given by users.

A record of this consent is kept for subsequent visits. The user must always be able to revoke all or part of the consent given.

 

6.5- Which cookies does Naviris use?

The Website www.naviris.com uses the following cookies:

Cookie nameControllerExpiryDescription
Orejimewebsite.naviris.staging.fides.ioPermanent (1 year)This cookie stores the user's cookie consent preferences, including mandatory, tracking and optional cookie types.

 

6.6- Management of cookies from browser settings

The Website works optimally if cookies are enabled. You can still prevent cookies from being installed on your computer by using the browser configuration tools. If you disable cookies completely, you may disable some features of the Website or prevent them from working properly. Even with all cookies disabled, your browser will continue to store a small amount of information, necessary for the basic functionality of the Website.

Below are direct links to support pages on the sites of different browsers for more information on how to change these settings:

 

7- Purpose and legal basis of personal data processing

Your personal data will be processed, with the support of computerised means, limited to the purposes of managing the Website. The processing, where not attributable to the performance of a contract and/or for compliance with a legal obligation to which the Controller is subject, shall take place on the basis of the legitimate interest pursued by the Controller aimed at carrying out checks on the processes and activities performed by the Company.

 

8- Recipients of personal data

Your personal data may be transmitted, strictly in relation to and compatible with the purposes set out above, to the following categories of subjects:

  • service providers that perform outsourcing activities on behalf of the Controller, in their capacity as external data processors.

The contact details of the external processors carrying out activities on behalf of the Controller may be requested by you at the following e-mail address: privacy@naviris.com.

 

9- Transfer of personal data to a third country or international organisation

The Controller may transfer your personal data outside the European Economic Area ("EEA"). In order to protect your data in the context of international transfers, the Controller will adopt appropriate safeguards, i.e. European Commission adequacy decisions pursuant to Article 45 of the Regulation, standard contractual clauses approved by the European Commission and contractual instruments providing adequate safeguards (Article 46 of the Regulation); alternatively, transfers will take place subject to the exceptions provided for in Article 49 of the Regulation (i.e. consent of the data subject, necessity of the transfer for the purposes of contractual/pre-contractual measures, overriding public interest, right of defence before the courts, vital interests of the data subject or of other persons, data entered in a public register).

 

10- Period of data retention

The data retention periods are set out in the table in section 6.5.

 

11- Rights of data subjects

We inform you that as a data subject you have the right to obtain from the Controller:

Right of access:

(Article 15 of the Regulation)

confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, the right to obtain, among other things, access to your personal data and information regarding the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipient to whom the personal data have been or will be disclosed.

Right to rectification:

(Article 16 of the Regulation)

 

(i) rectification without undue delay of inaccurate personal data concerning you and (ii) completion of your personal data, where incomplete.

Right to erasure ("right to be forgotten"):

(Article 17 of the Regulation)

erasure of personal data concerning you without undue delay.

Right to restriction of processing:

(Article 18 of the Regulation)

restriction of processing in the cases set out in Article 18 of the Regulation.

Right to data portability:

(Article 20 of the Regulation)

receipt in a structured, commonly used and machine-readable format of personal data concerning you; the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, in the cases set out in Article 20 of the Regulation.

Right to object for processing carried out under Article 6(1)(e) or (f):

(Article 21 of the Regulation)

objection, at any time, on grounds relating to your particular situation, to the processing of personal data relating to you under Article 6(1)(e) or (f), including profiling on the basis of such provisions.

 

At any time, you will be able to exercise the above-mentioned rights by sending a request to the following e-mail address: privacy@naviris.com.

You also have the right to lodge a complaint with the Supervisory Authority for the protection of personal data if you believe that the processing of your personal data violates the provisions of EU Regulation no. 679/2016.

This policy is subject to change. Users are invited to periodically consult the cookies policy on the Website for updates.