Natur World SpA has adapted its practices to satisfy the European Union’s Privacy Policy requirements as indicated in EU Regulation n. 679/ 2016 (GDPR), by adopting a “Privacy Model” that best reflects the legal, technical and organisational measures implemented by the company in order to ensure the EU Regulation’s principles and the relevant legal framework are fully applied and respected, all while constantly monitoring and adapting to the law as required. This Privacy Policy was compiled in order to define how the website is managed with regards to the treatment of the personal data of those who visit or use the website, in accordance with art. 13 GDPR 679/ 2016, and of those who provide their own contact details. Data Controller and Processor with regards to data treatment is Natur World, acting as its own effective legal representative and with its legal headquarters located at Piazza della Repubblica, 9 – 20121 Milan (MI) and its offices at Via Roma 8/4, 16121 Genoa.
The collection of browsing data
In order to function properly the IT systems and software used by the website will collect personal data, the transmission of which is implicit when using the internet and its protocols. Such data includes, for example, IP addresses, domain names used by users connecting to the website, addresses in URI format (Uniform Resource Identifier), the time and date of their server’s requests, the method by which a server’s request is made, the amount of data transmitted, the numerical code indicating the status of the answer given by servers and other parameters that relate to the User’s operating system and IT systems. This data may be used by the Data Controller solely to gather information of a statistical, anonymous nature with regards to how the website is used in order to identify Users’ preferred pages and thereby provide increasingly tailored content and ensure the site functions correctly. Should the competent Authorities request it, such data may be used in order to determine culpability in case of potential IT-related crimes committed against the website or its Users.
Purposes of data treatment
All data collected will be treated legally and fairly and be used to provide the website’s services. Other than the automatic collection of browsing data, Users may also choose to provide their own personal data, which will be collected by the Data Controller exclusively from a specific Form provided by the website, which contain fields to be filled in by Users should they choose to do so. The Form provided by the website relates to a request for information. The data collected in this fashion may be used to provide the services requested. The sending of this information or any other relevant communication will only take place if expressly requested by the User.
How the data is treated
The Data Controller will treat all data in full compliance with all relating legal obligations, ensuring the relevant legal and contractual terms are followed, along with all relevant regulations. The collections and processing of data will be carried out digitally and on paper, in ways that strictly adhere to the above-mentioned purposes and which always ensure the security and confidentiality of the data treated. The Data Controller will treat and elaborate personal data both directly and via treatment carried out by other entities who are nominated as Data Processors and who may operate within or without the Data Controller’s own structure, or as a third party to whom the Controller has assigned the role of Processor. Personal data may be used to reply to requests for information or be sent to Public Agencies or Authorities if the Controller is required to do so by law, following a legal request. All data provided willingly by Users, by connecting to this website and sending their personal data, such as their email address and/or any further personal data provided, in order to receive email-related services, will be acquired by the Company and treated exclusively to achieve the purposes listed in this Policy.
All data provided will be treated in such a way that allows the Controller to best carry out their services as requested by the User and to comply with all obligations as defined by current laws and regulations.
Data conservation period
All personal information and data with regards to users/visitors collected by this website, including data freely provided in order to receive informative material or any other kind of communication, will be kept solely to provide requested services and for the duration of said services (up to 24 months).
DATA OWNER RIGHTS
The owners of the personal data in question have the right to access their data and any information with regards to how their data is treated at any time, in accordance with art. 15 of EU Regulation n. 679/2016. They also have the right to request the deletion or correction of their collected data, in accordance with articles 16 and 17 of the EU Regulation. By the same Regulation they may also request the data’s limitation (in accordance with art. 18) or its portability (in accordance with art. 20). The Data Controller commits to informing the owner of the data in question about the above cases, should the owner request them to do so. In order to exercise the above-listed rights or if the data’s owner has any issues relating to this matter or should they require any further information with regards to the information herein provided, we ask that they kindly write to info@natur-world.it