Privacy Policy – Location Systems

Privacy Policy – Onboard Video Surveillance

Privacy Policy – Wearable Video Surveillance Equipment

Information on the processing of personal data pursuant to EU Regulation no. 679/2016 (GDPR) and other applicable regulations

Protecting your privacy and personal data is an important concern to which we pay close attention in all our business relationships and in all the services we offer. We respect the confidentiality of your personal data and always act in accordance with the provisions of data protection law and this Privacy Policy.

Premise

This page is intended to inform the interested party/user on how ASM Taormina uses personal data collected from the website www.asmtaormina.com and related online applications, regardless of the purpose of the connection. This policy does not extend to websites accessed by users via links. The methods used to collect and manage personal data processing are described, identifying: type of data, legal basis, recipients of processing (including any foreign recipients), retention period, rights of the data subject, whether there is an obligation to disclose data and any consequences of refusal, any use of automated decision-making processes (including profiling), and categories of data processed. Visiting this website may result in the processing of data relating to identified or identifiable individuals pursuant to Articles 4 and 24 of EU Regulation 2016/679 – GDPR. This information is collected, evaluated, and subsequently used exclusively for authorized and permitted purposes and is not disclosed to third parties, except with express authorization or when specified for the achievement of the purposes. This policy is provided in compliance with the provisions of Articles 4 and 24 of the GDPR. 12, 13 and 14 of EU Reg. 2016/679 – GDPR.

1. Data Controller

The Data Controller is ASM Taormina – Municipal Services Company. Via Mario and Nicolò Garipoli, 98039 Taormina, Messina. .

The processing operations will be carried out by persons appointed by the Data Controller, who operate under his direct authority in compliance with the instructions received.

2. Personal Data Collected and Processed

Browsing data. The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. The data collected includes information relating to access, such as IP addresses and domain names of computers used by users connecting to the site, as well as other parameters relating to the IT environment used by users (such as: the Internet browser used, the operating system, the domain name of the website last visited before accessing our website, the number of visits, the time spent on our website, and the pages accessed). This data is used solely to obtain anonymous statistical information on the use of the site and to verify its proper functioning. This data, collected automatically, is not associated with data from other sources, thus preventing the identification of data subjects. However, we reserve the right to retrospectively verify and associate such data if concrete indications of illegal use are brought to our attention.

Data provided voluntarily by the user. Some personal data (for example, name, surname, email address, etc.) are requested from the User for registration or to use the online services on our website. In this case, personal data is collected, to the extent possible, on a voluntary and optional basis. In any case, each of the services on our website has a dedicated Privacy Policy that allows the User to understand precisely how their data is processed. We believe this is the best way to ensure the accuracy, transparency, and intelligibility of the information provided to the User.

If, however, the User decides to spontaneously and freely send email or mail to the addresses indicated on this website, this will result in the subsequent acquisition of the sender’s email address or street address, which is necessary to respond to requests, as well as any other personal data included in the message. The personal data collected in this case relates exclusively to: – Identification data (for example: name, surname, address, telephone number, fax number, email address, etc.). – Tax information (if required by law – for example, tax code, VAT number, etc.). Personal data sent to us that are different in nature or not related to those specified above (such as sensitive or judicial personal data) will be processed in compliance with EU Regulation 2016/679 and related legislation only with the express consent of the Data Subject and only if necessary to achieve the requested purposes. Otherwise, they will be ignored and not processed or destroyed, with the exception of data necessary to fulfill contractual or legal obligations.

Cookies: This website uses various cookies to improve and facilitate navigation. For full information on this website’s cookies, please visit the relevant page.

3. Lawfulness, Purpose and Methods of Processing

The personal data provided by the Data Subject while interacting with this website will be processed in compliance with the lawful conditions pursuant to art. 6 of EU Regulation 2016/679 (express consent to processing, performance of a contract or pre-contractual measures, compliance with legal obligations, pursuit of the Data Controller’s legitimate interests) and will be processed and used, to the minimum extent necessary, exclusively for the following purposes:

  1. Operation and improvement of navigation within this website.
  2. Providing, improving, and supporting our online services.
  3. Response to requests submitted using the contact form (dedicated information provided at the time of use).
  4. Legitimate interest of the Data Controller.
  5. Obligations required by law and regulations.

In any case, personal data will be processed electronically, electronically, and on paper, and entered into relevant databases, which will be accessible only by the Data Controller and its designated persons. With regard to data processed in any form, we emphasize that all appropriate security measures have been adopted to protect the rights, freedoms, and legitimate interests of the Data Subject. Furthermore, specific security measures are implemented to prevent data loss, illicit or improper use, and unauthorized access. This website is provided via an encrypted HTTPS connection (SSL certificate).

4. Mandatory provision of data

The data transmitted through the implicit use of Internet communication protocols, as previously specified, are automatically provided and are necessary to proceed with navigation on the website.

Regarding the online services offered on this website, providing the data indicated as mandatory in the fields of the relevant forms is necessary to obtain what you request, carry out the service and/or establish any professional or working relationships.

Aside from what is specified above, the User is free to provide any other personal data while browsing this site and when filling out the online service forms.

5. Place of Data Processing

The processing related to this site’s web services takes place at the aforementioned Data Controller’s headquarters and is handled only by authorized personnel or by persons assigned to occasional maintenance operations. The acquired data is stored on web servers housed in dedicated server farms located in Italy and the EU.

6. Eventuali Destinatari dei Dati

Data is never shared with third parties except when necessary and/or involved in achieving the purposes and/or providing the service and/or fulfilling orders or contracts. Furthermore, we may be required to disclose personal data in order to comply with legal obligations and/or meet legal requirements and/or enforce rights and agreements.

  • Data transmission to third parties: The interested party’s data will not be transmitted to third parties except in the case of fulfilling an explicit request or the need to perform a contract or service.
  • Data transmission abroad: We do not transmit data to foreign parties.
  • Compliance with laws and similar obligations: Only when necessary, we will disclose your personal data in order to:
    1. apply or comply with a law, regulation, order issued by a public authority or mandatory measures;
    2. detect and prevent security threats, fraud, or other malicious activity;
    3. protect and/or enforce the rights and property of ASM Taormina or third parties;
    4. protect the rights and personal safety of our employees and third parties.

In relation to the purposes indicated in the previous points, the data may also be communicated to the following subjects or categories of subjects indicated below, regularly appointed for this form of processing in full compliance with the applicable measures:

  • Accounting firms when communication is required by law, or is in the interest of the subject (natural or legal person);
  • Law firms when communication is required by law, or when communication is in the interest of the subject (natural or legal person);
  • Technical and/or Commercial Consultants to fulfill requests or provide services.

7. Data Retention Period

Upon completion of the service or provision of the service, or unless otherwise specified in the dedicated information notices accepted by the Data Subject, personal data will be retained exclusively for historical or statistical purposes or for any obligations, in accordance with applicable laws, regulations, EU legislation, and the codes of ethics and good conduct subscribed to pursuant to Article 40 of EU Regulation 2016/679, for a period as required by applicable law (usually 10 years), or, if not subject to any law, for a period not exceeding 5 years. Beyond this period, personal data will be retained anonymously or destroyed.

8. Lack of an Automated Decision-Making Process

This website does not use an automated decision-making process and, in particular, does not use a profiling system.

9. Rights of the interested parties

The interested party has the right to:

  • obtain confirmation of the existence or otherwise of personal data concerning him or her, even if not yet recorded, and their communication without delay in an intelligible form;
  • request information, in writing, about your personal data stored by us (e.g., origin, purpose, methods, categories, logic applied, retention period, rights, identification data of the Data Controller, subjects or categories to whom the data may be disclosed);
  • withdraw consent to data processing;
  • request deletion of data;
  • request the transformation and/or limitation or blocking of data processed in violation of the law;
  • request the updating, rectification or integration of data;
  • obtain your personal data, provided to the Data Controller, so that you can transmit them to another Data Controller;
  • request certification that the aforementioned operations have been brought to the attention of those to whom the data have been communicated, except in the case in which such fulfillment proves impossible or involves the use of means disproportionate to the right protected;
  • to object, in whole or in part, for legitimate reasons, to the processing of personal data concerning him or her, even if pertinent to the purpose of the collection;
  • lodge a complaint with the Italian Data Protection Authority (garanteprivacy.it).

For further information regarding privacy laws and rights, the interested party can visit the website of the Italian Data Protection Authority at: www.garanteprivacy.it.

The interested party wishing to exercise his or her rights must use the contact details of the Data Controller.