Privacy Policy

Information pursuant to Articles 13 and 14 of Regulation (EU) 2016/679 – WEB

With this document (‘Information Notice’), the Data Controller, as defined below, wishes to inform you of the purposes and methods of the processing of your personal data and of your rights under Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and on their free movement (‘GDPR’). This Policy may be supplemented by the Data Controller where any additional services you request involve further processing.

1. Data Controller and Data Processor, DPO : Alfadental Srls

2. VAT NUMBER: 03536970928

3. Address and contact details: Via Koch, 5, 09128 Cagliari CA | +39 070 796 8255 | segreteria@alfastudiodentistico.it

The Data Controller and the DPO, also through the designated structures, will take care of your request and provide you, without undue delay and in any case, at the latest, within one month from its receipt, with the information related to the action taken regarding your request.

We inform you that if the Data Controller has doubts as to the identity of the natural person making the request, it may request further information necessary to confirm the identity of the data subject.

Categories of Data Subjects: Natural persons, legal persons, public and private organisations.

2. Processing

2.1. WEB processing

PROCESSING: WEB – NAVIGATION DATA

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation, and is deleted after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site.

Nature of data provision: Compulsory

Consequences of refusal to provide data Failure to provide data will make it impossible for the company to provide the web service provided.

Minimum data protection measures: to be indicated

Personal data storage period:

Your personal data will be actively processed for the duration of the first and third party analytical systems.

Reference processing rules: The legal basis for registration to the Site and the provision of related services is the need to execute your request, in compliance with Article 6(1)(b) GDPR. Therefore, the acquisition of your prior consent to the processing is not necessary.

2.2. WEB processing

PROCESSING: WEB – SENDING OF CURRICULUM VITAE

Through the ‘Work with us’ section of the Site, you may provide your personal data and CV to the Controller in order to apply for open positions or any future positions. Your personal data are processed exclusively for the management of your application and related activities.

Nature of data provision: Obligatory

Consequences of refusal to provide data Failure to provide consent will make it impossible for the Data Controller to receive your Curriculum Vitae and carry out the activities aimed at managing your application.

Minimum data protection measures: password, firewall, antivirus, reCAPTCHA

Personal data retention period: Your personal data processed for the management of your CV will be retained for N months after receipt or negative result of a selection, in order to be able to consider you for possible future positions.

Reference Rules of Processing: The legal basis for registration on the Site and the provision of related services is the need to execute your request, in compliance with Article 6(1)(b) GDPR. Therefore, the acquisition of your prior consent to the processing is not necessary.

Types of data processed:

Category Type

common data Curriculum Vitae

common data personal data

2.3. WEB processing

PROCESSING: WEB – COMMERCIAL NEWSLETTER

Should you wish to be updated on the latest products and services offered by the Data Controller or by third party companies, you will be able to join our marketing initiatives allowing the Data Controller to send you the newsletter and further commercial communications.

Nature of conferment: Optional

Consequences of refusal to provide data: Failure to provide data will not affect the satisfaction of your requests and the use of web services but will make it impossible for the Data Controller to send you commercial communications.

Minimum data protection measures: password, firewall, antivirus, reCAPTCHA

Personal data retention period: Your personal data will be actively processed for the time required to manage the existing relationship and/or to execute the contract. The information collected for the evaluation of the conclusion of the contract will be deleted within N months if the contract is not concluded.

2.4. WEB treatment

TREATMENT: WEB – NEWSLETTER SERVICE USE

Should you wish to be updated on the latest news of the products and services offered by the Data Controller, you will be able to join our marketing initiatives allowing the Data Controller to send you the newsletter and further commercial communications.

Nature of conferment: Optional

Consequences of refusal to provide data: Failure to provide data will not affect the satisfaction of your requests and the use of web services but will make it impossible for the Data Controller to send you commercial communications.

Minimum data protection measures: password, firewall, antivirus, reCAPTCHA

Personal data retention period: Your personal data will be processed until you decide to revoke your consent or object to the processing.

Reference Standards for Processing: The legal basis for registration to the Site and the provision of related services is the need to execute your request, in compliance with Article 6(1)(b) GDPR. Therefore, the acquisition of your prior consent to the processing is not necessary.

2.5. WEB processing

PROCESSING: WEB – REQUESTS MADE VIA THE SITE

Your personal data may be processed by the Controller to satisfy your requests made by writing to one of the e-mail addresses available on the Site or by filling in the registration and/or contact forms on the Site.

Nature of data provision: Compulsory

Consequences of refusal to provide data Failure to provide the requested data will make it impossible for the Data Controller to execute your request.

Minimum data protection measures: password, firewall, antivirus, reCAPTCHA

Storage period of personal data: The data collected for this purpose will be processed for the time strictly necessary to fulfil your request and then stored for 10 years after the request has been processed.

Basis of processing: The legal basis of the processing is the need to execute your request, in compliance with Article 6(1)(b) GDPR. Therefore, the acquisition of your prior consent to the processing is not necessary.

3. Cookies Policy:

3.1. Extended Cookie Policy:

We use technology on this site to collect information to improve your online experience.

This policy covers the use of cookies and how you can manage them.

We reserve the right to change this policy at any time.

Any changes to this policy will take effect from the date they are posted on the Site.

Cookies are small text strings that the sites you visit send to your terminal (usually to your browser), where they are stored and then retransmitted to the same sites the next time you visit.

While browsing a site, the user may also receive cookies on his terminal equipment that are sent by different sites or web servers (so-called ‘third parties’), on which some elements (such as, for example, images, maps, sounds, specific links to pages of other domains) present on the site he is visiting may reside.

Cookies, which are usually present in users’ browsers in very high numbers and sometimes also with characteristics of wide temporal persistence, are used for different purposes: performing computer authentication, session monitoring, storing information on specific configurations concerning users accessing the server, etc.

In order to arrive at a correct regulation of these devices, it is necessary to distinguish them since there are technical characteristics that differentiate them from each other precisely on the basis of the purposes pursued by those who use them.

– First-party, technical (session) persistent cookies

Technical cookies are those used for the sole purpose of ‘carrying out the transmission of a communication over an electronic communications network, or to the extent strictly necessary for the provider of a WEB service explicitly requested by the user to provide such a service’. They are not used for any further purposes and are normally installed directly by the website owner or operator. They can be divided into navigation or session cookies, which ensure normal navigation and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas). This website makes use of first-party persistent technical session cookies.

– First-party, analytical cookies

Analytical cookies, also known as ‘analytics’, allow detailed statistics to be compiled about visitors to a website, such as the viewing of certain pages, the number of visitors, the time spent on the site by users and how they arrive. Analytics cookies are assimilated to technical cookies where they are used directly by the site operator to collect information in aggregate form about the number of users and how they visit the site. This site makes use of first party analytics cookies.

– First-party, profiling cookies

Profiling cookies are designed to create profiles of the user and are used to send advertising messages in line with the preferences expressed by the user while browsing the web. Due to the particular invasiveness that these devices can have in the private sphere of users. This site may share this information with other parties, such as advertisers. Under European and Italian law, you may refuse to consent to the use of such cookies. This site uses FIRST PARTY, profiling cookies.

– THIRD PARTY, analytical cookies

Analytical cookies, also known as ‘analytics’, allow detailed statistics to be compiled about visitors to a website, such as the viewing of certain pages, the number of visitors, the time spent on the site by users and how they arrive. This site makes use of a web analytics service provided by Google.

– THIRD PARTY, profiling cookies

In order to provide you with additional features and services within this site, we work with third parties who, independently and outside our direct control, may use their cookies to collect information about your activities while browsing the pages of this site. This information may be used to serve you advertisements that match your interests, based on the content you visit, or to measure the effectiveness of advertising campaigns. These cookies may be contained in various elements within the web page, such as advertising banners, images, videos, etc. A sensitive example is the presence of so-called ‘social plug-ins’ or ‘social sharing buttons’ of the main social networks (Facebook, Twitter, Google+ and LinkedIn), aimed at sharing the contents of the web page on the social networks themselves. The use of data collected through third party cookies, over which we have no control, is governed by the relevant privacy policy, which we ask you to refer to. This site makes use of THIRD-PARTY, profiling cookies.

Cookie Management

Below is a list of the most common browsers with links to their cookie management settings:

– Internet Explorer 8 and higher

– Safari 2 and higher

– Opera 10.5 and higher

– FireFox 3.5 and higher

– Google Chrome 10 and higher;

The browsers provide a ‘private’ browsing mode, activating which cookies are always deleted after closing each browsing session.

Secondly, you can disable third-party profiling cookies by visiting http://www.youronlinechoices.com.

You can also disable Google Analytics cookies by downloading the Google Analytics opt-out browser add-on at the following web address: https://tools.google.com/dlpage/gaoptout.

Third Party Cookie Policy

Cookie Policy Facebook https://it-it.facebook.com/policies/cookies/

Google Cookie Policy https://www.google.it/intl/it/policies/technologies/cookies/

Google Cookie Policy https://www.linkedin.com/legal/cookie-policy

Cookie Policy Twitter https://twitter.com/it/privacy

Cookie consent

By continuing to navigate from the banner containing the so-called short information, by scrolling down this page or by clicking on any of its elements, you consent to the use of the cookies used on this website by accepting the cookie policy described above.

You can always revoke your previously given consent through the methods indicated in the paragraph entitled ‘COOKIE MANAGEMENT’.

3.2. List of Web Services:

Type Service Description

Comment management Application comment system

Landing Page Instapage

Social Media Buttons and WidGet +1 button and Google+ widget

Social Media Buttons and WidGet Social Media Button and widget Linkedin

Social Media Buttons and WidGet YouTube Buttons and Widgets

Social Media Buttons and WidGet Facebook Like Button and Widget

Social Media WidGet and Buttons Tweet button and Twitter widget

Data collection, contact with users Mailing list or newsletter

Data collection, contacting users Generic contact form

Registration and Authentication Registration with Form

Remarketing, behavioural advertising (Behavioral Marketing) Facebook Remarketing

Remarketing, behavioural advertising (Behavioral Marketing) Google Analytics Remarketing

Google reCAPTCHA Anti Spam Services

WordPress.com Hosting and Backup Management Services

MailChimp email marketing software

MailUp email marketing software

Statistics, Performance Google Analytics with anonymised IP

Statistics, Performance Google Tag Manager

Stats, Performance Hotjar Heat Maps & Recordings

Stats, Performance Conversion Monitoring Facebook Ads

Stats, Performance Conversion Monitoring Google AdWords

Support, Chat, Ticket Olark widget

WidGet MailChimp widget

4. What rights do you have as a data subject:

In relation to the processing described in this Information Notice, as a data subject you may, as provided for in the European Regulation 679/2016, exercise the rights enshrined in Articles 15 to 21 and, in particular:

– right of access – Article 15 GDPR: right to obtain confirmation as to whether or not personal data concerning you are being processed and, if so, to obtain access to your personal data, including a copy thereof.

– Right to rectification – Article 16 GDPR: the right to obtain, without undue delay, rectification of inaccurate personal data concerning you and/or supplementation of incomplete personal data;

– right to erasure (right to be forgotten) – Article 17 GDPR: right to obtain, without undue delay, the erasure of personal data concerning you.

– Right to restriction of processing – Article 18 GDPR: right to obtain restriction of processing, when:

1. the data subject contests the accuracy of personal data, for the period necessary for the controller to verify the accuracy of such data;

2. the processing is unlawful and the data subject objects to the erasure of the personal data and requests instead that their use be restricted

3. the personal data are necessary to the data subject for the establishment, exercise or defence of legal claims;

4. the data subject has objected to the processing pursuant to Article 21 GDPR, during the period pending verification of whether the data controller’s legitimate reasons prevail over those of the data subject.

– Right to data portability – Article 20 GDPR: the right to receive, in a structured, commonly used and machine-readable format, the personal data concerning you provided to the Data Controller and the right to transmit them to another data controller without hindrance, where the processing is based on consent and is carried out by automated means. In addition, the right to have your personal data transmitted directly by the Bank to another controller if this is technically feasible;

– right to object – Article 21 GDPR: right to object, at any time on grounds relating to your particular situation, to the processing of personal data concerning you based on the lawful condition of legitimate interest or the performance of a task carried out in the public interest or in the exercise of official authority, including profiling, unless there are legitimate grounds for the Controller to continue the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of a legal claim; may object at any time to the processing if personal data are processed for direct marketing purposes, including profiling, insofar as it is related to such direct marketing;

The above rights may be exercised, vis-à-vis the Controller, by contacting the references above.

The exercise of your rights as a data subject is free of charge in accordance with Article 12 GDPR. However, in the case of requests that are manifestly unfounded or excessive, including by reason of their repetitiveness, the Data Controller may charge you a reasonable expense contribution, in light of the administrative costs incurred in handling your request, or deny satisfaction of your request.

– RIGHT OF REVOCATION:

You have the right to withdraw your consent at any time. Withdrawal of consent shall not affect the lawfulness of the processing based on the consent before the withdrawal.

– RIGHT OF COMPLAINT:

The data subject has the right to lodge a complaint with the Italian Data Protection Authority, Piazza di Montecitorio n. 121, 00186, Rome (RM).

I hereby declare that I have received from the Data Controller the information on the use of my personal data and that I consent, in accordance with the privacy legislation, to the processing by the same of the special categories of personal data supplied by me for the performance of the activities necessary for the activation and management of the relations, operations and services requested by me.