Privacy Policy

Privacy Policy on the Processing of Personal Data

This page describes the methods of managing this website in relation to the processing of personal data of users who visit it. This is a privacy policy provided in accordance with current personal data legislation for users who interact with the services of this website under EU Regulation 2016/679. This privacy policy applies only to this website and not to other websites that the user may access through our links.

The “Data Controller”
As a result of visiting the website, data relating to identified or identifiable persons may be processed. The “data controller” for their processing is Parkino S.r.l.

Place of data processing
Processing related to web services is carried out only by technical personnel of the office in charge of processing, or by any personnel appointed for occasional maintenance operations. No data derived from the web service is communicated or disseminated.

Purpose of processing and legal basis of processing
Personal data provided by users who perform actions required by specific functions of the website, submit requests, or intend to use services offered through the website, as well as receive additional specific content, are used solely to manage the actions carried out by users, respond to their requests, or perform the requested service or task, and are shared with third parties only if necessary for this purpose. The legal basis for this processing is the necessity to respond to the requests of the data subjects or to carry out activities stipulated in agreements with the data subjects in relation to any contractual, pre-contractual, or legal obligations. In case data is collected through specific forms and for additional purposes, a specific privacy notice concerning the processing of such data will be provided.

Types of data processed

Browsing data
The IT systems and software procedures that operate the website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its nature could, through processing and association with data held by third parties, allow users to be identified. This category includes IP addresses or domain names of computers used by users connecting to the website, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, etc.), and other parameters related to the user’s operating system and IT environment. These data are used solely to obtain anonymous statistical information on website usage and to check its proper functioning, and are deleted after processing. The data may also be used to ascertain liability in case of hypothetical cybercrimes against the site.

Data voluntarily provided by the user
The optional, explicit, and voluntary sending of emails to the addresses indicated on the website entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message. Specific summary notices may be displayed from time to time on the pages of the website prepared for particular services upon request.

Cookies
Cookies are textual elements inserted into a computer’s hard drive only after authorization. Cookies serve to streamline web traffic analysis or to signal when a specific website is visited, and allow web applications to send information to individual users. For more details on the use of cookies by the website, please refer to the dedicated Cookie Policy available on the site.

Optional provision of data
Apart from what is specified for browsing data, users are free to provide personal data to request services offered by the Data Controller. Failure to provide such data may make it impossible to obtain the requested services.

Methods of processing and data retention period
Personal data are processed using automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access.
Data are kept for the time strictly necessary to pursue the purposes indicated in this privacy policy and will be deleted at the end of this period, unless the data must be retained to comply with legal obligations or to assert a right in legal proceedings.

Rights of data subjects
Within the limits and under the conditions provided by law, the data controller is obliged to respond to requests from the data subject regarding their personal data. In particular, under current legislation:

1. The data subject has the right to obtain from the data controller confirmation as to whether or not personal data concerning them is being processed, and, if so, access to the personal data and the following information:
   • the purposes of the processing;
   • the categories of personal data in question;
   • the recipients or categories of recipients to whom the personal data has been or will be disclosed, in particular if recipients are in third countries or international organizations;
   • where possible, the expected retention period of the personal data or, if not possible, the criteria used to determine such period;
   • the existence of the data subject’s right to request rectification or deletion of personal data, or restriction of processing concerning them, or to object to such processing;
   • the right to lodge a complaint with a supervisory authority;
   • if the data are not collected from the data subject, all available information as to their source;
   • the existence of automated decision-making, including profiling.

2. The data subject has the right to obtain from the data controller the rectification of inaccurate personal data concerning them without undue delay. Considering the purposes of the processing, the data subject has the right to obtain the completion of incomplete personal data, including by providing a supplementary statement.

3. The data subject has the right to obtain from the data controller the deletion of personal data concerning them without undue delay, and the data controller is obliged to delete personal data without undue delay within the limits and cases provided by current legislation. The data controller shall communicate any rectifications, deletions, or restrictions of processing to each recipient to whom personal data has been transmitted, within the limits and in the forms required by current legislation.

4. The data subject has the right to obtain restriction of processing.

5. The data subject has the right to receive, in a structured, commonly used, and machine-readable format, the personal data concerning them provided to a controller and has the right to transmit such data to another controller without hindrance from the controller to whom the data were provided.

To exercise the above rights, the data subject must submit a request using the following contact point: requests must be addressed to the Data Controller at privacy@parkino.com.

This version of the privacy policy on the processing of personal data was updated on January 12, 2024.