Non perderti mai un aggiornamento:

2C Solution Srl | La tua azienda senza carta

Digitalizziamo la tua azienda, semplificando il tuo lavoro.

Home Privacy and Cookies Policy

Introduction

Read our Privacy and Cookies Policy.

Privacy Policy

DATA CONTROLLER

2C SOLUTION S.R.L.
VIA MARTIN PIVA ARTIGIANO, 12 – 35010 LIMENA (PD)
VAT AND TAX CODE 04030410288

The Data Protection Officer (DPO) is Dr Serena Donegani: privacy@2csolution.it

TYPES OF DATA COLLECTED

Among the Personal Data collected by this Application, either independently or through third parties, are: Cookies, Usage Data, email, first name, last name, telephone number and various types of Data.

Full details of each type of data collected are provided in the dedicated sections of this privacy policy or by means of specific information texts displayed before the data is collected.

Personal Data may be freely provided by the User or, in the case of Usage Data, automatically collected during the use of this Application.

All the Data required by this Application are mandatory and, in the absence of their provision, it may be impossible for this Application to provide the service. In cases where this Application indicates certain Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the service or on its operation.

Users who have any doubts about what Data is required are encouraged to contact the Owner.

The possible use of Cookies – or other tracking tools – by this Application or by the owners of third-party services used by this Application, unless otherwise specified, has the purpose of providing the service requested by the User, in addition to the additional purposes described in this document and in the Cookie Policy, if available.

The User assumes responsibility for the Personal Data of third parties published or shared through this Application and guarantees to have the right to communicate or disseminate them, relieving the Owner of any responsibility towards third parties.

METHOD AND PLACE OF PROCESSING OF THE DATA COLLECTED

Methods of treatment

The Owner shall process the Personal Data of Users taking appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of the Personal Data.
The processing is carried out by means of computer and/or telematic tools, with organisational methods and with logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may be accessed by categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external parties (such as third party technical service providers, couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, Data Processors by the Data Controller. The updated list of persons in charge can always be requested from the Data Controller.

Place
The Data are processed at the operating offices of the Owner and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller.

Time
The Data is processed for the time necessary to perform the service requested by the User, or required by the purposes described in this document, and the User can always request the interruption of the Processing or cancellation of the Data.

PURPOSES OF THE PROCESSING OF THE DATA COLLECTED

User Data is collected to allow the Owner to provide its services, as well as for the following purposes: Saving and managing backups, Statistics, Viewing content from external platforms, Registration and authentication, Protection from SPAM, Interaction with social networks and external platforms, Remarketing and behavioral targeting and Contact the User.

The types of Personal Data used for each purpose are indicated in the specific sections of this document.

SCOPE OF COMMUNICATION AND POSSIBLE DISSEMINATION

Customer and customer data may be disclosed to public authorities or public service providers when submitting applications to participate in procedures for the selection of the contractor, for the purpose of awarding contracts or concessions for the supply of goods or services, as provided for in the legislation on public procurement, for purposes of technical qualification.

The data relating to the contract and service activity may be communicated to commercial consultants for administrative and accounting purposes and to lawyers for the possible management of disputes.

The data, with the exception of those of a sensitive and judicial nature, may be communicated to those who (private or public administration), even outside the European Union, in its legitimate interest and taking advantage of a right expressly attributed to it by the specific legislation in force on the subject, request an assessment of the identity of the owner of the service provided by 2C Solution S.r.l. for investigative purposes or for the protection of their legitimate interest.

The data may also be communicated or made accessible to companies controlled by and/or connected to 2C Solution S.r.l., to other subjects that deal with the maintenance of computer systems as well as to subjects that deal with specific stages of processing, as managers of 2C Solution S.r.l., whose names are verifiable at the request of the interested parties.

The data may also be communicated to police or judicial authorities for the purpose of ascertaining or prosecuting offences committed by users of telematic services, where necessary.

The data are not subject to dissemination, except for data of companies and companies for commercial reference purposes.

DETAILS ON THE PROCESSING OF PERSONAL DATA

Personal Data is collected for the following purposes and using the following services:

Mailing list or newsletter
By registering for the mailing list or newsletter, the User’s email address is automatically included in a list of contacts to which email messages containing information, including commercial and promotional information, relating to this Application may be sent. The User’s email address may also be added to this list as a result of registering for this Application or after making a purchase.

Personal data collected: surname, email and first name

Contact by phone
Users who have provided their telephone number may be contacted for commercial or promotional purposes related to this Application, as well as to meet support requests.

Personal data collected: telephone number

Contact form
The User, by filling in the contact form with his/her Data, consents to their use to respond to requests for information, quotes, or any other nature indicated in the header of the form.

Personal data collected: surname, email, first name and various types of data

Interaction with social networks and external platforms
This type of service allows you to interact with social networks, or other external platforms, directly from the pages of this Application. The interactions and information acquired by this Application are in any case subject to the User’s privacy settings for each social network. If a service of interaction with social networks is installed, it is possible that, even if Users do not use the service, it collects traffic data relating to the pages on which it is installed;

Google+ social widgets and +1 button (Google Inc.)
The +1 button and the social widgets of Google+ are services of interaction with the social network Google+, provided by Google Inc.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – Privacy Policy

Facebook Like button and social widgets (Facebook, Inc.)
The Facebook Like button and social widgets are social networking services provided by Facebook, Inc.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – https://www.facebook.com/about/privacy/

YouTube social button and widget (Google Inc.)
The YouTube button and social widgets are services for interaction with the social network YouTube, provided by Google Inc.

Personal Data Collected: Usage Data
Place of treatment: USA – Privacy Policy

Protection from SPAM
This type of service analyzes the traffic of this Application, potentially containing Personal Data of Users, in order to filter it from parts of traffic, messages and content recognized as SPAM.

Google reCAPTCHA (Google Inc.)
Google reCAPTCHA is a SPAM protection service provided by Google Inc. Your use of the reCAPTCHA system is subject to Google’s privacy policy and terms of use.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – Privacy Policy

Registration and authentication
By registering or authenticating, the User allows the Application to identify him/her and to give him/her access to dedicated services. Depending on the following, registration and authentication services may be provided with the help of third parties. If this happens, this application will have access to certain data stored by the third party service used for registration or identification

Google OAuth (Google Inc.)
Google OAuth is a registration and authentication service provided by Google Inc. and connected to the Google network.

Personal Data Collected: various types of Data as specified in the privacy policy of the service.
Place of treatment: USA – Privacy Policy

Remarketing and behavioral targeting
This type of service enables this Application and its partners to communicate, optimize and serve advertisements based on the User’s past use of this Application. This activity is carried out through the tracking of Usage Data and the use of Cookies, information that is transferred to partners to whom the activity of remarketing and behavioral targeting is linked. In addition to the opt-out options offered by the following services, the User may opt out of receiving cookies relating to a third party service by visiting the opt-out page of the Network Advertising Initiative

Remarketing with Google Analytics for display advertising (Google Inc.)
Google Analytics for display advertising is a remarketing and behavioral targeting service provided by Google Inc. that links the tracking activity performed by Google Analytics and its Cookies with the advertising network Adwords and the Doubleclick Cookie.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – Privacy Policy

Facebook Remarketing (Facebook, Inc.)
Facebook Remarketing is a remarketing and behavioral targeting service provided by Facebook, Inc. that links the activity of this Application with the Facebook advertising network.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – https://www.facebook.com/about/privacy/

Saving and managing backups
This type of service allows you to save and manage backups of this application on external servers managed by the service provider itself. These backups may include both the source code and its contents and the data provided to this Application by the User.

Backup to Google Drive (Google Inc.)
Google Drive is a backup management and rescue service provided by Google Inc.

Personal Data Collected: various types of Data as specified in the privacy policy of the service.
Place of treatment: USA – Privacy Policy

Statistics
The services contained in this section allow the Data Controller to monitor and analyse traffic data and are used to keep track of the User’s behaviour.

User ID extension for Google Analytics (Google Inc.)
Google Analytics on this application uses a function called User ID. This allows more accurate tracking of Users by assigning each one a unique ID for various sessions and devices, but in such a way as not to allow Google to personally identify an individual or permanently identify a specific device. The User ID extension also allows you to connect Data from Google Analytics with other User Data collected by this Application. The Opt Out link provided below allows you to disable tracking for the device you are using, but does not exclude further tracking activities performed by the Owner. To deactivate the latter, please contact the owner via the contact email address.

Personal Data Collected: Cookies.
Place of processing: USA – Privacy Policy- Opt Out

Google Analytics with Anonymous IP (Google Inc.)
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use your Personal Data to contextualize and customize ads in its advertising network. This integration of Google Analytics makes your IP address anonymous. Anonymisation works by shortening the IP address of the Users within the member states of the European Union or in other countries that are parties to the Agreement on the European Economic Area. Only in exceptional cases will the IP address be sent to Google’s servers and abbreviated within the United States.

Personal Data Collected: Cookies and Usage Data
Place of processing: USA – Privacy Policy- Opt Out

Google Analytics (Google Inc.)
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use your Personal Data to contextualize and customize ads in its advertising network.

Personal Data Collected: Cookies and Usage Data
Place of processing: USA – Privacy Policy- Opt Out

Google Tag Manager (Google Inc.)
Google Tag Manager is a statistics service provided by Google Inc.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Monitoring conversions of Google AdWords (Google Inc.)
Google AdWords conversion tracking is a statistics service provided by Google Inc. that links data from the Google AdWords ad network with actions taken within this application.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – Privacy Policy

Monitoring conversions of Facebook Ads (Facebook, Inc.)
Facebook Ads conversion monitoring is a statistics service provided by Facebook, Inc. that links data from the Facebook ad network with actions taken within this Application.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Viewing content from external platforms
This type of service allows you to view content hosted on external platforms directly from the pages of this Application and to interact with them. If such a service is installed, it is possible that, even if Users do not use the service, it collects traffic data relating to the pages on which it is installed.

Google Fonts (Google Inc.)
Google Fonts is a font viewing service operated by Google Inc. that allows this Application to integrate such content into its pages.

Personal Data Collected: Use Data and various types of Data as specified by the privacy policy of the service
Place of treatment: USA – Privacy Policy

Google Maps widget (Google Inc.)
Google Maps is a map viewing service operated by Google Inc. that allows this application to integrate such content into its pages.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

YouTube Video Widget without cookies (Google Inc.)
YouTube is a video content viewing service operated by Google Inc. that allows this Application to integrate this content into its pages. This widget is set so that YouTube does not store information and cookies about Users on this Application, unless they play the video.

Personal Data Collected: Usage Data.
Place of treatment: USA – Privacy Policy
YouTube Video Widget (Google Inc.)
YouTube is a video content viewing service operated by Google Inc. that allows this Application to integrate this content into its pages.

Personal Data Collected: Cookies and Usage Data
Place of treatment: USA – Privacy Policy

Vimeo Video (Vimeo, LLC)
Vimeo is a video content viewing service operated by Vimeo, LLC that allows this Application to integrate such content into its pages.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Cookie Policy
This Application uses Cookies. For more information and detailed information, please refer to the Cookie Policy below.

MORE INFORMATION ABOUT THE TREATMENT

Defense in court

The User’s Personal Data may be used by the Owner in court or in the stages leading up to its possible establishment to defend against abuse in the use of this Application or related services by the User.
The User declares to be aware that the Owner may be required to disclose the Data at the request of the public authorities.

Specific information

At your request, in addition to the information contained in this privacy policy, this Application may provide you with additional and contextual information regarding specific services, or the collection and processing of Personal Data.

System log and maintenance

For operation and maintenance purposes, this Application and any third-party services used by it may collect System Logs, i.e. files that record interactions and may also contain Personal Data, such as the User’s IP address.

Information not contained in this policy

Further information regarding the processing of Personal Data may be requested at any time from the Data Controller using the contact information.

Exercise of rights by Users

The subjects to whom the Personal Data refer have the right at any time to obtain confirmation of the existence or otherwise of the same from the Data Controller, to know the content and origin, to verify its accuracy or request its integration, deletion, updating, rectification, transformation into anonymous form or blocking of Personal Data processed in violation of the law, and to oppose in any case, for legitimate reasons, to their processing. Requests should be addressed to the Data Controller.
This application does not support “Do Not Track” requests.
To find out if any third party services you use support them, please refer to their privacy policies.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by advertising it to Users on this page. Please consult this page often, taking as reference the date of last modification indicated at the bottom. If you do not accept the changes made to this privacy policy, you must cease using this Application and may request the Data Controller to remove your Personal Data. Unless otherwise stated, the above privacy policy will continue to apply to Personal Data collected up to that time.

Exercise of the rights of the data subject

The data subject shall have the right to request, at any time, the modification of the arrangements governed by this paragraph through the exercise of the rights referred to in the following paragraph

The rights of the data subject

The person concerned may exercise the rights referred to in Articles 15 to 22 of European Regulation 679/16

Article 15 – Right of access of the data subject

The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him are being processed and, if so, to obtain access to the personal data and the following information:
the purposes of the processing;
the categories of personal data concerned;
the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
where possible, the expected period of retention of personal data or, if this is not possible, the criteria used to determine that period;
the existence of the right of the data subject to request the controller to rectify or erase personal data or to restrict the processing of personal data concerning him or to object to their processing;
the right to lodge a complaint with a supervisory authority;
where data are not collected from the data subject, all available information on their origin;
the existence of an automated decision-making process, including profiling as referred to in Article 22(1) and (4), and, at least in those cases, significant information on the logic used and the anticipated importance and consequences of such processing for the data subject.
Where personal data are transferred to a third country or an international organisation, the data subject shall have the right to be informed of the existence of appropriate safeguards within the meaning of Article 46 relating to the transfer.
The data controller shall provide a copy of the personal data being processed. In the case of further copies requested by the data subject, the controller may charge a reasonable fee based on administrative costs. If the data subject submits the request by electronic means, and unless otherwise specified by the data subject, the information shall be provided in a commonly used electronic format.
The right to obtain a copy referred to in paragraph 3 shall not affect the rights and freedoms of others.

Article 16 – Right of rectification

The data subject shall have the right to obtain from the controller the rectification of inaccurate personal data concerning him without undue delay. Taking into account the purposes of the processing, the data subject shall have the right to obtain the integration of incomplete personal data, including by providing an additional statement.

Article 17 – Right to cancellation

The data subject shall have the right to obtain from the controller the erasure of personal data relating to him or her without undue delay and the controller shall be obliged to erase personal data without undue delay if one of the following reasons applies:
personal data are no longer necessary for the purposes for which they were collected or otherwise processed; 4.5.2016 EN Official Journal of the European Union L 119/43;
the data subject withdraws the consent on which the processing is based in accordance with Article 6(1)(a) or Article 9(2)(a) and if there is no other legal basis for the processing;
the data subject opposes processing pursuant to Article 21(1) and there are no overriding legitimate grounds for processing, or opposes processing pursuant to Article 21(2);
the personal data have been processed unlawfully;
personal data must be erased in order to fulfil a legal obligation under Union law or the law of the Member State to which the controller is subject;
personal data have been collected in relation to the provision of information society services as referred to in Article 8(1). 2.
   Where the controller has made personal data public and is obliged under paragraph 1 to erase them, taking into account available technology and implementation costs, the controller shall take reasonable steps, including technical measures, to inform the controllers processing the personal data of the data subject’s request to erase any link, copy or reproduction of his personal data. 3.
Paragraphs 1 and 2 shall not apply in so far as processing is necessary:

for the exercise of the right to freedom of expression and information;
for the performance of a legal obligation requiring processing under Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
for reasons of public interest in the field of public health in accordance with Article 9(2)(h) and (i) and Article 9(3);
for the purpose of archiving in the public interest, for scientific or historical research or for statistical purposes in accordance with Article 89(1), in so far as the right referred to in paragraph 1 is likely to make it impossible or seriously prejudicial to achieve the objectives of such processing;
for the establishment, exercise or defence of a right in judicial proceedings.

Article 18 – Right to limit treatment

The data subject has the right to obtain from the data controller the restriction of the processing when one of the following situations occurs:
the data subject contests the accuracy of the personal data for as long as it is necessary for the controller to verify the accuracy of such personal data;
the processing is unlawful and the data subject objects to the deletion of personal data and requests instead that their use be limited;
although the controller no longer needs it for the purposes of processing, personal data are necessary for the data subject to establish, exercise or defend a right in court;
the data subject has objected to the processing operation pursuant to Article 21(1) pending verification as to whether the legitimate reasons of the data controller take precedence over those of the data subject.
Where processing is limited in accordance with paragraph 1, such personal data shall be processed only with the consent of the data subject or for the establishment, exercise or defence of a right in court or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the Union or of a Member State, except for storage. L 119/44 EN Official Journal of the European Union 4.5.2016 3. The data subject who has obtained the restriction of treatment in accordance with paragraph 1 shall be informed by the data controller before the restriction is lifted.

Art. 19 – Right to obtain notification from the data controller in cases of rectification or erasure of personal data or erasure thereof

The controller shall inform each recipient to whom the personal data have been disclosed of any rectification or erasure or restriction of the processing carried out pursuant to Articles 16, 17(1) and 18, unless this proves impossible or involves a disproportionate effort. The data controller shall inform the data subject of such recipients if the data subject so requests.

Article 20 – Right to portability

The data subject shall have the right to receive in a structured, commonly used and machine-readable format personal data relating to him which are supplied to a controller and shall have the right to transmit such data to another controller without hindrance by the controller to whom he has supplied them where:
the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) or on a contract pursuant to Article 6(1)(b);
the processing is carried out by automated means.
   In exercising their rights with regard to data portability pursuant to paragraph 1, the data subject shall have the right to obtain the direct transmission of personal data from one controller to another, where technically feasible.
The exercise of the right referred to in paragraph 1 of this Article shall be without prejudice to Article 17. This right shall not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller. 4. The right referred to in paragraph 1 shall not affect the rights and freedoms of others.

Article 21 – Right of opposition

The data subject shall have the right to object at any time, on grounds relating to his/her particular situation, to the processing of personal data concerning him/her pursuant to Article 6(1)(e) or (f), including profiling on the basis of those provisions.
The controller shall refrain from further processing personal data unless he provides evidence of legitimate reasons for processing which take precedence over the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of a right in court.

Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to the processing of personal data concerning him/her carried out for such purposes, including profiling to the extent that it relates to such direct marketing.
If the data subject objects to the processing for direct marketing purposes, the personal data shall no longer be processed for those purposes. 4.5.2016 EN Official Journal of the European Union L 119/45
The right referred to in paragraphs 1 and 2 shall be explicitly brought to the attention of the data subject and shall be presented clearly and separately from any other information at the latest at the time of the first communication with the data subject.
In the context of the use of information society services and without prejudice to Directive 2002/58/EC, the data subject may exercise his right to object by automated means using technical specifications.
Where personal data are processed for the purpose of scientific or historical research or for statistical purposes in accordance with Article 89(1), the data subject shall have the right, on grounds relating to his/her particular situation, to object to the processing of personal data concerning him/her, except where such processing is necessary for the performance of a task carried out in the public interest.

Article 22 – Right to refuse the automated process

The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or which significantly affects him or her in a similar manner.
Paragraph 1 shall not apply where the decision:
is necessary for the conclusion or performance of a contract between the data subject and a data controller;
is authorised by the law of the Union or of the Member State to which the controller is subject, which shall also specify appropriate measures to protect the rights, freedoms and legitimate interests of the data subject;
is based on the explicit consent of the data subject.
In the cases referred to in paragraph 2(a) and (c), the controller shall implement appropriate measures to protect the rights, freedoms and legitimate interests of the data subject, at least the right to obtain human intervention from the controller, to express his views and to challenge the decision.
The decisions referred to in paragraph 2 shall not be based on the special categories of personal data referred to in Article 9(1), unless Article 9(2)(a) or (g) applies and adequate measures are in place to protect the rights, freedoms and legitimate interests of the data subject.
In this sense, the interested party is allowed to access their data for:

Verify its truthfulness;
Modify them in case they become inaccurate;
Supplement them with a supplementary declaration;
Request cancellation;
Limit treatment;
Opposing treatment;
The data controller is obliged to respond without unjustified reason.

Deleting data

2C Solution S.r.l., in compliance with the corresponding right of access to the person concerned, has set up procedures for which the persons concerned may request the cancellation without undue delay of personal data or the limitation of the processing of personal data concerning them for the following reasons:

Why the data are no longer necessary for the purposes for which they were collected
Why the person concerned has revoked the consent
Why the person concerned opposes the treatment
Why data are processed unlawfully
DEFINITIONS AND LEGAL REFERENCES

Personal Data (or Data)
Personal data is any information relating to a natural person, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number.

Usage Data
This is the information automatically collected by this Application (or by third-party applications that this Application uses), including: IP addresses or domain names of computers used by the User connecting to this Application, addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.).) the country of origin, the characteristics of the browser and operating system used by the visitor, the various time connotations of the visit (for example, the time spent on each page) and details of the itinerary followed within the Application, with particular reference to the sequence of pages consulted, the parameters relating to the operating system and the User’s computer environment.

User
The individual using this Application, who must be the same as or authorised by the Interested Subject and whose Personal Data is being processed.

Interested
The natural or legal person to whom the Personal Data refers.

Data Controller (or Manager)
The natural person, legal entity, public administration and any other body, association or body appointed by the Data Controller to process Personal Data, in accordance with the provisions of this privacy policy.

Holder of the Treatment (or Holder)
The natural person, legal entity, public administration and any other body, association or body that is responsible, even together with another owner, for decisions regarding the purposes, methods of processing personal data and the tools used, including the security profile, in relation to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

This Application
The hardware or software tool through which User Personal Data is collected.

Cookies
Small amount of data stored within the User’s device.

Legal references
Notice to European Users: This privacy policy has been drawn up in compliance with the obligations set out in Article 10 of Directive 95/46/EC, as well as the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, on Cookies.

[v. 1.2018.05.22]

Cookies Policy

Cookies Policy
Cookies are made up of portions of code installed in the browser that assist the Owner in providing the service according to the purposes described. Some of the purposes of installing Cookies may also require your consent.

AGGREGATE STATISTICS AND TECHNICAL COOKIES

Activities strictly necessary for operation
This Application uses Cookies to save your session and to perform other activities that are strictly necessary for your session to function, for example in relation to traffic distribution.
Preferences saving, optimization and statistics activities.
This Application uses Cookies to save your browsing preferences and optimize your browsing experience. These include, for example, cookies for setting the language and currency or for managing statistics by the Site Owner.
OTHER TYPES OF COOKIES OR THIRD-PARTY TOOLS THAT MAY USE THEM

Some of the services listed below collect statistics in aggregate form and may not require the User’s consent or may be managed directly by the Owner – depending on what is described – without the help of third parties.
If among the tools indicated below there are services managed by third parties, they may – in addition to what has been specified and also without the knowledge of the Owner – perform activities of tracking the User. For detailed information, please refer to the privacy policies of the listed services.

Interaction with social networks and external platforms
This type of service allows you to interact with social networks, or other external platforms, directly from the pages of this Application.
The interactions and information acquired by this Application are in any case subject to the User’s privacy settings for each social network.
If a service of interaction with social networks is installed, it is possible that, even if Users do not use the service, it collects traffic data relating to the pages on which it is installed.

Google+ social widgets and +1 button (Google Inc.)
The +1 button and the social widgets of Google+ are services of interaction with the social network Google+, provided by Google Inc.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Facebook Like button and social widgets (Facebook, Inc.)
The Facebook Like button and social widgets are social networking services provided by Facebook, Inc.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – https://www.facebook.com/about/privacy/

YouTube social button and widget (Google Inc.)
The YouTube button and social widgets are services for interaction with the social network YouTube, provided by Google Inc.

Personal Data Collected: Usage Data.
Place of treatment: USA – Privacy Policy

Protection from SPAM
This type of service analyzes the traffic of this Application, potentially containing Personal Data of Users, in order to filter it from parts of traffic, messages and content recognized as SPAM.

Google reCAPTCHA (Google Inc.)
Google reCAPTCHA is a SPAM protection service provided by Google Inc.
Your use of the reCAPTCHA system is subject to Google’s privacy policy and terms of use.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Registration and authentication
By registering or authenticating, the User allows the Application to identify him/her and to give him/her access to dedicated services.
Depending on the following, registration and authentication services may be provided with the help of third parties. If this happens, this application may access certain Data stored by the third party service used for registration or identification.

Google OAuth (Google Inc.)
Google OAuth is a registration and authentication service provided by Google Inc. and connected to the Google network.
Personal Data Collected: various types of Data as specified in the privacy policy of the service.

Place of treatment: USA – Privacy Policy

Remarketing and behavioral targeting
This type of service enables this Application and its partners to communicate, optimize and serve advertisements based on the User’s past use of this Application.
This activity is carried out through the tracking of Usage Data and the use of Cookies, information that is transferred to partners to whom the activity of remarketing and behavioral targeting is linked.
In addition to the opt-out options offered by the following services, the User may opt out of receiving cookies relating to a third party service by visiting the opt-out page of the Network Advertising Initiative.

Remarketing with Google Analytics for display advertising (Google Inc.)
Google Analytics for display advertising is a remarketing and behavioral targeting service provided by Google Inc. that links the tracking activity performed by Google Analytics and its Cookies with the advertising network Adwords and the Doubleclick Cookie.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Facebook Remarketing (Facebook, Inc.)
Facebook Remarketing is a remarketing and behavioral targeting service provided by Facebook, Inc. that links the activity of this Application with the Facebook advertising network.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – https://www.facebook.com/about/privacy/

Saving and managing backups
This type of service allows you to save and manage backups of this application on external servers managed by the service provider itself. These backups may include both the source code and contents of the same and the data provided to this Application by the User.

Backup to Google Drive (Google Inc.)
Google Drive is a backup management and rescue service provided by Google Inc.

Personal Data Collected: various types of Data as specified in the privacy policy of the service.
Place of treatment: USA – Privacy Policy

Statistics
The services contained in this section allow the Data Controller to monitor and analyse traffic data and are used to keep track of the User’s behaviour.

User ID extension for Google Analytics (Google Inc.)
Google Analytics on this application uses a function called User ID. This allows more accurate tracking of Users by assigning each one a unique ID for various sessions and devices, but in such a way as not to allow Google to personally identify an individual or permanently identify a specific device.
The User ID extension also allows you to connect Data from Google Analytics with other User Data collected by this Application.
The Opt Out link provided below allows you to disable tracking for the device you are using, but does not exclude further tracking activities performed by the Owner. To deactivate the latter, please contact the owner via the contact email address.

Personal Data Collected: Cookies.
Place of processing: USA – Privacy Policy- Opt Out

Google Analytics with Anonymous IP (Google Inc.)
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google.
Google may use your Personal Data to contextualize and customize ads in its advertising network.
This integration of Google Analytics makes your IP address anonymous. Anonymisation works by shortening the IP address of the Users within the member states of the European Union or in other countries that are parties to the Agreement on the European Economic Area. Only in exceptional cases will the IP address be sent to Google’s servers and abbreviated within the United States.

Personal Data Collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy- Opt Out

Google Analytics (Google Inc.)
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google.
Google may use your Personal Data to contextualize and customize ads in its advertising network.

Personal Data Collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy- Opt Out

Google Tag Manager (Google Inc.)
Google Tag Manager is a statistics service provided by Google Inc.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Monitoring conversions of Google AdWords (Google Inc.)
Google AdWords conversion tracking is a statistics service provided by Google Inc. that links data from the Google AdWords ad network with actions taken within this application.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Monitoring conversions of Facebook Ads (Facebook, Inc.)
Facebook Ads conversion monitoring is a statistics service provided by Facebook, Inc. that links data from the Facebook ad network with actions taken within this Application.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Viewing content from external platforms
This type of service allows you to view content hosted on external platforms directly from the pages of this Application and to interact with them
If such a service is installed, it is possible that, even if Users do not use the service, it collects traffic data relating to the pages on which it is installed.

Google Fonts (Google Inc.)
Google Fonts is a font viewing service operated by Google Inc. that allows this Application to integrate such content into its pages.

Personal Data Collected: Use Data and various types of Data as specified in the privacy policy of the service.
Place of treatment: USA – Privacy Policy

Google Maps widget (Google Inc.)
Google Maps is a map viewing service operated by Google Inc. that allows this application to integrate such content into its pages.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

YouTube Video Widget without cookies (Google Inc.)
YouTube is a video content viewing service operated by Google Inc. that allows this Application to integrate this content into its pages.
This widget is set so that YouTube does not store information and cookies about Users on this Application, unless they play the video.

Personal Data Collected: Usage Data.
Place of treatment: USA – Privacy Policy

YouTube Video Widget (Google Inc.)
YouTube is a video content viewing service operated by Google Inc. that allows this Application to integrate this content into its pages.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy

Vimeo Video (Vimeo, LLC)
Vimeo is a video content viewing service operated by Vimeo, LLC that allows this Application to integrate such content into its pages.

Personal Data Collected: Cookies and Usage Data.
Place of treatment: USA – Privacy Policy
MORE INFORMATION ABOUT THE TREATMENT

Defense in court

The User’s Personal Data may be used by the Owner in court or in the stages leading up to its possible establishment to defend against abuse in the use of this Application or related services by the User.
The User declares to be aware that the Owner may be required to disclose the Data at the request of the public authorities.

Specific information

At your request, in addition to the information contained in this privacy policy, this Application may provide you with additional and contextual information regarding specific services, or the collection and processing of Personal Data.

System log and maintenance

For operation and maintenance purposes, this Application and any third-party services used by it may collect System Logs, i.e. files that record interactions and may also contain Personal Data, such as the User’s IP address.

Information not contained in this policy

Further information regarding the processing of Personal Data may be requested at any time from the Data Controller using the contact information.

Exercise of rights by Users

The subjects to whom the Personal Data refer have the right at any time to obtain confirmation of the existence or otherwise of the same from the Data Controller, to know the content and origin, to verify its accuracy or request its integration, deletion, updating, rectification, transformation into anonymous form or blocking of Personal Data processed in violation of the law, and to oppose in any case, for legitimate reasons, to their processing. Requests should be addressed to the Data Controller.
This application does not support “Do Not Track” requests.
To find out if any third party services you use support them, please refer to their privacy policies.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by advertising it to Users on this page. Please consult this page often, taking as reference the date of last modification indicated at the bottom. If you do not accept the changes made to this privacy policy, you must cease using this Application and may request the Data Controller to remove your Personal Data. Unless otherwise stated, the above privacy policy will continue to apply to Personal Data collected up to that time.

DEFINITIONS AND LEGAL REFERENCES

Personal Data (or Data)

Personal data is any information relating to a natural person, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number.

Usage Data

This is the information automatically collected by this Application (or by third-party applications that this Application uses), including: IP addresses or domain names of computers used by the User connecting to this Application, addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.).) the country of origin, the characteristics of the browser and operating system used by the visitor, the various time connotations of the visit (for example, the time spent on each page) and details of the itinerary followed within the Application, with particular reference to the sequence of pages consulted, the parameters relating to the operating system and the User’s computer environment.

User

The individual using this Application, who must be the same as or authorised by the Interested Subject and whose Personal Data is being processed.

Interested

The natural or legal person to whom the Personal Data refers.

Data Controller (or Manager)

The natural person, legal entity, public administration and any other body, association or body appointed by the Data Controller to process Personal Data, in accordance with the provisions of this privacy policy.

Holder of the Treatment (or Holder)

The natural person, legal entity, public administration and any other body, association or body that is responsible, even together with another owner, for decisions regarding the purposes, methods of processing personal data and the tools used, including the security profile, in relation to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

This Application

The hardware or software tool through which User Personal Data is collected.

Cookies

Small amount of data stored within the User’s device.

Legal references

Notice to European Users: This privacy policy has been drawn up in compliance with the obligations set out in Article 10 of Directive 95/46/EC, as well as the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, on Cookies.

CONTACT INFORMATION

Data Controller

2C SOLUTION S.R.L.
VIA MARTIN PIVA ARTISANO, 12 – 35010 LIMENA (PD)
VAT AND TAX CODE 04030410288

Email address: privacy@2csolution.it

EXERCISE OF THE RIGHTS OF THE DATA SUBJECT

The data subject shall have the right to request, at any time, the modification of the arrangements governed by this paragraph through the exercise of the rights referred to in the following paragraph

The rights of the data subject

The person concerned may exercise the rights referred to in Articles 15 to 22 of European Regulation 679/16

Article 15 – Right of access of the data subject

The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him are being processed and, if so, to obtain access to the personal data and the following information:
the purposes of the processing;
the categories of personal data concerned;
the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
where possible, the expected period of retention of personal data or, if this is not possible, the criteria used to determine that period;
the existence of the right of the data subject to request the controller to rectify or erase personal data or to restrict the processing of personal data concerning him or to object to their processing;
the right to lodge a complaint with a supervisory authority;
where data are not collected from the data subject, all available information on their origin;
the existence of an automated decision-making process, including profiling as referred to in Article 22(1) and (4), and, at least in those cases, significant information on the logic used and the anticipated importance and consequences of such processing for the data subject.
Where personal data are transferred to a third country or an international organisation, the data subject shall have the right to be informed of the existence of appropriate safeguards within the meaning of Article 46 relating to the transfer.
The data controller shall provide a copy of the personal data being processed. In the case of further copies requested by the data subject, the controller may charge a reasonable fee based on administrative costs. If the data subject submits the request by electronic means, and unless otherwise specified by the data subject, the information shall be provided in a commonly used electronic format.
The right to obtain a copy referred to in paragraph 3 shall not affect the rights and freedoms of others.

Article 16 – Right of rectification

The data subject shall have the right to obtain from the controller the rectification of inaccurate personal data concerning him without undue delay. Taking into account the purposes of the processing, the data subject shall have the right to obtain the integration of incomplete personal data, including by providing an additional statement.

Article 17 – Right to cancellation

The data subject shall have the right to obtain from the controller the erasure of personal data relating to him or her without undue delay and the controller shall be obliged to erase personal data without undue delay if one of the following reasons applies:

personal data are no longer necessary for the purposes for which they were collected or otherwise processed; 4.5.2016 EN Official Journal of the European Union L 119/43
the data subject withdraws the consent on which the processing is based in accordance with Article 6(1)(a) or Article 9(2)(a) and if there is no other legal basis for the processing;
the data subject opposes processing pursuant to Article 21(1) and there are no overriding legitimate grounds for processing, or opposes processing pursuant to Article 21(2);
the personal data have been processed unlawfully;
personal data must be erased in order to fulfil a legal obligation under Union law or the law of the Member State to which the controller is subject;
personal data have been collected in relation to the provision of information society services as referred to in Article 8(1).
   Where the controller has made personal data public and is obliged under paragraph 1 to erase them, taking into account available technology and implementation costs, the controller shall take reasonable steps, including technical measures, to inform the controllers processing the personal data of the data subject’s request to erase any link, copy or reproduction of his personal data.
Paragraphs 1 and 2 shall not apply in so far as processing is necessary:
for the exercise of the right to freedom of expression and information;
for the performance of a legal obligation requiring processing under Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
for reasons of public interest in the field of public health in accordance with Article 9(2)(h) and (i) and Article 9(3);
for the purpose of archiving in the public interest, for scientific or historical research or for statistical purposes in accordance with Article 89(1), in so far as the right referred to in paragraph 1 is likely to make it impossible or seriously prejudicial to achieve the objectives of such processing;
for the establishment, exercise or defence of a right in judicial proceedings.

Article 18 – Right to limit treatment

The data subject has the right to obtain from the data controller the restriction of the processing when one of the following situations occurs:
the data subject contests the accuracy of the personal data for as long as it is necessary for the controller to verify the accuracy of such personal data;
the processing is unlawful and the data subject objects to the deletion of personal data and requests instead that their use be limited;
although the controller no longer needs it for the purposes of processing, personal data are necessary for the data subject to establish, exercise or defend a right in court;
the data subject has objected to the processing operation pursuant to Article 21(1) pending verification as to whether the legitimate reasons of the data controller take precedence over those of the data subject.
Where processing is limited in accordance with paragraph 1, such personal data shall be processed only with the consent of the data subject or for the establishment, exercise or defence of a right in court or for the protection of the rights of another natural or legal person or for reasons of substantial public interest of the Union or of a Member State, except for storage. L 119/44 EN Official Journal of the European Union 4.5.2016
   The data subject who has obtained a restriction of processing in accordance with paragraph 1 shall be informed by the holder of the processing before such a restriction is lifted.

Art. 19 – Right to obtain notification from the data controller in cases of rectification or erasure of personal data or erasure thereof

The controller shall inform each recipient to whom the personal data have been disclosed of any rectification or erasure or restriction of the processing carried out pursuant to Articles 16, 17(1) and 18, unless this proves impossible or involves a disproportionate effort. The data controller shall inform the data subject of such recipients if the data subject so requests.

Article 20 – Right to portability

The data subject shall have the right to receive in a structured, commonly used and machine-readable format personal data relating to him which are supplied to a controller and shall have the right to transmit such data to another controller without hindrance by the controller to whom he has supplied them where:
the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) or on a contract pursuant to Article 6(1)(b);
the processing is carried out by automated means.
   In exercising their rights with regard to data portability pursuant to paragraph 1, the data subject shall have the right to obtain the direct transmission of personal data from one controller to another, where technically feasible.
The exercise of the right referred to in paragraph 1 of this Article shall be without prejudice to Article 17. This right shall not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller.
The right referred to in paragraph 1 shall not affect the rights and freedoms of others.

Article 21 – Right of opposition

The data subject shall have the right to object at any time, on grounds relating to his/her particular situation, to the processing of personal data concerning him/her pursuant to Article 6(1)(e) or (f), including profiling on the basis of those provisions. The controller shall refrain from further processing personal data unless he provides evidence of legitimate reasons for processing which take precedence over the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of a right in court.
Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to the processing of personal data concerning him/her carried out for such purposes, including profiling to the extent that it relates to such direct marketing.
If the data subject objects to the processing for direct marketing purposes, the personal data shall no longer be processed for those purposes. 4.5.2016 EN Official Journal of the European Union L 119/45
The right referred to in paragraphs 1 and 2 shall be explicitly brought to the attention of the data subject and shall be presented clearly and separately from any other information at the latest at the time of the first communication with the data subject.
In the context of the use of information society services and without prejudice to Directive 2002/58/EC, the data subject may exercise his right to object by automated means using technical specifications.
Where personal data are processed for the purpose of scientific or historical research or for statistical purposes in accordance with Article 89(1), the data subject shall have the right, on grounds relating to his/her particular situation, to object to the processing of personal data concerning him/her, except where such processing is necessary for the performance of a task carried out in the public interest.

Article 22 – Right to refuse the automated process

The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or which significantly affects him or her in a similar manner.
Paragraph 1 shall not apply in the case where the decision:
is necessary for the conclusion or performance of a contract between the data subject and a data controller;
is authorised by the law of the Union or of the Member State to which the controller is subject, which shall also specify appropriate measures to protect the rights, freedoms and legitimate interests of the data subject;
is based on the explicit consent of the data subject.
In the cases referred to in paragraph 2(a) and (c), the controller shall implement appropriate measures to protect the rights, freedoms and legitimate interests of the data subject, at least the right to obtain human intervention from the controller, to express his views and to challenge the decision.
The decisions referred to in paragraph 2 shall not be based on the special categories of personal data referred to in Article 9(1), unless Article 9(2)(a) or (g) applies and adequate measures are in place to protect the rights, freedoms and legitimate interests of the data subject.
In this sense, the data subject is allowed to access his or her own data in order to

Verify its truthfulness;
Modify them in case they become inaccurate;
Supplement them with a supplementary declaration;
Request cancellation;
Limit treatment;
Opposing treatment.
The data controller is obliged to respond without unjustified reason.

DELETION OF DATA

2C SOLUTION S.R.L., in compliance with the corresponding right of access to the data subject, has set up procedures for which the data subject may request the deletion of personal data without undue delay or the restriction of the processing of personal data concerning them for the following reasons:

Because the data are no longer necessary for the purposes for which they were collected;
Because the person concerned has revoked the consent;
Because the person concerned opposes the treatment;
Because the data is processed unlawfully.
[v. 1.2018.05.22]

Conclusion

Thanks for reading our Privacy and Cookies Policy.