Website Privacy Statement www.rainsteel.it
This site complies with the obligations deriving from national legislation (Legislative Decree No. 196 of June 30, 2003, Personal Data Protection Code) and European Community (European Regulation for the protection of personal data No. 679/2016, GDPR) and related subsequent amendments to the legislation.
The site owner complies with the recommendations of the Privacy Guarantor on the adaptation of the GDPR places great importance on the privacy of visitors and users in order not to damage the rights of visitors / users who browse this site.
This information applies exclusively to the online features of the site and is valid for visitors / users of the site. The information does not apply to all information collected outside the web channel where this website is present.
Legal basis of the treatment
From the entry into force of the GDPR (25 May 2018), the rainsteel.it site will collect and process some data based on the interests of the data controller.
The current site treats the data acquired on the basis of the optional consent expressed by visitors / users: approval of the consent is only in the manner and purpose described in the following paragraph.
The visitor / navigator can deny consent to the provision and collection of data and can revoke at any time a consent previously provided through the Contact us form on the site.
The refusal of consent, through the appropriate rejection button on the cookie banner, or through a revocation of consent via email could result in the prohibition of access to some services and compromise the browsing experience of this site.
Data collected and purpose
Data acquired from system and security logs
This site, during user visits, automatically acquires information through system LOG and security log.
The information collected could be the following:
– time and date of the visit;
– IP address d and name of the provider of origin;
– records of errors and problems.
All these data, collected in aggregate form, are used only to support diagnostics for security purposes. Example: in case of attack the logs are monitored to block unauthorized access and to prevent harmful activities.
Access to these data is only at the server administration level and are never used for the identification or profiling of the user / visitor but only acquired for the protection and security of the present site. They could be used only in the case of a crime, and only at the request of the judicial authority in the cases provided for by the Law.
The LOG data collected from the site are processed at the Data Controller headquarters, and at the web hosting data center.
Web hosting processes data only on the explicit request of the owner and acts in compliance with European regulations.
The data used for security purposes are kept for 90 days.
– improve the functionality of this site;
– simplify navigation through automated procedures (eg Login, site language setting)
– analyze the use of the site to improve its usability and user experience.
Session cookies are necessary in order to differentiate the connected users and to prevent the functionality requested by a visitor from being used by another visitor, and are necessary for security purposes to try to neutralize cyber attacks on the site.
The session cookies used on this site do not acquire personal data and their duration is linked to the course browsing session. Closing the browser clears session cookies. For these there is no need for consent.
The functionality cookies used by this site are indispensable for the use of the site and are associated with the features specifically requested by the visitor (for example, Login in a reserved area, or acceptance of the cookie warning banner). For these there is no need for consent.
Refusal to accept the initial banner involves blocking the installation of cookies.
However cookies are strictly connected to the browser used for browsing and the management of these, such as the revocation of previously accepted cookies, can take place through the browser.
You can read all the explanations to disable cookies at the following links:
This site acts as an intermediary with regard to third-party cookies and has no control over these cookies. These cookies are used to:
– acquire the statistical information for use on the site (Google Analytics)
– add some external features to the site (Google Maps, Youtube)
– make visitors interact with social networks (Facebook, Istagram, Linkedin, Google+ sharing buttons)
In particular, Google Analytics data is acquired through a code entered on the site where the anonymization of IP addresses is preset.
This anonymous data (example: number of visits, list of the most visited pages, average stay time) and collected in aggregate form through an administration panel are used by site analysts, at the explicit request of the owner, in order to study new features of the site and improve navigability and user experience.
The data is transmitted and stored on Google’s servers in the United States and is kept for a period of 26 months.
Information on the use, purpose and suspension of these cookies is provided directly by third parties and can be consulted at the following links:
In the event that the user / navigator is still logged into the social network while browsing this site, it conveys acceptance of the use of social network cookies.
Data transfer to countries outside the EU
Based on the adhesion by Google, Facebook and Microsoft to the Privacy Shield (in particular the decision 1250/2016), and through the Google Analytics service and social plugin, this site may share some of the data collected outside of the area of the European Union.
The transfer is authorized on the basis of specific decisions of the European Union and the Guarantor for the protection of personal data.
The processing of data acquired by navigators through this site is legally managed, taking all appropriate measures to:
– increase security
– prevent unauthorized access
– prevent unauthorized disclosure of data.
The processing is carried out using IT devices, with logic and organizational methods strictly related to the purposes described above. In addition to the owner, as in the case of Google Analytics, data access is delegated to technical consultants involved in the site project.
The parties involved, always appointed by the company that owns the data, can also be external and are intended as third party technical service providers, hosting providers, IT companies, web marketing agencies.
Pursuant to European Regulation 679/2016 (GDPR), and according to the procedures and within the limits established by current legislation, the navigator / user can exercise the following rights:
· Right of withdrawal, or updating / rectification / integration and deletion of data;
· Request confirmation of the existence of personal data;
· Request the origin of your data in an intelligible manner;
· Have information regarding the methods and purposes of data processing;
· Request the transformation of data into an anonymous form;
· Lodge a complaint with the Privacy Guarantor as Control Authority (link to the Guarantor’s page);
Requests should be sent to the Data Controller through the contact us form.
Under the laws in force, the data controller is:
Via della Costituente, 18
56024 Ponte a Egola – Pisa – Italia
Web hosting is responsible for processing, processing data on behalf of the owner, is located in the European Economic Area and acts in accordance with European standards.
Google (Google Analytics), processing data on behalf of the owner, is appointed as data controller.
This document is updated to May 23, 2018