The policy describes how the ARXIS website is managed, with reference to the processing of its users’ personal data. The policy, which is also pursuant to art. 13 of the General Regulation (EU) 2016/769 on Personal Data Protection (GDPR) and Italian Legislative Decree 196/2003 on Personal data protection, as amended, is for persons who interact with ARXIS S.r.l. web services, which are accessible electronically at the address: www.arxis.it. The policy is provided solely for the ARXIS website and does not cover other websites that are accessible via links from ARXIS pages.
The policy is also based on Recommendation no. 2/2001 issued by the European Authorities for the protection of personal data, which identifies certain minimum requirements for the collection of personal data online and, in particular, the procedures, timing and nature of the information that the Data Controllers must provide to users when they visit web pages, regardless of the purpose of the visit.
The Policy provides information on the processing of data collected during visits to the website; for a complete overview on data processing by the company, users are invited to read the ARXIS policy on data processing.
Following visits to this site, data relating to identified or identifiable persons may be processed. The “Data Controller” responsible for its processing is ARXIS S.r.l., with registered office in Agrate Brianza (MB) (Italy), Viale B. Colleoni, no.5, in the persons of its pro-tempore legal representatives.
Data processing related to the web services on this site is performed solely by the ARXIS staff in charge of the processing. No personal data deriving from the web service shall be disseminated. The personal data provided by users is used solely to perform the service requested and is only communicated to third parties if doing so is necessary to achieve said purpose.
The computer systems and software procedures used to operate this website collect certain personal data during normal operation whose transmission is implicit in the use of the Internet, which is based on the TCP/IP protocol.
The information is not collected in order to be associated with identified data subjects, but which by its very nature could, through processing and association with data held by third parties, result in browsing users being identified.
This category of data includes the “IP addresses” or domain names of the computers used by users who visit the website, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the web server, the file size obtained in response, the numerical code indicating the status of the response provided by the web server (success, error, etc.) and other parameters related to the users’ operating systems and computer environments. The data is used for the sole purpose of obtaining anonymous statistical information on the use of the website and to check that it functions correctly.
It should be noted that the aforementioned data could be used to ascertain responsibility in the case of computer crimes committed against the ARXIS website or other websites connected to it: except for this circumstance, data on web contacts is stored for the time necessary to complete the activity requested or no more than ninety days from the date of collection.
The ARXIS website can also be visited by minors under the age of eighteen because it only collects technical and commercial information content as part of the provision of IT services.
The request for information present on the Contact page of the ARXIS website involves the collection of certain personal data, including the requestor’s email address.
The website does not intentionally collect any user personal data.
Cookies are not used to transmit information of a personal nature, nor are so-called persistent cookies of any kind used or systems for tracking users.
The use of so-called session cookies (which are not stored permanently on user computers and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) required to permit secure and efficient browsing of the website.
The so-called session cookies used on this website do not use other computer technologies that could compromise the privacy of user browsing and do not allow the collection of user personal identification data.
Apart from that specified for browsing data, users are free to provide the personal data contained in the specific electronic request form. However, failure to provide it will render it impossible to fulfil the contact request.
ARXIS has prepared the necessary measures to ensure that processing takes place in full compliance with the rights of the data subjects and the legislation in force. Appropriate security measures are used to prevent loss of data, unlawful or incorrect use and unauthorised access.
Personal data is kept for the sole purpose of the activity for which it was recorded and, naturally, in compliance with all legal provisions in this regard. This means that when said data is no longer of use to those principles, it is permanently deleted. Within the limits established by the law, the Data Controller will endeavour to ensure that the recipients of said data will also delete it.
The data subjects to whom the personal data collected in the specific section refers may exercise the rights under the law and, more specifically:
Given the processing procedure, it is very unlikely that there will be any requests with regard to data portability. In the specific case, ARXIS will assess the reasons for the request to comply with the provisions of the law.
In the event that actions resulting from exercising the rights referred to in points 2.b and 3 prove to be incompatible with the management of the contractual relationship, ARXIS will highlight the issue in order to find an agreement.
The right of the data subject to submit a complaint to the Supervisory Authority remains unaffected should they feel dissatisfied with the conduct of ARXIS s.r.l. in their regard.
ARXIS does not have automated decision-making processes and will not disclose your personal data.
Concerning the exercise of rights or any other need, the Data Controller may be contacted directly at ARXIS Srl – Viale B. Colleoni, n.5, 20864 Agrate Brianza (MB) – Italy, or at the email address: info@ARXIS.