Under the Regulation (EU) 2016/679
(General Data Protection Regulation — EU GDPR)
2) Identifying details about the data owner, manager and Privacy Officer
After browsing this website, data related to identified or identifiable persons may be processed. Pursuant to the Legislative Decree 196/2003, users’ data processing will be carried out following the principles of transparency, lawfulness, and confidentiality protection.
The owner of data treatment is Quarryon Srl, registered office in Piazza Gino Menconi, 13, 54033 Carrara – VAT number: IT01377850456 – Telephone contact: +39 388 447 62 51 – Email address: email@example.com
3) Type of data processed
4) Cookies and browsing data
Technical cookies are necessary for the proper functioning of a website and to allow user navigation; without them the user may not be able to view the pages correctly or to use some services.
Profiling cookies have the function of creating users’ profiles in order to send them advertising messages aligned with the preferences that they have expressed while browsing.
Cookies can also be classified as:
_ “session” cookies, which are immediately deleted when the browser of the user is closed;
_ “persistent” cookies, which remain within the browser of the user for a certain amount of time. They can be used, for example, to recognize the device that connects to a site to order to make the authentication operations easier for the user;
_ “own” cookies, generated and managed directly by the manager of the website that the user is browsing;
_ “third party” cookies, generated and managed by subjects who are different from the manager of the website that the user is browsing.
5) Cookies used on the site
This website uses the following types of cookies:
1) own, session and persistent cookies, necessary to allow navigation on the website, for purposes of internal security and system administration;
2) third-party, session and persistent cookies, necessary to allow the user to interact with multimedia elements of the website, such as images and videos;
3) persistent third-party cookies used by the website to send statistical information to the Google Analytics system, through which Quarryon Srl can perform statistical analysis of accesses / visits to the website. The cookies are used only to pursue statistical purposes and collect information in aggregate form. Through a couple of cookies, one of which is persistent and the others are session cookies (expiring when the browser is closed), Google Analytics also saves a register with the start times of the visit to the website and its exit. Google can prevent data collection through cookies and subsequent data processing by downloading and installing a specific browser plug-in from the following address: http://tools.google.com/dlpage/gaoptout?hl=it
4) persistent third-party cookies used on this website to include the buttons of some social media (Facebook, Twitter) on its pages. By selecting one of these buttons, users can share the content of the website page they are visiting on their personal page within the selected social media.
The following table shows a detail of the cookies on the Site
6) How to disable cookies in browsers
Most of the browsers currently in use automatically accept cookies, but the user has the right to configure his browser in order to exclude, display before accepting, and deleting cookies. It will also always be possible to request the deactivation of cookies by changing the browser settings, but this deactivation may slow down or prevent access to some parts of the website.
To facilitate the configuration of your browser, we summarize below the operations to be performed with the most common ones:
Select the Chrome menu icon.
At the bottom of the page, select Show advanced settings.
In the “Privacy” section, select Content settings.
Select Block sites from setting any data.
Click the Tools button and then click Internet Options.
Click on the Privacy tab and in Settings move the slider upwards to block all cookies or downwards to allow them all and then click OK.
Click the menu button and select Options.
Select the Privacy panel.
To disable cookies, remove the mark from the ‘Accept cookies from sites’ item.
Preferences> Advanced> Cookies
Never accept cookies
Select the ‘Safari’ item from the menu bar.
Select the ‘Preferences’ item.
Select the ‘Privacy’ tab present in the preferences panel.
Select the ‘Never’ radio button in the ‘Block cookies’ section.
7) Retention of personal data
Personal data are stored and processed through IT systems owned by Quarryon Srl and managed by Quarryon Srl or by third party suppliers of technical services; for more details, please refer to the “Scope of accessibility of personal data” section below. The data are processed exclusively by specifically authorized personnel, including the personnel in charge of carrying out extraordinary maintenance operations.
8) Purposes and methods of data processing
Quarryon Srl can process the common and sensitive personal data of the user for the following purposes: allow users to benefit from services and features of the website; manage requests and reports from its users; send newsletters; manage job applications received through the website, etc.
Plus, with the further and specific optional consent of the user, Quarryon Srl may process personal data for marketing purposes, and specifically to send to the user promotional material and / or commercial communications about the Company’s services, at the addresses registered, both through traditional methods and / or TLC (such as, paper mail, telephone calls with operator, etc.), and through automated digital channels (such as internet communications, fax, e-mail, sms, applications for mobile devices such as smartphones and tablets – the so-called apps, social network accounts – i.e. via Facebook or Twitter, phone calls with automatic operators, etc.).
Personal data are processed both in paper and electronic form and entered into the company information system in full compliance with EU Reg. 2016/679, including the norms about security and confidentiality and inspired by the principles of correctness and lawfulness of treatment. In compliance with EU Reg. 2016/679 the data are kept and stored for an unlimited amount of time, unless requested by the customer.
9) Security and quality of personal data
Quarryon Srl is committed to protect the security of the users’ personal data and respects the security standards of the applicable legislation in order to avoid data loss, illegitimate or illegal use of data, and unauthorized access to them, with particular reference to the Technical Regulations on minimum security measures. In addition, the information systems and IT programs used by Quarryon Srl are configured in such a way as to minimize the use of personal and identification data; these data are only processed to achieve specific purposes pursued in specific moments. Quarryon Srl uses multiple advanced security technologies and procedures to promote the protection of users’ personal data; for example, personal data are stored on secure servers located in places with protected and controlled access. The user can help Quarryon Srl to update and keep their personal data correct by communicating any changes related to their address, their qualification, contact information, etc.
10) Scope of communication and data access
The user’s personal data may be communicated to:
all subjects to whom the right to access to these data is recognized by virtue of regulatory norms;
to our collaborators, employees, as part of their duties;
to all those natural persons and / or legal entities, public and / or private when the communication is necessary or functional for our business activities and in the ways and for the purposes described above.
11) Nature of providing personal data
The provision of some personal data by the user is mandatory to allow the Company to manage communications and requests from the user or to contact the user himself to respond to his request. This type of data is marked by the asterisk symbol [*] and in this case the provision is mandatory to allow the Company to follow up on the request which, failing that, cannot be processed. On the contrary, the collection of other data not marked with an asterisk is optional: failure to provide it will not have any consequences for the user.
The provision of personal data by the user for marketing purposes, as specified in the “Purpose and methods of treatment” section is optional and the refusal to provide it will have no consequence. The consent given for marketing purposes is intended as extended to the sending of communications made through both automated and traditional methods and means of contact, as exemplified above.
12) Rights of the data subject
12.1 Right of access and Right to rectification, Art. 15 and 16 of EU Reg. 2016/679
The interested party has the right to obtain from the data controller confirmation that personal data concerning him or her is being processed and in this case, to obtain access to personal data and to the following information:
- a) the purposes of the processing;
- b) the categories of personal data in question;
- c) the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations;
- d) the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period;
- e) the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
- f) the right to lodge a complaint with a supervisory authority;
- h) the existence of an automated decision-making process, including profiling and, at least in those cases, significant information on the logic used, as well as the importance and expected consequences of such processing for the data subject.
12.2 Right to erasure (or “Right to be forgotten”), Art. 17 of EU Reg. 2016/679
The data subject has the right to obtain from the data controller the erasure of personal data concerning him without undue delay and the data controller has the obligation to delete personal data without undue delay, if one of the following reasons exists:
- a) personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
- b) the data subject withdraws the consent on which the processing is based according with point a of Article 6(1), or with point a of Article 9(2), and where there is no other legal ground for the processing ;
- c) the data subject objects to the processing pursuant to Article 21(1), and are no overriding legitimate grounds for the processing, or objects to the processing pursuant to Article 21(2);
- d) personal data have been unlawfully processed;
- e) personal data have to be erased for compliance with a legal obligation under Union or Member State law to which the data controller is subject;
- f) personal data have been collected in relation to the information society service offer referred to in Article 8(1) of EU Reg. 2016/679
12.3 Right to restriction of processing, Art. 18 of EU Reg. 2016/679
The data subject has the right to obtain from the data controller restriction of processing when one of the following applies:
- a) the data subject contests the accuracy of personal data, for a period enabling the controller to verify the accuracy of personal data;
- b) the treatment is unlawful and the data subject opposes the erasure of personal data and requests the restriction of their use instead;
- c) the data controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims;
- d) the data subject has objected to processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
12.4 Right to data portability, Art. 20 of EU Reg. 2016/679
The data subject has the right to receive the personal data concerning him or her in a structured, commonly used and machine-readable format and has the right to transmit those data to another data controller without hindrance from the controller to which the personal data have been provided.
- Revocation of consent to treatment
The data subject has the right to withdraw consent to the processing of his or her personal data by sending an email to the following email address: firstname.lastname@example.org
If you want more information on the processing of your personal data, or exercise the rights referred to in article 12 above, you can send an email to the following email address: email@example.com
Before we can provide you, or modify any information, it may be necessary to verify your identity and answer some questions. We will reply as soon as possible.