LEGAL FRAMEWORK
- Directive 2002/58/EC – concerning the “processing of personal data and the protection of privacy in the electronic communications sector”.
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
- Legislative Decree 30 June 2003 n. 196 “Code regarding the protection of personal data”, as amended by Legislative Decree 10 August 2018 n. 101.
DATA CONTROLLER
Following consultation of this site, personal data relating to identified or identifiable persons may be processed. The Data Controller of the process is Hedge Invest S.G.R.p.a., Via Filippo Turati n. 40, 20121 MILANO.
DATA PROCESSOR OFFOCER
The Data Controller has appointed a Data Protection Officer (“DPO”) who can be reached at the following e-mail address: privacy@hedgeinvest.it.
DATA PROCESSING PLACE
The process related to the web services of this site is realized at the seat of the Data Controller.
TYPE OF DATA PROCESSED
Browsing data
The information systems and the software procedures needed for the running of this web site acquire, during their normal operation, some personal data the transmission of which is implicit in the use of the internet communication protocols. Such data is not collected to be associated to identified Data Subjects, but – due to its nature – it could, allow to identify the users, through processing and association with data held by third parties. To this category of data belong the IP addresses and or the domain names of the PC used by the users who connect to the web site, the URI (Uniform Resource Identifier) notation addresses of the required resources, the time of the request, the method used while sending the request to the server, the size of the file obtained in response, the numeric code specifying the status of the response given by the server (successful, error, etc.) and other parameters concerning the operation system and the user’s information environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing.
Data provided freely by the user
The optional, explicit and voluntary sending of personal data by the user in the registration forms on this site or by calling any telephone numbers listed on the site, involves the subsequent acquisition of the data provided by the sender, necessary for the provision of the service or information requested. To make it clear and understandable to the user whether or not the communication of their personal data is optional, at the time of their request, the Data Controller will highlight with an asterisk those which are not obligatory, but necessary for other purposes which will be fully described.
COOKIES
Please refer to the Cookie Policy accessible at https://hedgeinvest.it/en/cookie-policy for more information on the cookies we use.
PURPOSES AND LEGAL BASE OF THE PROCESS
Personal data will be processed for the following purposes:
To allow users to browse and consult the website.
The legal base of the process is the consent that is clearly given by consulting the site (art. 6, first paragraph, let. a) of the GDPR).Purposes related to the provision of the services required (as responses to request of information through the form “contacts”).
The legal basis of the process is the consent that is expressly given by filling the form (art. 6, first paragraph, let. a) of the GDPR).Evaluation of CVs sent by completing the form “Job”.
The legal basis of the process is the consent that is expressly given by filling the form (art. 6, first paragraph, let. a) of the GDPR).
Defensive purposes in the event of abuses in the use of the site or attempts at fraud.
The legal base of the process is the legitimate interest of the Data Controller (art. 6, first paragraph, let. f) of the GDPR).
LINK TO OTHER WEBSITES
This website may contain links or references for access to other websites. The Data Controller does not control cookies or other monitoring technologies of these websites to which this Policy does not apply. We therefore recommend that you consult the individual privacy policies relating to these websites.
OPTIONAL SUPPLY OF DATA
Apart from what has been specified for browsing data (necessary for the correct functioning of the website), users are free to supply their personal data. However, the non-supply of such data may entail the impossibility to obtain what has been required.
PROCESSING METHODS AND DATA RETENTION
Personal data are processed, also thorough automated devices, by authorized persons, for the time strictly necessary to fulfil the purposes for which the personal data were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
SHARING, COMMUNICATION AND DIFFUSION OF DATA
The collected data may be shared, transferred or communicated to other companies, appointed as Data Processor, for activities strictly connected to the purposes indicated above and necessary to the functioning of the service, such as the management of the information system. A part from these cases, personal data will not be communicated or transferred to third parties unless there is a contractual provision or the authorization of the data subject.
TRANSFER OF PERSONAL DATA
Personal data will not be transferred to Third Countries, meaning countries not belonging to the European Union or to the European Economic Area. Should this occur, the Data Controller declares and guarantees to comply with the provisions of the articles 44 et seq. of the GDPR.
RIGHTS OF INTERESTED PARTIES
The regulation protecting the personal data provides some rights for the subject to whom the data refers (the so-called data subject). In particular, pursuant to art. 15 and subsequent of the EU Regulation 2016/679, each data subject has the right to obtain confirmation of the existence or not of personal data concerning him/her and, in case of existence of data, to access the personal data, to obtain rectification, cancellation, limitation of processing, portability, as well as to oppose the process. Data subjects who believe that the process of personal data referred to them through this website is in breach of the provisions of the GDPR have the right to lodge a complaint with the Supervisory Authority, as provided by the art. 77 of the GDPR.
CHANGMENT TO THIS PRIVACY POLICIES
The Data Controller periodically verifies its own privacy and security policies and, if necessary, revises them according to regulatory, organizational or technological changes. In the event of a change in policies, the new version will be published on this page of the site.
QUESTIONS, COMPLAINTS, SUGGESTIONS AND EXERCISE OF RIGHTS
Anyone interested in more information, in contributing with suggestions or making complaints or disputes regarding the privacy policies, the way in which our Company processes personal data, as well as data subjects who intend exercise their rights under the legislation on the protection of personal data, can contact the Data Controller and the Data Protection Officer (DPO) by writing to Hedge Invest s.r.l., via Filippo Turati n. 40 – 20121 Milan, or by sending an email to privacy@hedgeinvest.it.