Privacy Policy

Information on the protection of personal data pursuant to Article 13 of Regulation (EU) No. 2016/679   Dear User, We welcome your visit to our website and the interest you have shown. Regulation (EU) 679/2016 concerning the protection of personal data (GDPR) requires us to provide data subjects with accurate information regarding the processing of their personal data. Therefore, as Data Controller, our Company would like to inform you about which personal data are collected, the reasons why such data are used and shared, how long they are kept, as well as about your rights and how to exercise them. In order to ensure a safe and pleasant browsing experience on our website, we would like to remind you that we are committed to protecting your personal data and privacy by processing in accordance with the principles of correctness, lawfulness and transparency. To this end, our Company uses appropriate security tools and all necessary measures to protect your personal data. However, please note that we cannot guarantee the privacy of any personal information that you transmit over the web or that may be collectible in transit by others. We cannot therefore be held liable for any breach of security that is not due to our own negligent behaviour. DATA CONTROLLER The Data Controller is ESNA-SOA with registered office in Via N. Tommaseo 67 35131 Padua, Tel. +39 049 8433100, Fax +049 8433108, email info@esnasoa.it, website www.esnasoa.it. DATA PROTECTION OFFICER (DPO) The Controller has appointed a Data Protection Officer (DPO), domiciled for the purpose at the company’s premises, who may be contacted for all matters concerning the processing of your personal data and the exercise of your rights under the GDPR at the email address dpo@esnasoa.it.      
  1. DATA SUBJECT TO PROCESSING
The personal data collected by the Data Controller through this website are common personal identification data such as name, surname, email address and telephone number. In addition to the aforementioned personal data provided directly by you for the purposes set out below, the website automatically collects other common data such as, but not limited to, IP addresses, cookies or other identifiers. To consult our Cookie Policy, please continue reading this privacy policy.
  1. PURPOSES AND METHODS OF DATA PROCESSING 
The personal data you provide are processed by the Controller for the following purposes:
  • To provide you with the information requested through filling out the contact form or booking a video call.
Data processing for the listed purpose shall include all operations provided for in Article 4, paragraph 2 of Regulation (EU) 679/2016 and necessary for the processing in question, including communication to the persons referred to in point D) below. Data processing is carried out using instruments and procedures to ensure security and confidentiality and may be carried out either on paper or by computer. Data is processed by specially appointed personnel, using organisational and processing logic strictly related to the purposes and in any case in such a way as to ensure the security, integrity and confidentiality of the data.
  1. LEGAL BASIS OF PROCESSING – MANDATORY OR OPTIONAL NATURE OF PROVIDING DATA
The legal basis on which the processing of your common personal data is based includes processing which is necessary for the performance of pre-contractual measures taken at your explicit request and therefore for the purpose of answering any questions or requests for information and the provision of services which you have made through filling in the Contact Form or booking a video call, as well as for the legitimate interest of the Data Controller in order to manage relations with the user and to improve the services offered. We also inform you that, in view of the purpose of the processing illustrated above, the provision of data is optional but that failure to provide it, or the provision of partial or incorrect data, has no other consequence than the impossibility of achieving the indicated purpose.      
  1. CATEGORIES OF RECIPIENTS OF PERSONAL DATA
Personal data will not in any way be disclosed to unknown parties, but may be communicated to specific parties such as:
  • Employees and collaborators, consultants or freelance professionals who work on behalf of the Data Controller. These individuals are authorised to process the data in their capacity as Data Processors pursuant to Article 29 of the GDPR or as Data Controllers pursuant to Article 28 of the GDPR;
  • Supervisory bodies, judicial authorities and all other parties to whom communication is compulsory by law for the fulfilment of the abovementioned purposes.
 
  1. TRANSFER OF DATA OUTSIDE THE EU
The data will not be transferred to third countries outside the European Union or to international organisations.
  1. PERIOD OF DATA RETENTION
The personal data provided will be processed and stored for the time strictly necessary to respond to your request for information, after which your data will be deleted, unless there is a new and different purpose for processing your data (for example, the conclusion of a contract).
  1. RIGHTS OF THE DATA SUBJECT
As a data subject, you may at any time exercise the rights to:
  • Request access to your personal data – Art. 15;
  • Request and obtain the rectification or updating of such data – Art. 16;
  • Request, where provided for, the deletion of personal data processed (right to be forgotten) – Art. 17;
  • Request the restriction of processing of your personal data, where provided for – Art. 18;
  • Obtain data portability, where provided for – Art. 20;
  • Oppose processing – Art. 21;
  • Not to be subject to automated decision-making processes – Art. 22;
  • Withdraw consent, where provided for. The withdrawal of consent shall not affect the lawfulness of processing based on consent given before withdrawal;
  • Lodge a complaint with the Italian Data Protection Authority, Piazza Venezia 11 – 00187 Rome – Art. 77.
In order to exercise their rights, ask questions, make comments and requests regarding this information note, the data subject may contact the Data Controller at the email address dpo@esnasoa.it, indicating in the subject line: Personal data protection: data subject request. This statement was updated on 24/03/2022. The Data Controller reserves the right to modify its privacy policy and, consequently, this information notice. Updates will be published on this website. We therefore advise you to regularly consult this page on our website.

Cookie Policy

This website uses cookies in the form and manner described on this page. By using the site you consent to the use of cookies in accordance with the terms and conditions described below. DETAILED INFORMATION ON COOKIES Cookies are text files containing small amounts of information that are stored on the user’s computer or mobile devices every time a website is accessed through a browser. On each subsequent visit the browser sends these cookies to the website that originated them or to another website. Cookies allow websites to remember certain information to make browsing quick and easy. Depending on the intended purposes, the cookies used by the website fall into the following three categories:
  • Strictly necessary or so-called technical cookies: These are essential to browse the websites you are visiting and use certain features. Without these cookies, some online services requested by the user (e.g. access to restricted areas) cannot be provided.
  • Performance cookies: These collect anonymous information and help to understand how users interact with the website visited. For example, they tell you which pages are most visited, the time spent on the website, if error messages come up, etc. Performance cookies collect information on an aggregate, anonymous basis and are used to improve the operation of the websites and the user experience.
  • Functionality cookies: These allow the website to remember choices made by the user (e.g. font size of displayed text, language preference, etc.) and to provide personalised features selected by the user. In some cases, these cookies may also be used to offer online services or to avoid offering services or messages that the user has already refused in the past;
  • Profiling cookies: These are used to monitor and profile users while browsing, to study their movements and habits of web browsing or consumption (what they buy, what they read, etc.), also for the purpose of sending targeted and personalised advertisements (so-called behavioural advertising).
Depending on their duration, cookies can be:
  • Session (or temporary): These are deleted when the browser is closed;
  • Persistent: These remain stored as files, even after the browser is closed, and are deleted after a predetermined period of time.
Depending on the website or domain from which they come, cookies can be:
  • First-party (or proprietary) cookies: These are installed directly by the websites visited by the user, i.e. by the website whose address is entered by the user (displayed in the URL window). They are managed by the domain that generated them.
  • Third-party cookies: These are set by a website other than the one the user is visiting. They are managed by domains outside the one being visited.
DESCRIPTION OF COOKIES USED BY THE WEBSITE This website uses different types of cookies for various purposes: First-party technical and functional cookies (e.g. when authenticating, authorising and browsing services accessed via registration);
Name and duration Purpose Link to privacy policy and consent forms of authorised third parties
hu-consent (variable duration depending on the user’s choice, 3 months – 1 year). Keeps track of whether or not a user has accepted the use of different types of website cookies. https://hu-manity.co/cookiecompliance-terms/
has_js __utma (2 years)__utmb (1 hour)__utmc (session duration)__utmt (1 hour)__utmv (2 years)__utmz (7 months)_ga (2 years)_gac* (3 months)_gat (1 hour)_gid (1 day) IDE (2 years) test_cookie (1 hour) These cookies allow the Data Controller to monitor and analyse traffic data and are used to track user behaviour. Google Analytics is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use the Personal Data to contextualise and personalise the advertisements of its advertising network. Personal Data processed: Usage data and tracking tool.  Place of processing: Ireland. https://policies.google.com/privacy
Cookie Google Font (maximum 2 years) These cookies allow you to view content hosted on external platforms directly from the pages of this Application and interact with them. This type of service may still collect web traffic data for the pages where the service is installed, even when users do not use it. Google Fonts (GoogleIreland Limited) è un serviziodi visualizzazione di stili dicarattere gestito da Google Ireland Limited che permette a questa Applicazione di integrare tali contenuti all’interno delle proprie pagine. Dati Personali trattati: Dati di utilizzo e Strumento di Tracciamento.Luogo del trattamento:Irlanda.https://policies.google.com/privacy
  • Third-party cookies, including profiling cookies, specifically those issued by aggregate analysis tools such as Google Analytics.
Name and duration Purpose Link to privacy policy and consent forms of authorised third parties
has_js __utma (2 years)__utmb (1 hour)__utmc (session duration)__utmt (1 hour)__utmv (2 years)__utmz (7 months)_ga (2 years)_gac* (3 months)_gat (1 hour)_gid (1 day)IDE (2 years)test_cookie (1 hour) These cookies allow the Data Controller to monitor and analyse traffic data and are used to track user behaviour. Google Analytics is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use the Personal Data to contextualise and personalise the advertisements of its advertising network. Personal Data processed: Usage data and tracking tool.  Place of processing: Ireland. https://policies.google.com/privacy
Conversion (3 months) Google uses cookies for advertising, including serving and rendering ads, personalising ads, limiting the number of times an ad is shown to a user, muting ads you have chosen to stop seeing, measuring the effectiveness of ads. https://policies.google.com/technologies/ads
The Controller uses the Google Analytics services provided by Google Inc. for an aggregate analysis of browsing data to improve the websites. This tool uses cookies that are stored on the user’s computer or mobile device in order to allow the website operator to analyse how users use the websites. The information generated by the cookie about your use of the website (including your IP address, which has been rendered anonymous by removing several digits) is transmitted to and stored by Google on its servers. This information is used for the purpose of tracking and examining the user’s use of the website, compiling reports on website activity and providing other services relating to website activity and Internet usage. Users who do not want cookies related to Google Analytics can prevent them from being stored on their computer or mobile device by installing the Google Analytics opt-out browser add-on made available by Google at the address  https://tools.google.com/dlpage/gaoptout. To activate the add-on, which prevents the system from sending information about the user’s visit, simply install it by following the instructions on the screen, then close and reopen the browser. You may decide to disable all cookies by modifying your browser settings. However, if you disable cookies, some of our services may not function properly and you will not be able to access many features designed to enhance your browsing experience. For more information on how to manage or delete browser cookies, please refer to the following paragraph of this Cookie Policy.   MANAGEMENT AND DELETION OF COOKIES Most web browsers are set by default to accept cookies automatically. The user can change these settings to block cookies or to be warned each time cookies are sent to the browsing device. In addition, at the end of each browsing session the user can delete collected cookies from their device. There are various ways to manage cookies, so please refer to the specific instructions of your browser. If you use different devices to view and access the websites (e.g. computers, smartphones, tablets, etc.), you should ensure that each browser is adjusted on each device to suit your cookie preferences.