Website information notice
Pursuant to EU Regulation 679/2016
This information notice describes how the website Polynt is managed with reference to processing of Personal Data of users consulting it, as well as the processing procedures of the data transmitted by the data subject to the Data Controller through the website. This information notice has been made pursuant to Legislative Decree No. 196/2003 and later amendments and additions thereto (hereinafter the “Privacy Code”) and EU Regulation 2016/679 (hereinafter “GDPR” and, collectively, the Privacy Code and GDPR “Applicable Regulations”) addressed to those who interact with the website services of the Polynt group, accessible electronically starting from the address http://www.polynt.com which is the start page of the official Polynt website.
Pursuant to the Applicable Regulations, personal data mean “Any information concerning a physical person, who is identified or may be identified; the physical person is considered to be identifiable who can be identified, directly or indirectly, with special reference to an identifying element, such as a name, an identification number, data concerning location, an online identifying element or one or more characteristic elements of his physical, physiological, genetic, psychological, economic, cultural or social identity “ (hereinafter “Personal Data”).
The upper case terms used and not defined in this document have the meanings specified in the GDPR.
This information notice is delivered only for the above mentioned websites and not for any other websites which the user may consult following a link.
The Data Controller
The Data Controller of the personal data is Polynt S.p.A. with registered office in via E. Fermi, 51, 24020 Scanzorosciate (BG). Pursuant to the Applicable Regulations, processing means “any operation or set of operations, carried out with or without the use of automatic processes and applied to personal data or to the sets of personal data, such as collecting, recording, organising, structuring, retaining, adapting or modifying, extracting, using, communicating by transmission, dissemination or any other way of making them available, comparing or interconnecting, limiting, erasure or destruction (hereinafter the “Processing”). The data subject to whom such Personal Data belong must be informed as to why such data are requested and how the data are used.
Privacy Delegate Officer and contact data
The Privacy Delegate Officer is identified in the figure of the CHRO. To handle the collected data better, the Data Controller has named certain individuals, appointed and trained to manage the Personal Data in their sector (hereinafter the “Sector Officials”).
Following are the contact data: firstname.lastname@example.org
Purpose of the processing
The Personal Data communicated by the user will be used only to provide the requested service or for other purposes requested by the user and for which this information notice has been issued.
Type of Data processed
The information systems and software procedures for operating these websites (http://www.polynt.com), during their ordinary operation, acquire some personal data, transmission of which is implicit in the use of Internet communications protocols.
This is information which has not been collected in order to be associated with identified data subjects, but which by its very nature, through processing and association with data held by third parties, could allow identification of users.
This data category includes IP addresses, the machine names of computers used by users connecting to the Website, addresses in URI (Uniform Resource Identifier) notation of the requested resources, time of request, method used to submit the request to the server, size of the file obtained in reply, numerical code indicating the state of the reply given by the server (successful, error, etc.) and other parameters referring to the operating system and IT environment of the user.
These data are used only to collect anonymous statistical information about use of the Websites and to check their proper operation (see also the paragraph on cookies). These data could be used to ascertain responsibility in hypothetical cases of internet crime against the website.
Data voluntarily provided by the user
Optional, explicit and voluntary sending of email to the addresses appearing on the website implies later acquisition of the address of the sender, necessary to respond to requests, as well as of any other personal data contained in the message. Polynt will handle the data received in compliance with the Applicable Regulations. Should the data provided refer to third parties different from the sender, it is taken for granted that such third parties have expressly authorised the sender to provide their Personal Data on a proper legal basis making the Processing of such data legitimate. The sender will hold Polynt harmless against any complaint, claim or request for any damage which Polynt may receive from the third parties whose Personal Data have been processed through use of the Polynt website in violation of the Applicable Regulations.
Data provided through Curriculum Vitae
The personal data collected when the data subject sends his Curriculum Vitae are processed and retained with the utmost confidentiality, care and diligence, always in compliance with the provisions of Applicable Regulations. Such data may be collected both electronically and on paper. The data are processed in the context of looking for, selecting and evaluating staff.
Communication of personal data
The Personal Data may be communicated and shared for the purposes described above with the following:
1. Parties needed to deliver the services offered by the website, including by way of example: individuals who receive the requests by email or receive the curricula (Sector Officials).
2. Third parties who provide specific services or carry out related, instrumental or supporting activities for Polynt. These parties are appointed Data Processors.
3. Parties which, when required by law or to prevent or repress committing of a crime involving the Personal Data, may process the Personal Data, such as by way of example and not limitation: public entities, court authorities, etc.
Personal Data Retention
Polynt will retain the collected Personal Data for the time strictly needed to achieve the purposes and satisfy the users’ requests, as well as throughout duration of registration with the website. Once such a period of time has elapsed, the Data Controller will delete the Personal Data.
The latest amendment was made on July 8, 2019.
Rights of the data subjects
Pursuant to the Applicable Regulations, users enjoy the right to demand from Polynt, at any time, access to their Personal Data, rectification or erasure, and they may decide to object to their processing, to limit the processing and to receive in a structured format, of common use and readable from an automatic device, the personal data which concern them.
Pursant to the Applicable Regulations, should the users believe that Processing of their Personal Data breaches the provisions of the Applicable Regulations, they will enjoy the right to lodge complaint with the relevant controlling authority (Authority for the Protection of Personal Data).