Information pursuant to art. 13 of Regulation (EU) n. 679/2016 ("GDPR")

Eudaimon S.p.a. (hereinafter "Eudaimon") protects the confidentiality of personal data and guarantees them the necessary protection from any event that could put them at risk of violation.

As required by the European Union Regulation n. 679/2016 ("GDPR"), and in particular with art. 13, below we provide the user (hereinafter "Data Subject") with the information required by law relating to the processing of their personal data (hereinafter "Personal Data") voluntarily made available to Eudaimon by the Data Subject.

The privacy notice is provided only with reference to the website www.eudaimon.it and not with reference to other websites that may be consulted by the user through hypertext links. 

 

1. Data Controller and Data Protection Officer

The Data Controller is Eudaimon S.p.A., with registered office in Vercelli (13100), Piazza Pajetta, 2.

Eudaimon has appointed an internal data protection officer (e-mail address rpd@eudaimon.it), who has taken all the measures deemed necessary and appropriate for adequate data protection and to whom the Data Subject may contact for any requests or information.

 

2. Purpose, modalities of the processing and legal basis

The treatments connected to the web services of this website are only handled by Eudaimon technical staff in charge of processing. No data deriving from the web service is communicated or disseminated.

Personal Data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.

If the Data Subject has given consent to the processing of their Personal Data, this constitutes the legal basis for such processing (Article 6, paragraph 1, point (a), GDPR).

For the processing of Personal Data for the purpose of initiating or executing a contract, the legal basis is constituted by art. 6, paragraph 1, point (b), GDPR.

Where the processing of Personal Data is necessary for the purpose of fulfilling legal obligations, the Data Controller is authorized to perform it pursuant to art. 6, paragraph 1, point (c), GDPR.

Furthermore, Eudaimon processes Personal Data for the purpose of pursuing its own legitimate interests, as well as those of third parties, in accordance with art. 6, paragraph 1, point (f), GDPR. These legitimate interests include not only the maintenance of the functionality of the IT systems, but also the marketing of products and services offered by Eudaimon, as well as the documentation of business contacts in accordance with the provisions of the law. 

 

3. Types of data processed

Navigation data

The computer systems and software procedures used to operate this website acquire, during their normal operation and only for the duration of the connection, some Personal Data whose transmission is implicit in the use of Internet communication protocols.

These data are not collected to be associated with identified data subjects, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters concerning the operating system and the user's computer environment.

These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Cookie

This website uses cookies, by which we mean, data that are sent from the website and stored by the internet browser in the device (computer, tablet or mobile phone), used by the user for navigation. To learn more and to read the detailed information, the Data Subject can consult the specific Cookie Policy made available on this site.

Data provided voluntarily by the data subject

Any voluntary and explicit sending of e-mails to the addresses indicated on this site, as well as the compilation of the specifically prepared "forms" (masks), entails the subsequent acquisition of the sender's address, as well as any other data communicated, to respond to requests and / or proceed with any activities requested by the Data Subject.

The use of Personal Data for the eventual sending of advertising material, commercial information, sale of products or services by the Company, may only take place upon the release of the express consent of the Data Subject.

For detailed information on the processing outlined here, the Data Subject can consult the specific Privacy Notice made available on this site. 

4. Period for which the Personal Data will be stored

Personal Data are kept for the strictly necessary technical time, as described in the previous paragraph and in the information documents.

In the event of a request for cancellation by the Data Subject, the Personal Data are deleted within 15 days of receipt of the request according to the procedures referred to in paragraph 5 below, except for those that must be kept for a certain period according to current legislation.

 

5. Rights of the Data Subject

In relation to the processing of Personal Data, the Data Subject will have the following rights under the GDPR:

  1. Right of access
  2. Right to rectification
  3. Right to erasure (‘right to be forgotten’)
  4. Right to restriction of processing
  5. Right to data portability
  6. Right to object
  7. Right to withdraw consent
  8. Right to lodge a complaint with Data Protection Authority

The exercise of their rights under this paragraph may be exercised by the Data Subject by sending a registered letter with acknowledgement of receipt to the address of the Data Controller or by communicating to the email address of the Data Protection Officer.