Art&sofT S.r.l.s. Unipersonale, as the Owner of the company of the same name, with registered office at Via Vescovado, 32 – Alessandria – Italy, is the Data Controller of the personal data collected on this site pursuant to and for the purposes of EU Regulation 679/2016 (hereinafter GDPR):
Personal browsing data
Art&sofT S.r.l.s. Unipersonale is committed to protecting personal data and asks you to take a few minutes to read how we collect, use, disclose and transfer the personal data provided to us through our website www.art-soft.it or by interacting via data transmitted to Art&sofT S.r.l.s. Unipersonale by third-party companies that provide technological and/or IT, logistics, and commercial services.
This notice also explains how we collect data through the use of cookies and related technologies on our Platforms.
Personal data processed for contractual purposes, legal obligations, rights of the Data Controller
Personal details, contact data.
Personal data processed for the Controller’s general marketing purposes
Personal details, contact data.
Personal data processed for marketing and profiling purposes
Personal details, contact data, data collected through cookies installed by the Sites.
Personal data processed for Newsletter sending
Contact data.
Personal data processed for the functioning of the websites
IP addresses or domain names of the computers used by users who connect to the Sites, URI (Uniform Resource Identifier) addresses of the requested resources, time of the request, method used to submit the request to the server, size of the file obtained in response, numeric code indicating the status of the response from the server (success, error, etc.), other parameters relating to the user’s operating system and IT environment, all fall within the information relating to user behavior on the Sites, to the pages visited or searched, in order to select and tailor ads for the user of the Sites, and data on navigation behavior, for example, using cookies.
For Art&sofT S.r.l.s. Unipersonale, it is essential to ensure the security and privacy of children. It is not our intention to knowingly collect or use personal data of anyone under the age of sixteen (16) or under the age limit set by the legislation of their country of residence. By registering on the Site, you confirm that you have reached the age of majority in your country of residence.
Purposes and legal basis of processing
The data and cookies received will be processed by Art&sofT S.r.l.s. Unipersonale solely through the methods and procedures necessary to provide the requested services and for any additional purposes for which consent was given.
– General marketing purposes of the Controller: e.g., sending – via automated contact methods (e-mail) – promotional and commercial communications relating to services/products similar to those already used, offered by the Controller, such as company events, webinars, whitepapers, or newsletter subscriptions.
– Third-party marketing purposes (with data disclosure) in the services sector (especially ICT and digital), consulting, manufacturing, commerce, and Public Administration: sending – through automated (e.g., sms, mms, e-mail) and traditional (e.g., operator calls) contact methods – promotional and commercial communications, advertising material regarding service/product offers, event notifications, as well as market research and statistical analyses by the aforementioned third parties to whom the data is disclosed.
– Marketing by the Controller on behalf of third parties (without data disclosure) in the same sectors: same purposes and methods as above, with the Controller processing on behalf of third parties.
– Profiling purposes: analysis of preferences, habits, behaviors, and interests derived, for example, from clicks on articles/sections of Art&sofT S.r.l.s. Unipersonale websites, to send personalized commercial communications and targeted promotions, business intelligence.
Data processing for profiling purposes will, where consented to, occur using data processing tools that generate a commercial and behavioral personal profile online by cross-referencing data collected while browsing the Sites (via accepted first-party profiling cookies) with those provided during registration on Art&sofT S.r.l.s. Unipersonale’s platforms. These data and/or information will be associated with any other data/information already held by us due to subscription to our services.
– Legal obligations: to comply with regulatory, national, and international legal obligations.
– Newsletter sending: if explicitly requested through registration.
– Rights of the Controller: if necessary, to ascertain, exercise, or defend the rights of the Controller in court.
– Site operation: IT systems and software procedures used to operate the Sites collect, during normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. These are not collected to be associated with identified individuals but could allow user identification through processing and association with third-party data.
Disclosure, communication, and access to data
The data may be processed by external entities operating as data controllers such as, by way of example, supervisory and control authorities and bodies and, in general, entities legally entitled to request the data, public authorities expressly requesting them for administrative or institutional purposes under national and EU law, as well as individuals, companies, associations, or professional firms providing assistance and consulting.
The data may also be processed, on behalf of the Controller, by external entities appointed as Data Processors pursuant to Art. 28 of the GDPR, provided with appropriate operational instructions. These include:
– companies offering website and IT system maintenance services;
– companies supporting the execution of market studies;
– companies providing database management and maintenance;
– companies offering e-mail services;
– companies providing marketing automation platform services;
– companies offering organizational and hospitality support for events.
Personal data may be processed, under explicit consent, by third parties to whom the data is communicated.
Personal data will not be disseminated.
Data transfer abroad
Data may be transferred to non-European countries, particularly to the United States, only after verifying the presence of Standard Contractual Clauses adopted/approved by the European Commission under Art. 46(2)(c) and (d) of the GDPR or Binding Corporate Rules under Art. 47 of the GDPR, or in their absence, under one of the derogations under Art. 49 of the GDPR.
A copy of the guarantees under Art. 46(2)(c) and (d) of the GDPR adopted by the Controller may be requested by sending an email to info@art-soft.it.
Duration of processing and personal data retention
In accordance with Art. 5.1(e) of the GDPR, Art&sofT S.r.l.s. Unipersonale will process the provided data for the time necessary to fulfill the purposes for which it was collected. Generally, we retain personal data for one year after the end of our relationship or the last contact, unless otherwise required by local law. In some cases, we may need to keep personal data longer, for legal, tax, or financial reasons:
– Contractual purposes, Legal obligations, and Newsletter: throughout the contract duration and for 10 years afterward.
– General marketing: until opposition is exercised, via unsubscribe link (“Click here”) or by contacting the Controller.
– Marketing and profiling: until consent is withdrawn.
– Controller’s rights: in the case of litigation, throughout its duration, until the time limits for appeal actions are exhausted.
– Site operation: for the duration of the browsing session.
– Once retention periods expire, personal data will be destroyed, deleted, or anonymized, in line with technical deletion and backup procedures.
Security
At Art&sofT S.r.l.s. Unipersonale, personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected and in compliance with the principles of necessity and proportionality, avoiding the processing of personal data when the same purposes can be achieved with anonymous data or alternative methods.
We have adopted specific security measures to prevent data loss, unlawful or incorrect use, and unauthorized access. However, personal data security also depends on the user’s device, which should be equipped with up-to-date antivirus tools, and on the internet provider ensuring secure data transmission via firewalls, antispam filters, and similar systems.
Data subject rights
By contacting the Controller via email at info@art-soft.it, you may request access to your data, its deletion, correction of inaccurate data, completion of incomplete data, or restriction of processing as per Art. 18 of the GDPR.
Additionally, if the processing is based on consent or contract and carried out by automated means, you may request data portability and receive the data in a structured, commonly used, and machine-readable format, or, if technically feasible, transmit it to another controller without obstacles.
You have the right to withdraw consent at any time for marketing and/or profiling purposes and to object to processing for reasons related to your particular situation in cases of public interest or legitimate interest of the Controller, including direct marketing and related profiling. You may also choose to be contacted only via traditional methods or object to automated communications alone.
The Controller will refrain from processing unless there are compelling legitimate grounds overriding your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
You also have the right to lodge a complaint with the supervisory authority in the Member State where you habitually reside, work, or where the alleged violation occurred.
Data Protection Officer
Data may be processed by employees of the Controller’s business functions assigned to pursue the purposes outlined above. They are expressly authorized to process data and have received appropriate operational instructions.
Personal data processed for website operation and collected during navigation may be processed by employees, collaborators of the Controller, or external entities, duly instructed by the Controller, acting as data processors or persons in charge, performing technical and organizational tasks on behalf of the Controller.