Directive 2002/58/EC concerning the processing of personal data and the protection of privacy in the electronic communications sector".
Legislative Decree of June 30, 2003, No. 196 "Personal Data Protection Code".
(EU) Regulation 2016/679 – "General Data Protection Regulation".
DATA PROTECTION AND DATA PROTECTION SUPERVISOR
As part of the consultation of this website, data related to identified or identifiable people may be processed. “The data controller” is Compagnia Italiana di Navigazione S.p.A., headquartered in via Calata Porta di Massa In. Porto snc Capannone Juta – 80133 Naples.
Hereinafter also referred to as company or person in charge) based in Largo Augusto 8 in 20122 Milan, Italy. We inform you that the Data Controller has appointed a Data Protection Officer (hereinafter referred to as "RPD") who can be reached at the following e-mail address: firstname.lastname@example.org
DATA PROCESSING LOCATION AND DURATION OF DATA STORAGE
Data processing related to the web services of this site takes place at the offices of the Data Controller and is only handled by technical staff in charge of processing, or by staff in charge of occasional maintenance operations. Your data will not be shared with service providers whose headquarters are located outside the EU territory. The data collected will only be kept for as long as necessary to fulfill the specific purpose, depending on the type of data processed. These purposes are indicated in the corresponding information summaries on the website pages and tailored to specific services.
LEGAL BASIS OF DATA PROCESSING
The personal data provided on this page will be processed by the person responsible for the following legal bases, depending on the data entry form (Article 6 (1) (a), (b) and (c) of the Regulation):
If the legal basis of your data processing is your express consent, you have the right to revoke it at any time by contacting the Data Controller.
TYPES OF DATA PROCESSED
The computer systems and software procedures for running this web site automatically acquire, during their normal operation, some personal data the transmission of which is implicit through the use of Internet communication protocols. This information is not collected with the intent of associating it with identified users but, by its nature, it could lead to the identification of users. This data category includes IP addresses, or domain names, of the computers used by users to connect to the website, URI (Uniform Resource Identifier) addresses of the requested resources, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code indicating the server response status (success, error etc.), and other parameters pertaining to the user's operating system, and IT environment. These data are used only to obtain anonymous statistical information about the use of the Website and to check that it functions correctly; they are deleted immediately after processing. Furthermore, the data could be used to ascertain responsibility in the event of hypothetical computer crimes detrimental to the site.
The optional, explicit and voluntary transmission of personal data by the user in the registration forms on this website entails the subsequent acquisition of the data provided by the sender, necessary to provide the service requested. Specific summary information will be progressively shown or displayed on the website pages dedicated to particular on-demand services.
Cookies are small text files sent from websites to web browsers of users for purposes of automatic authentication, tracking of sessions and storing of specific information about users.
The use of the so-called session cookies is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow for safe and efficient website browsing. The so-called session cookies used on this website avoid using other computer techniques that are potentially harmful to the confidentiality of users who are browsing the website and do not allow the acquisition of personal data that identifies users. However, if the user does not wish to receive any type of cookies on his/her computer, either from this website or from others, he/she can increase the privacy protection level of the browser through the appropriate function. The Data Controller notes that, article 17 of (EU) Regulation 2016/679 users are entitled to request at any time those who make use of such solutions, to delete information gathered through cookies.
THIRD PARTY COOKIES
By surfing the website, the user is advised that in addition to the above-mentioned cookies of the person responsible, cookies from so-called third-party providers can also be installed. The management of information collected by "third parties" is governed by the relevant privacy statements to which we refer.
Google Analytics cookies
Provided and maintained by Google for statistical analysis of site access. Information collection takes place in an anonymous and aggregate manner only and no personal data of users are stored. You can choose not to use Google Analytics cookies, by following the information at the link below: https://tools.google.com/dlpage/gaoptout?hl=en
The third-party statistical cookies for those who visit our website are the following:
Provided and maintained by third parties to generate specific advertisements based on browsing habits and interests of individual users. These cookies never use, however, sensitive user data.
The functions of cookies can be disabled through the appropriate page provided by the EDAA (European Interactive Digital Advertising Alliance) http://www.youronlinechoices.com/en/, or by adjusting the Privacy settings of your browser.
Please note that you can selectively disable the Google Analytics by installing on your browser the opt-out component provided by Google. To disable Google Analytics, see the link below: https://tools.google.com/dlpage/gaoptout
Notwithstanding the foregoing, you must bear in mind that disabling cookies may affect the proper functioning of certain sections of the site.
OPTIONAL PROVISION OF DATA
Apart from what has been specified for browsing data, the user is free to provide personal data. However, failure to provide these data may make it impossible to obtain the requested service or may limit the use of the website.
The personal data are processed also with automated tools for the time strictly necessary to achieve the purposes for which they were collected. In order to prevent data loss, illicit, or incorrect use of data and unauthorized access, specific security measures are observed. The Data Controller has taken all the minimum security measures provided for by law along with, inspired by the main international standards, further safety measures to minimize the risks concerning the privacy, availability and integrity of personal data collected and processed.
SHARING, COMMUNICATION AND DISSEMINATION OF DATA
The collected data may be transferred or shared with other companies for activities strictly connected and crucial to the service operation, such as management of computer systems. The personal data provided by users who request dispatch of informative material (brochures, information material, etc.) are used only to perform the service or provision requested and are communicated to third parties only if this is necessary to that end (companies that provide services for packaging, labelling and shipping). Outside of these cases, the personal data will not be disclosed or given to anyone, unless required by contract or permission of the subjects. In this sense, personal data may be disclosed to third parties, but only and exclusively if: a) there is explicit consent to share data with third parties; b) there is a need to share information with third parties in order to provide the requested service; c) such action is necessary to comply with requests made by judicial or public security authorities. No data deriving from the web service is disseminated.
RIGHTS OF DATA SUBJECTS
In accordance with articles 15 to 22 of (EU) Regulation 2016/679, Compagnia Italiana di Navigazione guarantees the data subject the right to access, rectification, cancellation, limitation of processing, portability, opposition to the processing of personal data
The Data Collector regularly checks its own policies on privacy and security and, where appropriate, reviews them in accordance with the regulatory and organizational changes or as a result of technological developments. In the event of a change in policy, the new version will be published on this page of the website.
QUESTIONS, COMPLAINTS AND SUGGESTIONS
Should anyone be interested in receiving further information, in offering suggestions or in filing complaints or raising objections as to privacy policies or as to the manner in which our Company deals with personal data or in exercising the rights under article 15 and following of (EU) Regulation 2016/679, please contact the Data Controller Compagnia Italiana di Navigazione S.p.A., headquartered in Largo Augusto 8 in 20122 Milano, Italy, sending an e-mail to email@example.com. Furthermore, our Company has appointed a Data Protection Officer (DPO), who can be reached at the following email address: firstname.lastname@example.org