Personal Data Processing Policy pursuant to art. 13 and 14 of Regulation (EU) 2016/679 on the protection of personal data (GDPR)
In accordance with the provisions of Regulation (EU) No. 2016/679 (hereinafter referred to as the «GDPR»), this page describes the methods used to process the personal data of users who browse our website or use our services. Therefore, before you submit any personal data, you are invited to carefully read the information below because it contains important details on the protection of your personal data.
This Privacy & Cookies Policy:
- refers and is intended to the company’s website ameol.it, including the dedicated areas in which users can freely and expressly provide a range of data concerning them in order to contact Advanced Microwave Engineering S.r.l. or submit requests;
- sets out the methods to use, share, access, amend or delete personal data provided by users.
This Privacy & Cookies Policy applies only to this website and does not apply to any other websites that may be consulted by users via the links present in the pages of the website. Should other websites be consulted, we advise consulting their relevant Privacy & Cookies Policies.
The security measures that apply to this website have been defined and developed to ensure that the users’ personal data are processed in compliance with the principles of lawfulness, fairness, transparency, purpose and storage limitation, data minimisation, accuracy, integrity, and confidentiality, in accordance with the national and European regulations in force. Advanced Microwave Engineering S.r.l. reserves the right to amend, or simply update, the content of this Privacy & Cookies Policy, in whole or in part, also as the result of any variation in the applicable regulations or following instructions by the Italian Data Protection Authority.Therefore, all users of the www.ameol.it website are invited to visit this section on a regular basis in order to be up to date with which data are collected and how the Data Controller uses them.
1. Identity and contact details of Data Controllers.
The Data Controller is Advanced Microwave Engineering S.r.l. (or A.M.E. Srl), having its registered office at Via Lucca, 44 – 50142 Florence (FI) Tax & VAT ID No 05016620485. A.M.E. Srl can be contacted by sending an email to privacy@ameol.it to enquire about any issues concerning the processing of personal data.
2. Type of data processed
2.1 Connection data
During their normal operation, the IT systems and the software procedures that enable this website to function acquire some personal data the transmission of which is implicit when Internet communication protocols are used. This information is not collected in order to be associated with a particular person but rather, due to the nature of data so obtained, visitors could be identified if such data is processed and combined with data held by third parties. This category of data includes IP addresses or domain names of computers used by visitors who connect to the website, addresses of requested resources in URI (Uniform Resource Identifier) format, time of request, method used to submit the request to the server, size of the file obtained in reply, number code indicating the status of the reply given by the server (successful, error, and so on) and other parameters related to the visitor’s operating system and IT environment.
2.2 Data provided by users on a voluntary basis
The optional, explicit and voluntary sending of electronic mails to the addresses indicated on this website, as well as the optional, explicit and voluntary filling in of the contact forms found on the website, entails the subsequent acquisition of the sender’s address, necessary to respond to requests, and of any other personal data voluntarily included in the e-mail and the contact forms.
2.3 Cookies
A cookie is a text file containing small amounts of information that is sent to the device of users when they visit a website.
When you browse through www.ameol.it, cookies necessary for such action are automatically downloaded. These include: technical cookies necessary so that users can have an excellent navigation experience through the site and tracking cookies with anonymised information.
Other types of cookies not necessary for browsing can be downloaded, provided that the user expressly and voluntarily accepts them by means of the cookie detection and management banner tool. These cookies may be for statistical, profiling, or marketing purposes.
The full and updated list of the types of cookies is available in the cookie detection and management banner tool of each type.
3. Purposes and legal basis for the processing
3.1 Connection data
Connection data, necessary for using the website, are also used to obtain anonymous statistics about how the website is used and to monitor if the website is operating properly. These data could be used to establish liabilities in case of hypothetical cybercrimes against the site.
Specifically, the connection data of all visitors and users of the website can be used for:
- permit browsing through the public pages of the website;
- collect anonymous statistical information on how the website is used (analysis of the most visited pages, and so on);
- collect anonymous statistical information on the geographical area of origin;
- check that the website functions properly;
- establish any liabilities in case of a cybercrime against the site;
The legal basis for the processing are the legitimate interest pursued by the controller, and the compliance with legal obligations.
3.2 Data provided by users on a voluntary basis
The purposes for which these data are or can be used, as well as any specific processing methods, are described in the pages of the website where the contact forms are found. For processing based on consent, A.M.E. S.r.l. shall obtain the specific prior consent from the user.
All data sent vial electronic messages, including the addresses from which the messages are sent, are processed solely to respond to users’ requests.
More specifically, the personal data that users provide voluntarily will be processed to:
- allow viewing information material about the products and services offered by A.M.E. Srl;
- allow interested individuals to subscribe to newsletters;
- allow interested individuals to download brochures of the products/services offered by
A.M.E. Srl.
The legal basis for such processing is the legitimate interest pursued by the controller.
With a prior consent, the data may also be processed for the following purposes:
- commercial and direct/indirect marketing purposes;
- profiling related to the relevant business sector of A.M.E. Srl.
It should be noted that the direct marketing carried out by A.M.E. Srl aims to collect and use data adequate, relevant and limited to what is necessary for the purposes for which they are processed, to conduct studies, market research, and statistics, to send advertising and information materials, to carry out direct sales or placement activities of products or services, to send commercial information, and to conduct interactive commercial communications.
Profiling, on the other hand, involves collecting information on commercial behaviours and habits in the relevant business sector in order to improve the services offered based on the needs of customers who have given their prior consent.
As regards marketing and profiling activities, it should be noted that in case of you specifically refuse or do not give your consent to the processing, the aforementioned activities will not be possible.
4. Optional nature of data submission
Besides the specifications for connection data, users are free to provide personal data or not. If they do not provide their data via the contact form or the electronic mail, it may be impossible to obtain the information requested.
5. Period for which the personal data will be stored
Your data are kept for as long as it is necessary to fulfil the purposes for which they are collected.
If an account is created, your data are kept as long as your account is active. Even after the account is closed, your data will be kept in so far as that is necessary to comply with obligations imposed by law and/or regulations, to safeguard our rights, to prevent any fraud, or to apply the provisions of this Privacy Policy. Specifically referring to protecting our rights in a Court of law, we inform that the period for which the personal data will be stored is ten years as from the date the account is closed, based on the ten-year limitation period under art. 2946 of the Italian Civil Code.
Specifically, data are stored for the following periods:
- data collected to reply to information inquiries received via email about the products and services offered by A.M.E. Srl: 2 years from the last contact;
- data collected to allow viewing information material about the products and services offered by A.M.E. Srl: 2 years from the last contact;
- data collected to allow interested individuals to subscribe to newsletters: newsletter subscription will remain active until an «unsubscribe» request by the data subject is received; the data will then be kept for 2 years from the «unsubscribe» date;
- data collected to allow interested individuals to download the brochure of the products/services offered by A.M.E. Srl: 2 years from the last contact;
- data collected for marketing purposes with the prior consent of the data subject: until consent is revoked;
- data collected for profiling purposes with the prior consent of the data subject: until consent is revoked.
6. Transfer of Personal Data
A.M.E. Srl shall not transfer any personal data to any third country or international body. However, the company reserves itself the possibility of using cloud services. In such a situation, the service providers will be selected among those who provide appropriate safeguards, as provided for in Art. 46 of the GDPR. Therefore, data will be processes following one of the methods allowed by the legislation in force.
Besides, the company reserves itself the possibility of transferring data to its subsidiary undertaking called A.M.E. DEUTSCHLAND GmbH.
7. Recipients or potential categories of recipients of personal data
The personal data of the Data Subject are processed by the internal personnel of the Data Controller (employees or collaborators), identified and authorised for the processing according to instructions and tasks that are given in compliance with the current legislation on privacy and data security.
Data shall not be disclosed.
If necessary for the purposes listed in Article 3, the data may be communicated to third parties, who will process them, depending on the case, as data processors (specifically appointed pursuant to Article 28 of the GDPR) or as ‘independent’ data controllers. Specifically, personal data may be processed by:
- professionals, companies, associations, or professional firms providing the Data Controller with assistance or consultancy for marketing, commercial, or legal protection purposes;
- all public institutions established by law, law enforcement bodies, or public security bodies or any other public entities for the purpose of safeguarding public order and security, and of preventing, detecting or combating criminal offences;
- companies and professional operators that provide electronic data processing services and consultancy for software and information technology, as well as information services management.
Subjects who, as data processors, provide support and consultancy services for the management and maintenance of the site and, more generally, professional services of various kinds, may have access to the personal data of those who use the site. The list of these processors can be requested from the Data Controller by sending an e-mail to the address specified in section 1.
Users’ personal data can be also disclosed to:
- individuals authorised by A.M.E. Srl to process personal data for the activities strictly related to providing products/services or information, that are under an appropriate statutory obligation of confidentiality;
- the police, armed forces, and any other public authorities, for the purpose of complying with obligations laid down by laws, regulations, and national or European legislation, as well as to agencies or professionals to defend A.M.E. S.r.l.’s claims in court, for instance, if the network is breached by users.
8. Profiling of personal data
The data deriving from having filled in the contact forms found on the site may be subject to profiling, in particular to analyse or predict personal aspects of users related to personal preferences, interest, behaviour or location.
Such data, which by nature are exclusively not ‘special’, shall be processed in accordance with the provisions laid down in Art. 9 of the GDPR, solely and exclusively if prior consent is given and it can be withdrawn at any time.
9. Rights of Data Subjects
As a Data Subject and in relation to the processing described in this Policy, you can exercise the rights under art. 7, from art. 15 to art. 21, and art. 77 of the GDPR (right of access, rectification, erasure, restriction of processing, right to data portability, right to object, right to revoke consent, right to lodge a complaint). You may at any time exercise your rights by writing to this email address: privacy@ameol.it, or by sending a certified letter with return receipt requested to the following address: A.M.E. Srl Via Lucca, 44 50142 Firenze (FI).
The exercise of rights is free of charge under Article 12 of the GDPR. However, where requests from a data subject are manifestly unfounded or excessive, in particular because of their repetitive character, the Data Controller may either charge a reasonable fee taking into account administrative costs of taking the action requested, or refuse to satisfy your request.
Requests regarding the exercise of your rights will be processed without undue delay and, in any case, within one month of the receipt of the request. That period may be extended by two (2) further months only in cases of special complexity and number of the requests.
Should data subjects consider that personal data concerning them are processed by this site in violation of what is laid down in the GDPR, they shall have the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it).