INFORMATION NOTICE REGARDING THE PROCESSING OF ONLINE USERS’ PERSONAL DATA IN ACCORDANCE WITH REGULATION (UE) 2016/679 (“GDPR”)
This privacy notice describes the types, methods and purposes of processing personal data acquired through the website https://www.ccsjv.com/, with reference to those who consult it and use its services.
This notice does not apply to other websites consulted through links on https://www.ccsjv.com/ (hereinafter “Site”).
Data Controller is CCS JV s.c.a.r.l. (hereinafter “Company” or “Controller”), located in San Donato Milanese (MI), Via Milano n. 10, VAT 10828520964, in the person of the legal representative pro tempore. Data Controller can be contacted at the e-mail address email@example.com
Purpose of processing, legal basis and data retention
– Navigation data
The computer systems and software procedures used to operate this site during their normal operation acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
This is information that is not collected to be associated with identified data subjects, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s computer environment.
These data are used for the following purposes:
- to obtain anonymous statistical information on the use of the site and to check its correct functioning
- for the technical administration of the Site
- to ascertain any liability in the event of hypothetical computer crimes to the detriment of the Site
These data are immediately deleted after processing
– Data provided voluntarily by the user
Personal data voluntarily provided by the data subjects and collected by the Company are processed for purposes related to the activities of the https://www.ccsjv.com/ website and the Services offered. Where within the site the user is asked to provide personal data, the notice ex Art. 13 GDPR on the processing of data in relation to the purposes pursued as they occur, shall be simultaneously given. Furthermore the data will be collected and processed for the following purposes:
- to contact the Controller “Contact us” Information
Provision of data
Apart from that specified for navigation data, the provision of data for further processing purposes is not mandatory. However, a refusal to provide data will make it impossible to pursue such further purposes..
Way of processing
Your personal data will be processed using automated tools and in compliance with the principle of necessity and proportionality, avoiding processing personal data if the operations can be carried out through the use of anonymous data or by other means.
Specific security measures are observed to prevent the loss of data, unlawful or incorrect use and unauthorised access.
Recipients of personal data
Pursuant to Art. 28 of the GDPR, the Data Controller appoints the third party companies that process the Personal Data on their behalf as Data Processors (hereinafter also only “Processors”), who are given appropriate operating instructions. These subjects are essentially included in the following categories:
- subsidiaries and associated companies of the joint venture partners, as well as companies of the Saipem Group, even if not located in the EU (based on the adequacy decisions by the European Commission or on the basis of standard model clauses), who carry out outsourcing activities on behalf of the Controller, in their capacity as Data Processors;
- Third parties (by way of indication, companies providing IT services, etc.), even if not located in the EU (based on the adequacy decisions by the European Commission or on the basis of standard model clauses), who carry out outsourcing activities on behalf of the Controller, in their capacity as Data Processors.
The data may possibly be processed by external parties operating as autonomous data controllers such as, for example, authorities and supervisory and control bodies.
Your data will not be subject to disclosure.
Subjects authorised to process data
Your personal data will be processed by employees and/or collaborators of the Data Controllers upon receipt of appropriate operating instructions and express authorisation to process it by the Controllers/Processors.
Any further information regarding the scope of communication and disclosure of your personal data will be provided in the individual sections of the Site
Data transfer outside the European Union
The data collected may be transferred outside the European Union pursuant on the adequacy decisions by the European Commission or on the basis of standard model clauses. For further information, Data Subjects may contact the Data Controller at the following e-mail address: firstname.lastname@example.org
Data Subjects rights – Complaint to Supervisory Authority
Data Subjects have the right to contact the Controller to the e-mail address email@example.com to exercise the rights recognised by GDPR, requesting access to their personal data, deletion of their personal data, rectification of incorrect data, integration of incomplete data, restriction of processing in the cases provided for by art. 18 GDPR, as well as the right to object to processing in cases of legitimate interest of the Data Controller.
Pursuant to Article 77 of the GDPR, Data Subjects have also the right to lodge a complaint to the competent Supervisory Authority in the Member State where they habitually reside or work or in the State where the alleged infringement has occurred.