Dear User. Welcome to the website of Charles Philip S.R.L. (“DATA CONTROLLER”), whose Home Page is accessible from the address:
Why this information?
This page contains all the information on the processing of the personal data of the users who visit and/or consult the Website, carried out by the DATA CONTROLLER.
The information that follows is provided only for the Website of Charles Philip S.R.L. and not for other websites that may be consulted by the user through links.
By consulting this WEBSITE, the data relating to identified or identifiable persons may be processed.
The “DATA CONTROLLER” of their processing is
in the person of its legal representative pro tempore
|ACCESS TO PERSONAL DATA|
The personal data may be accessed by entities belonging to the organisation of the Data Controller, on the basis of the relevant authorisations.
Personal data may also be made available to entities not belonging to the organisational structure of the Data Controller.
In some cases, the recipients of the data will carry out processing operations in their capacity as Data Processors, exclusively on the basis of a specific contract under Article 28 of Regulation (EU) 2016/679 of the European Parliament and of the Council (the General Data Protection Regulation or “GDPR”), within the limits and according to the procedures indicated therein.
These entities may belong to the following categories:
An updated list of the Data Processors is available at the Data Controller’s registered office.
|RECIPIENTS OF THE DATA|
The recipients not included in the abovementioned Data Processors’ list will process personal data as independent Data Controllers or Joint Data Controllers, and will be subject to the relevant obligations.
Personal data may be made available, through communication, to the following categories of entities:
supervisory and control authorities and bodies, governmental authorities that make an express request.
|TYPE OF DATA PROCESSED|
The personal data collected and processed through this WEBSITE are the following:
This category of data includes IP addresses or domain names of the computers used for browsing and connecting to the Website, URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and computer environment of the user.
|PURPOSE OF THE PROCESSING||LEGAL BASIS FOR THE PROCESSING|
To allow the user to browse the Website
(view the web pages and use the services offered)
|Performance of the contract to which the User is a party|
To comply with the obligations under applicable national and
supranational laws and regulations
|Legal obligation to which the Data Controller is bound|
To ascertain, exercise or defend the rights of the Data Controller
(detection of hypothetical cybercrimes targeting the Website, etc.).
|Legitimate interest of the Data Controller|
|SPECIFIC INFORMATION AND CONTRIBUTION OF DATA|
The data provided voluntarily by the user will be processed according to the legal grounds identified at any time with specific information, provided at the time when the user performs further activities (e.g., filling out a form).
Apart from what is specified for navigation data, the user is free to give or not to give their personal data requested in the “CONTACTS” section as well as in the registration forms for services.
The processed data are processed using automated means for the time strictly necessary to achieve the purposes for which they were collected.
Specific security measures have been adopted to prevent the loss of data, their unlawful or incorrect use and unauthorised access.
The personal data collected through the use of the Website are processed for the time strictly necessary to provide the services requested and to carry out the related technical and security operations, as well as, at the end of the latter, for the time period established by the regulations in force for administrative and any defensive purposes, also connected to the potential assessment of responsibility in the case of cybercrimes.
For further details, refer to the information provided for individual, specific services.
|RIGHTS OF DATA SUBJECTS|
Data subjects to whom the personal data refer shall have the right, at any time and where conditions are met, to:
For better management, requests should be addressed:
Please also indicate in the subject line: “Request under Regulation (EU) 2016/679” specifying the right you intend to assert, as specified above.
It is advisable to use the form made available on the Website of the competent Supervisory Authority.
|THE RIGHT TO LODGE A COMPLAINT WITH A SUPERVISORY AUTHORITY OR SEEK JUDICIAL REMEDY|
In the event that the Data Subject considers that the processing concerning him or her is in breach of the GDPR, he or she has the right to lodge a complaint before a Supervisory Authority. The abovementioned Supervisory Authority may be that of the Member State in which the Data Subject normally resides, or that of the place in which the alleged breach occurred.
The data subject has the right to apply to the court if they believe that their rights under the GDPR have been violated as a result of processing. Proceedings against the Data Controller or the Data Processor shall be brought before the courts of the Member State in which the Data Controller or the Data Processor has an establishment. Alternatively, such actions may be brought before the courts of the Member State in which the Data Subject is habitually resident.
Version published on 05/07/2022
Last updated on 05/07/2023