Privacy Policy
The rendered policy, pursuant to art. 13 et seq. of EU Regulation 679/2016, hereinafter called "GDPR" and art. 13 and 122 of the Code regarding the protection of personal data (Legislative Decree 196/03) to users who connect to the www.terprogetti.com site, hereinafter called "site".
Purpose of the Processing
The personal data provided through the site, or otherwise acquired in compliance with the laws and contracts in force, will be processed in compliance with the legislation and confidentiality obligations exclusively for the following purposes:
- purposes related to registration and authentication on the site as a registered user;
- purposes connected and / or instrumental to the performance of the requested activity;
- sending the periodic newsletter with any commercial information of interest to the registered user;
- sending personal communications in response and / or relating to requests forwarded through the contact forms of the site (request for clarification, error reporting, suggestions, etc.)
- publication of professional cards, subject to further authorization of the user, for collaborators of the editorial staff of the site;
- management of articles sent by users and collaborators, as referred to in the respective information. informativa.
The processing of information concerning the user is based on principles of correctness, lawfulness, transparency, and protection of confidentiality.
Therefore, any use that is different and/or conflicting with the interests of the user is excluded.
Information subject to processing
Regarding the data processed, a distinction must be made based on the activities that the user performs on the site.
1) Navigation
It applies to the user (registered or not) who browses the site to consult texts or use online applications.
The information entered in the masks of the online applications of the site are not stored permanently on the server but remain available to the user exclusively for the duration of the work session. non sono memorizzate in modo permanente sul server ma restano disponibili all’utente esclusivamente per la durata della sessione di lavoro.
Furthermore, all the information relating to the accounting documents (invoices, notes, estimates, etc.) that the user compiles through this site, such as, for example, the subject, number and date of the document, is not kept on the server.
As far as textual content is concerned, we record in aggregate form the number of readings of each article.
2) Interaction via contact form
It applies to requests for online advice, domiciliation, page reporting, sending suggestions etc.
In addition to the data expressly entered by the user in the form (name, email, telephone where required, etc.), we record the following information in our databases:
- consent to the processing of data based on this statement.
- the IP address from which the requests come (this information is classified by the GDPR as "personal data")
- the type of browser used and whether it is a mobile device.
- The anonymous user identifier created by an internal proprietary algorithm. The identifier is constructed in such a way that the user's IP address cannot be traced.
- in some cases also the page of the site visited immediately before submitting the request.
- the date and time of the operation.
Regarding requests for legal advice submitted through the site, additional documents may be requested to be sent by email or PEC for which the discipline of the GDPR applies and in any case the professional ethics regarding confidentiality.
3) Registration to the site
It applies in the phases in which the user wishes to register on the site to open his own personal account and use his own reserved area.
The passwords for access to the site by registered users are stored so that their original content can never be traced.
Oltre ai dati richiesti al momento della registrazione (nome utente, email e password), memorizziamo in appositi archivi le informazioni che l’utente, dopo la registrazione, inserisce nella propria area riservata.
Registered users who become collaborators of the site, sending free articles for publication, as indicated in the appropriate information, can publish their professional card through a special option available in the reserved area.
4) Newsletter subscription
It applies to users who do not intend to register on the site but wish to subscribe to the newsletter.
In this case, we only record in our archives the email address entered by the user at the time of registration, in addition to what is described in point 2).
The cancellation from the newsletter and its archives can be made directly by the user through a special link at the bottom of each newsletter. Registered users can also unsubscribe from the newsletter from the reserved area.
5) Sending articles to the editorial staff
It applies to users who propose their articles for publication to the editorial staff of the site.
The same considerations as for point 1 apply).
In addition, if the user is registered as a collaborator, he can make public his professional card that will be automatically linked in all published articles.
6) Webmaster Code
It applies to those who intend to use the webmaster code that allows you to share application masks on third-party sites under the conditions set out in the statement.
For statistical purposes we record in aggregate form the use of the code for webmasters, storing in our archives the following information that does not concern users who visit the site that uses this code but only the use of the code itself: domain name, shared application, number of views, date last viewed.
In accordance with the GDPR, the sending of data for the purposes referred to in points 2), 3), 4) and 5) requires explicit acceptance by affixing a "check" on a special field located in the various forms from which this information can be directly consulted.
In the absence of such acceptance, it is not possible to proceed with the execution of the requested online operation.
The site does not currently carry out any detection of the user's location. non effettua attualmente alcuna rilevazione della posizione dell’utente.
Processing and storage methods
The data will be processed using suitable tools to guarantee security and confidentiality and can also be carried out through automated tools to store, manage, and transmit the data.
The information is stored with IT tools protected by security systems (eg: firewalls, hacker attack control tools, tools for the automatic detection of malware and any vulnerabilities, etc.). The site is developed with a proprietary CMS with tools and techniques that implement the best practices in terms of security and robustness of the software. The contents of the web pages as well as all the data entered on the site sent to the server are encrypted using the SSL protocol (safe browsing); the use of the protocol for safe browsing can be identified by the presence of internet addresses starting with https:// and by the words "Secure" that the most modern browsers affix in the address bar at the internet address visited.
However, if all the security systems put in place were not sufficient to prevent the theft of information, as required by art. 33 of the GDPR, the owner undertakes to report and promptly notify the National Guarantor of any theft of information relating to users' personal data.
The data of registered users are kept without any pre-established deadline and the user can request its cancellation (right to be forgotten) based on Article 17 of the GDPR at any time by following the procedure prepared within the reserved area, adequately documented.
To provide the pages to the user we use the Apache webserver which, like all web servers, records in special logs protected files that are not accessible from the outside the requests of users to the resources of the site (web pages, images and other files necessary for operation).
The purpose of these log files is to identify any users who carry out malicious actions against the site (hacker attacks) and at the same time counteract any abuse of the site's resources to protect other users. These files are kept on the server for a maximum of 10 days and in some cases, if necessary, we can make copies in other archives, protected and inaccessible from the outside, for a longer conservation, not exceeding 3 months.
Nature of the provision, refusal and withdrawal of consent
The provision of personal data is not a legal obligation.
However, the lack of the same, the refusal or revocation of consent to the processing in the manner specified below, will make it impossible to entertain any professional consultancy relationship with the user or to perfect the use of the online services of the site listed below:
- the request for advice and professional collaboration.
- registration on the site.
- the request for assistance from the user, both as regards the reserved area and the use of the applications.
- sending communications and messages to the editorial staff or webmaster through the site.
- receiving the newsletter.
- access to confidential documents (e.g. case law attached to the articles).
- the publication of the professional form for the collaborators of the editorial staff.
Communication / dissemination
The data will not be disclosed to other parties, nor will they be disseminated, or transferred to third parties for any reason, both in Italy and abroad, except for personal data that for tax reasons it will be necessary to communicate to the accountant of the Association (limited to the billing of online legal advice) who has provided assurance about compliance with the Privacy Regulation and absolute confidentiality.
The owner reserves the right to analyze in aggregate form the data acquired to make internal statistics on the use of some services (eg: newsletter readings and use of details applications), to complement what already happens with third-party tools for detecting traffic on the site (Google Analytics).
Data controller
The data controller is Ter Progetti Srl with registered office in via Pellizza da Volpedo 2 – Monza (MB)
Your rights
In relation to the processing of personal data and pursuant to art. 13 of the GDPR and art. 7 of Legislative Decree no. 196/2003, the user has the right:
- Rectification and cancellation (articles 16 and 17 GDPR)
The user has the right to request rectification, cancellation, or limitation of the processing of personal data. Registered users can modify personal and professional data directly from their reserved area through special management masks. For cancellation, always in the reserved area, the checkbox for requesting deletion of data is available on the personal data page. - Rettifica e cancellazione(artt. 16 e 17 GDPR)
L’utente ha il diritto di chiederne la rettifica, la cancellazione, o la limitazione del trattamento dei dati personali.
Gli utenti registrati possono modificare i dati personali e professionali direttamente dalla loro area riservata tramite apposite maschere di gestione.
Per la cancellazione, sempre nell’area riservata, è disponibile nella pagina dei dati personali il checkbox per la richiesta di cancellazione dei dati.
Warnings
- The request for cancellation of the account is automatically forwarded to the technical staff of the site and is irrevocable, i.e. once confirmed, it can no longer be canceled.
- The user will receive after a few days confirmation of the deletion of data concerning him.
- Once the request has been submitted, the user can no longer access the reserved area.
- The username cannot be reused for a new registration.
- Limitation of processing(art. 18 GDPR)
The user has the right to object, in whole or in part, for legitimate reasons, to the processing of personal data concerning him, even if pertinent to the purpose of the collection.
In this case:- Sending newsletters::
Registered users can revoke the use of the email address for sending the newsletter at any time by accessing the reserved area; unregistered users subscribed to the newsletter can exercise this option by clicking on the appropriate link at the bottom of the newsletter. - Publication of professional card:
Registered users who collaborate with the editorial staff can block the publication of their professional card directly from the reserved area. The revocation of the publication, as well as the deletion of the user account pursuant to Art. 17 GDPR, automatically involve the obscuration of the cards from all the articles of the site. However, it should be noted that, since the professional cards published with the user's consent may have been indexed by search engines and / or published by third parties on other sites without any intervention on our part, the user must exercise the "right to be forgotten" against all sources where their personal data are present.
- Sending newsletters::
- Portabilità dei dati(art. 20 GDPR)
Data portability (Art. 20 GDPR):
The registered user has the right to receive personal data concerning him in a structured and machine-readable format. The request must be addressed to the data controller; Personal data will be provided in XML format. xml. - Communication
The user has the right to obtain the indication of the identification details, as well as of the owner, of any collaborators to whom the data may be communicated or who may become aware of them; the collaborators of the site who deal with providing assistance to the user limit access to personal data exclusively for the purposes requested by the user (request for clarification, helpdesk, resolution of anomalies, etc.). - Complaint
The user has the right to lodge a complaint with the national supervisory authority (Guarantor) if he finds a use of data that differs from the provisions of the legislation.
Communications to the site can be forwarded through the appropriate contact menu or by sending an email to the data controller.