Privacy Policy

Dear User, pursuant to section 13 of Italian Legislative Decree No. 196/2003 (Personal Data Protection Act), hereinafter referred to as C.A. (Consolidation Act)) and relating to the personal data given to CISA Spa, we wish to inform you of the following:

  1. Purposes of data processing.
    Data are processed for the purpose of requesting contacts, sending newsletters and processing statistical and market research. Consent for the above-mentioned activities is considered on an individual basis.
  2. Data processing methods.
    a) Data are processed by operations or a set of operations as indicated in section 4, paragraph 1, letter a) of the C.A. concerning the collection, recording, organisation, keeping, interrogation, elaboration, modification, selection, retrieval, comparison, utilisation, interconnection, blocking, communication, erasure and destruction of data; b) the operations may be carried out with or without the help of electronic or automated means; c) data are processed by the data controller and/or the data processing staff. All data will be processed until the data subject decides to bring relations to a close, by sending a request to delete his/her data to CISA.
  3. Provision of data.
    The provision of personal and sensitive data is strictly necessary in order to fulfil the activities described in point 1. Consent for the above-mentioned activities is considered on an individual basis.
  4. Failure to provide data.
    Failure on the data subject’s part to provide the personal data mentioned in point 3 will result in CISA Spa being unable to fulfil the activities referred to in point 1. Consent for the above-mentioned activities is considered on an individual basis.
  5. Communicating data.
    For the purposes referred to in point 1, personal data may be made available to all those persons who need to receive the data in order to correctly fulfil the above-mentioned purposes. A detailed list of the people in charge of data processing and of the third parties whom the data may be communicated to, shall be provided by CISA Spa upon specific request.
  6. Disclosing data.
    Personal data will not be communicated or disclosed to any third parties, private or public, except in aggregate and anonymous form.
  7. Transferring data abroad.
    Personal data may be transferred to countries within or outside the European Union for the purposes referred to in point 1.
  8. Data subject rights.
    Pursuant to section 7 of C.A., the parties to whom the personal data refer are entitled to exercise their specific rights, including the right to obtain from the data controller confirmation that their personal data are still being held and to be informed of their contents in an intelligible form; the data subject is entitled to obtain details of the origin of the data, the purposes and methods of the processing, the logic applied when processing the data, the identity of the data controller and the people whom the data may be disclosed to; the data subject is further entitled to update, correct and complete the data, delete them, demand they be made anonymous or that data held in violation of law be blocked; the data subject is entitled to object, on legitimate grounds, to the processing of his/her personal data. The above-mentioned rights may be exercised at any time by sending a request to CISA Spa – Via Oberdan 42 – 48018 Faenza (RA), Italy.
  9. Data controller.
    The data controller is CISA Spa with registered office in Via Oberdan 42, 48018 Faenza (RA), Italy.