In the following we are pleased to provide you with the necessary information regarding the processing of your personal data, in particular regarding the purposes and methods of processing, as well as the scope of communication and dissemination of the same, the nature of the data in our possession, their provision and the storage period.
This document is intended to accurately describe the methods for managing the processing of your personal data collected when you navigate the Site or when you use the services offered by the latter. The information is not to be considered valid for other websites that may be consulted via links on the Owner’s website, which is in no way responsible for the websites of third parties.
The Data Controller of the data collected through this Site is the company Artha S.r.l., with registered office in via Inverigo 14, Milan (MI), VAT no. 11985940151, (hereinafter referred to as “Artha”): the Data Controller independently decides on the purposes and methods of data processing, as well as on the security procedures to be applied in order to guarantee the confidentiality, integrity and availability of the data.
Object of processing
The Controller processes personal, identifying and non-sensitive data (in particular, name, surname, email, telephone number – hereinafter, ‘personal data’ or also ‘data’) communicated by you in order to request information and/or to take advantage of the newsletter service offered by the Controller.
Modalities and storage of your data
The processing of your personal data is carried out by means of the operations indicated in Art. 4 no. 2) GDPR and in compliance with the principles of lawfulness, correctness and transparency and the other principles indicated in Art. 5 GDPR.
Personal Data will be processed and stored for as long as necessary to pursue the processing purposes for which they were collected.
1) The Personal Data collected in order to respond to your requests for information and to allow you to navigate the Site correctly will be kept for as long as necessary to fulfil these purposes.
2) Personal data collected for purposes of Artha’s legitimate interest shall be retained until such interest is satisfied.
3) When processing is based on the user’s consent, Artha may store Personal Data for a longer period until such consent is revoked. In addition, Artha may be obliged to store Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this period, the right of access, cancellation, rectification and the right to Data portability can no longer be exercised.
The management and storage of personal data will take place on servers located within the European Union owned by the Data Controller and/or third party companies appointed and duly appointed as Data Processors. It is in any case understood that the Data Controller, should it become necessary, shall have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller assures as of now that the transfer will take place in compliance with the applicable provisions of law by entering into, if necessary, agreements that guarantee an adequate level of protection and/or by adopting the standard contractual clauses envisaged by the European Commission.
Purpose of processing and legal basis for processing
Data of a personal nature voluntarily provided will be processed for the following purposes:
- For navigation on the Site
- To answer your enquiries
- To fulfil the obligations laid down by law, by a regulation, by EU legislation or by an order of the Authority
- To prevent or detect fraudulent activity or abuse harmful to the website
- To exercise the holder’s rights, e.g. the right of defence in court
- Subject to your consent to subscribe to Artha’s commercial newsletter service.
For the purposes set out in points 1 to 5 above, the processing of data is necessary i) to enable correct navigation on the Website; ii) for the execution of pre-contractual measures taken at the user’s request; iii) to comply with a legal obligation to which the Data Controller is subject and, finally, iv) for the pursuit of the legitimate interest of the Data Controller such as the right to defend itself in court and to prevent or detect fraudulent activities or abuses harmful to the Website.
For the purpose of point 6, the processing of data is only lawful if the person concerned has given his or her consent.
The processing of your data will in no way be subject to profiling and/or automated decisions.
Optional or compulsory nature of providing data; necessity of consent and consequences of non-consent.
Apart from what is specified for navigation data, you are free to provide your personal data.
The provision of personal data for the purposes referred to in points 1 to 5 is optional but necessary in order to make use of the services requested from time to time from the Data Controller and to perfect the specific functions. Failure to provide them may make it impossible to obtain what has been requested or to use the services of the Data Controller.
Consent to the processing of data for the purposes set out in point 6 – i.e. for promotional, commercial communication and/or marketing purposes in general by Artha – is always optional. If you do not give your consent, the data controller can still provide the services described in points 1 to 5 and you can still use the other functions and services provided by the data controller. You may then decide not to give consent for the processing of your data for this purpose or to revoke your consent to process data already provided for the purpose referred to in point 6 at a later date and at any time, but the revocation will not affect the lawfulness of the processing based on your consent before the revocation. The right to object to the processing for the purposes referred to in point 6 may be exercised at any time by automated means of contact.
Persons or categories of persons to whom your data may be disclosed
Your data will only be communicated to third parties with your express consent, except in cases where such communication is obligatory by law or is necessary for purposes envisaged by law for which the person’s consent is not required; in such cases, the data may be made available to third parties who will process them autonomously and solely for the aforementioned purposes (for example, in the event of a request made by the police or the courts or other competent bodies or to perform obligations arising from the contract concluded with you). Your data will not be disseminated in any way.
Persons who may process your personal data
Artha may use third parties to process your personal data for certain activities. The third parties who carry out these operations have been carefully selected and are experienced, capable and reliable, and offer sufficient guarantees that they will fully comply with the applicable data processing regulations, including data security.
These third parties will be appointed as “data processors” for this purpose and will carry out their activities in accordance with the instructions issued by Artha and under its supervision. We periodically check that the data processors have fulfilled their assigned tasks punctually and that they continue to provide adequate guarantees of full compliance with data protection regulations.The updated list of the Processors can always be requested from the Data Controller. Your data is then processed by our Persons in charge of the individual services.
However, Artha cannot guarantee its users that the measures taken for the security of the website and the transmission of data and information on the website will limit or exclude any risk of unauthorised access or loss of data by user devices: We recommend that you ensure that your computer is equipped with appropriate software for the protection of network data transmission, both incoming and outgoing (such as up-to-date antivirus systems) and that your Internet service provider has taken appropriate measures for the security of network data transmission (such as firewalls and spam filters).
Links to other websites
Our Site may contain links to other websites that may have no connection with us.
The rights of data subjects
In your capacity as data subject, you may exercise your rights under Articles 15 to 22 GDPR, in particular the right to access, rectify or erase data, request restriction or object to processing, as well as the right to data portability.
Data subjects who consider that the processing of personal data relating to them carried out through this website or its services is in breach of the provisions of the GDPR have the right to lodge a complaint with the Supervisory Authority, or to take legal action.
In the event of a breach of the data subject’s personal data, taking into account the provisions of Article 34 GDPR, the Data Controller will notify the data subject of the breach.
Contacts for the exercise of the data subject‘s rights
You may exercise your rights under current legislation by sending an e-mail to firstname.lastname@example.org.
This Site and the Data Controller’s Services are not intended for children under 16 years of age and the Data Controller does not knowingly collect personal information about minors. In the event that information about minors is unintentionally recorded, the Owner will delete it in a timely manner at the request of users.
Social plugins and social networks
Our web pages may contain plug-ins from social networks (e.g. Facebook, Linkedin, Instagram, etc.). If you access one of our web pages with such a plug-in, your Internet browser connects directly to the social network’s servers and the plug-in is displayed on your screen through your browser connection. If an interested user of a social network visits our web pages while logged into his or her social account, his or her personal data may be associated with the social account. Even if plug-in functions are used, the information will be associated with the social account.Further information on the collection and use of data by social networks in general, as well as the rights and ways available to protect the data subject’s privacy in this context, can be found on the social networks’ data protection pages. If the data subject does not wish to associate their visit to our web pages with their social account, they must log-off from the social network before visiting them.
Personal data are collected for the following purposes and using the following services: Interaction with social networks and external platforms. These services make it possible to carry out interactions with social networks, or with other external platforms. The interactions and information acquired are in each case subject to the user’s privacy settings relating to each social network. If a service for interaction with social networks is installed, it is possible that, even if users do not use the service, it collects traffic data relating to the pages where it is installed.
Artha S.r.l., with registered office in via Inverigo 14, Milan (MI), VAT no. 11985940151, (hereinafter referred to as “Artha”), Data Controller pursuant to Article 4 of EU Regulation 2016/679 (GDPR), provides you with the following information regarding the cookies installed on the domain www.arthastudio.it.
What are cookies?
Cookies are small text files that are sent to your electronic device (PC, tablet, etc.) while you are browsing a website. Cookies are then sent back to the originating website during each subsequent navigation, or are sent to a different website that is able to recognise that specific cookie. Cookies act as a memory for a website, allowing the website to recognise your device on each subsequent visit to that same website.
The cookies used on this site are so-called technical cookies. These have the function of enabling the performance of activities strictly related to the operation of this online space. The technical cookies used by this site can be divided into the following subcategories:
- Browsing cookies, by means of which browsing preferences can be saved and the User’s browsing experience can be optimised;
- Analytics cookies, by means of which statistical information is acquired on how Users navigate the site. This information is processed in aggregate and anonymous form;
- Functionality cookies, including third-party cookies, used to enable specific features of this online space and necessary to provide the service or improve it.
The following Technical Cookies do not require the prior consent of the User in order to be installed and used.
The full list of Technical Cookies used on our site is given in this table:
|records a unique ID used to generate statistical data on how the visitor uses the website.
|Registers a unique ID to generate statistical data on how the visitor uses the website
|Used to send data to Google Analytics about the device and user behaviour. Keeps track of the user on devices and marketing channels
GENERAL COOKIE MANAGEMENT
How to disable cookies via browser configuration
- Disabling cookies in Firefox
- Disabling cookies on Chrome
- Disabling cookies in Internet Explorer
- Disabling cookies on Safari
- Disabling cookies on Opera
Cookie Statement last updated on 08/11/2019