Dear Data Subject, we wish to inform you that the “European Regulation 2016/679 on the protection of natural persons with regard to the Processing of Personal Data, as well as the free movement of such data” (hereinafter “GDPR”) provides for the protection of natural persons with regard to the processing of personal data as a fundamental right. Pursuant to Article 13 of the GDPR, we therefore inform you that:

1. CATEGORIES OF DATA: sveba.it will process your personal data such as:
   Data collected automatically. The IT systems and software applications dedicated to the functioning of this website collect, during their normal operation, certain data (the transmission of which is implicit in the use of Internet communication protocols) potentially associated with identifiable users. The data collected include IP addresses and domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system, browser and IT environment used by the user. These data are processed, for the time strictly necessary, for the sole purpose of obtaining statistical information on the use of the site and to check its correct functioning. The provision of such data is mandatory as it is directly linked to the web browsing experience.
   Data provided voluntarily by the user. The voluntary and explicit sending of emails to the addresses indicated in the different access channels of this site does not require consent and the possible completion of forms specifically prepared entails the subsequent acquisition of the address and data of the sender/user, necessary to respond to requests and/or provide the requested service. The voluntary sending of emails to our email addresses does not require further information or consent requests. On the contrary, specific summary notices will be reported or displayed on the pages of the site prepared for particular on-request services (forms). The user must therefore explicitly consent to the use of the data entered in these forms in order to send the request
   Cookies. The site does not use technical/profiling cookies of third parties which could collect users’ browsing data, the provision of which is optional and occurs through the expression of free and informed consent. Cookies operate in order to analyze the effectiveness of the site and make it easier and more intuitive over time. The data collected through cookies are used to make the browsing experience more pleasant and more efficient in the future, trying to evaluate user behavior and modify the content offering accordingly. For more information, a specific cookie policy is available.
2. SOURCE OF PERSONAL DATA: The personal data held by sveba.it are collected directly from the data subject.
   Personal Data, images and works protected by copyright
   Personal data, images and works protected by copyright are collected through the use of the website https://www.sveba.it/
3. DATA CONTROLLER: The data controller is Sveba S.r.l., Via dell’industria, 369 – Cassina Rizzardi (CO). The data subject may send an email to info@sveba.it
4. PURPOSE OF DATA PROCESSING AND LEGAL BASIS: The processing of your data has its legal basis in your consent and is carried out for the following purpose: improving the web browsing experience.
5. METHODS OF DATA PROCESSING: The personal data you provide will be processed in compliance with the above-mentioned legislation and confidentiality obligations that inspire the activity of the Data Controller. The data will be processed both with IT tools and on paper and on any other suitable medium, in compliance with appropriate security measures pursuant to art. 5 par. 1 lett. F of the GDPR.
6. RECIPIENTS OF THE DATA: Within the limits relevant to the purposes of processing indicated, your data may be communicated to partners, consulting companies, private companies, appointed as Processors by the Data Controller or for legal obligations or to fulfill your specific requests. Your data will not be disclosed in any way. The Processors and persons in charge of processing are specifically identified in the Privacy Document, updated periodically.
7. TRANSFER OF DATA ABROAD: The data collected will not be transferred abroad within the EU or outside the EU and will not be transferred to third parties.
8. RETENTION PERIOD: The data collected will be retained for a period not exceeding the achievement of the purposes for which they are processed (“storage limitation principle”, art. 5, GDPR) or according to the deadlines provided for by law. The verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically.
9. RIGHTS OF THE DATA SUBJECT: The data subject always has the right to request from the Data Controller access to their data, rectification or erasure of the same, restriction of processing or the possibility to object to processing, to request data portability, to withdraw consent to processing by exercising these and the other rights provided for by the GDPR through simple communication to the Data Controller. The data subject may also lodge a complaint with a supervisory authority or by sending an email to info@sveba.it.
10. MANDATORY OR OPTIONAL NATURE OF CONSENT: The provision of your data is mandatory during navigation of our website.
11. SECURITY OF THE DATA SUBJECT’S PERSONAL DATA sitiwebtodo.it declares that the personal data collected are processed lawfully and fairly, collected and recorded for the purposes indicated, and used in other operations that are compatible with such purposes. sitiwebtodo.it undertakes to adopt appropriate and preventive security measures aimed at safeguarding the confidentiality, integrity, completeness and availability of the personal data of the data subject. As required by the provisions of the Personal Data Protection Code, personal data are processed in paper form and/or with automated tools, for the time necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent even accidental loss, alteration, improper use, unlawful or incorrect use and unauthorized access. The Data Controller is not responsible for untrue information sent directly by the e-commerce User (for example: correctness of the email address or credit card details or postal address), as well as information concerning them that has been provided by a third party, even fraudulently.
12. CONSULTATION, MODIFICATION AND DELETION OF PERSONAL DATA The data subject, as provided for by GDPR 2016/679, has the right at any time to obtain from the Data Processor: confirmation of the existence of the data and communication of the same; updating, rectification, integration, deletion, transformation; blocking of data processed in violation of the law by sending an email to info@sveba.it and may also object to their processing.