Privacy policy
Privacy Policy of the website www.Pyllola.com
​
Pyllola Srls, as the Data Controller pursuant to EU Regulation 679/2016, describes the management and access methods to the website regarding the processing of personal data of those who interact with the information services of Pyllola Srls accessible from the address www.Pyllola.com
​
This information relates exclusively to the Pyllola.com website and does not concern other websites that the user may consult through hypertext link.
DATA CONTROLLER
The Data Controller is Pyllola Srls., located in Rome, Italy. The Data Controller has appointed Mr. Segal as the Data Protection Officer, who can be contacted at the email address info@pyllola.com for any information regarding the processing of personal data by Pyllola Srls.
TYPES OF DATA PROCESSED
Following access and consultation of this website, data relating to identified or identifiable persons may be collected. The personal data processed of users who consult the website are name, surname, telephone number, gender, date of birth and email. In addition, depending on the case, the user is requested to provide data on specific allergies and symptom. No other personal or health status data is requested or collected.
LEGAL BASIS OF PROCESSING
The website processes data on the basis of the users' consent (Article 6, paragraph 1, letter A GDPR). Consent is given by clicking on the box next to "Privacy Consent" and after voluntarily sending their request. Following the granting of consent, visitors and users of the website approve this Privacy Policy and consent to the processing of their personal data in relation to the methods and purposes of the processing described below, including any disclosure to third parties if necessary to provide a service. The provision of data and consent to the collection and processing of the same is optional. To revoke the consent and delete the data stored on the systems that provide this website, it is necessary to notify the Data Controller by email or by registered letter with return receipt. However, the deletion could entail the impossibility to provide the requested service.
NAVIGATION DATA
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. These are information that is not collected in order to be associated with identified subjects, but by its own nature could, through processing and associations with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users to connect to the site, the addresses in URI notation (Uniform Resource Identifier) of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the computer environment of the user.
The data is used solely for the purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and is immediately deleted after processing. The data could be used to ascertain responsibility in case of any hypothetical computer crimes against the site. Data voluntarily provided by the user The voluntary, explicit and voluntary sending of emails, even via electronic form, through this site involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the letter.
COOKIES
No personal data of users is acquired by the site in this regard. No use is made of cookies for the transmission of personal information nor are persistent cookies of any kind used, that is, systems for tracking users.
The use of so-called session cookies (which are not stored persistently on the user's computer and disappear when the browser is closed), is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server), necessary to enable safe and efficient exploration of the site.
The so-called session cookies used on this site avoid the use of other computer techniques that could be prejudicial to the privacy of users' navigation and do not allow the acquisition of personal data identifying the user.
The Personal Data that you provide through the Site will be processed by the Data Controller for the following purposes:
a) purposes of research/statistical analysis on aggregated or anonymous data, without being able to identify the user, aimed at measuring the functioning of the Site, measuring the traffic and evaluating usability and interest;
b) purposes related to the fulfillment of a legal obligation to which the Data Controller is subject;
c) purposes necessary to ascertain, exercise or defend a right in court or whenever the jurisdictional authorities exercise their jurisdictional functions.
The purpose of point a) does not involve the processing of Personal Data, while the purpose of point c) represents a legitimate processing of Personal Data pursuant to the Applicable Legislation since, once the Personal Data has been provided, the processing is necessary to comply with a legal obligation to which the Data Controller is subject.
In some cases (not subject to ordinary management of the site), the authority may request information and information pursuant to art. 157 of Legislative Decree 30 June 2003, n. 196 for the purpose of controlling the processing of personal data. In these cases, the response is mandatory under penalty of administrative sanction. The provision of Personal Data for the purposes listed above is voluntary, but their possible failure to provide may make it impossible to fulfill a user's request.
PROCESSING METHOD
Personal data is processed using automated tools for the strictly necessary time to achieve the purposes for which it is collected. Specific security measures are observed to prevent the loss of data, illicit or improper use and unauthorized access. Security measures have been adopted to minimize the risks related to the confidentiality, availability and integrity of the personal data collected and processed.
SHARING, COMMUNICATION AND DISCLOSURE OF DATA
The data collected may be transferred or communicated to internal collaborators or providers of telematic services for activities strictly connected and instrumental to the purposes for which the data was collected (such as the operation of the Internet service, management of the IT and telematic system, the resolution of particular consultancy requests). The personal data provided by users who submit a request for sending information material are used only for the purpose of providing the service or the requested service and are communicated to third parties only if necessary for such purpose (including companies that provide stuffing, labeling, shipping services).
Outside these cases, the data will not be communicated or granted to anyone, except: 1. there is explicit consent to share the data with third parties; 2. there is a need to share information with third parties in order to provide the requested service; 3. this is necessary to comply with requests from the Judiciary or Public Security. No data derived from the web service is ever disclosed.
PROCESSING OF SENSITIVE DATA
Any "sensitive" personal data eventually sent and not strictly related to the purpose of the collection or, in any case, not bearing an explicit and simultaneous written consent to their processing, will be immediately and definitively deleted. Sensitive data, pursuant to art. 9 of the European Regulation 2016/679, are those capable of revealing racial or ethnic origin, religious or philosophical convictions, political opinions, trade union membership, as well as genetic data, biometric data intended to uniquely identify a natural person, data relating to health or sexual life, or sexual orientation of a person.
RIGHTS OF THE INTERESTED PARTIES
The persons to whom the personal data refer, pursuant to arts. 15-22 of the European Regulation 2016/679, enjoy the rights listed below:
· the right of access to personal data, which also includes the right to obtain a copy of the personal data being processed;
· the right to receive, in a structured, commonly used and machine-readable format, the personal data concerning him;
· the right to obtain the update, rectification or integration of data;
· the right to obtain the deletion, limitation, anonymization or blocking of data processed in violation of the law, including those of which the retention is not necessary in relation to the purposes for which the data was collected or subsequently processed;
· the right to obtain certification that the operations referred to in the preceding points have been brought to the attention, also as regards their content, of those to whom the data has been communicated, except in the case in which such fulfillment proves impossible or involves a manifestly disproportionate effort compared to the right protected;
· the right to oppose, in whole or in part, for legitimate reasons, the processing of personal data concerning him, even if pertinent to the purpose of the collection and to the treatments carried out for the purposes provided for by the current legislation. · the right to lodge a complaint with the Data Protection Authority, according to the procedure available on the website (www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524) to complain about a violation of the discipline on the protection of personal data and request a verification by the Authority.
CHANGES TO THESE PRIVACY POLICIES
Pyllola Srl. periodically checks its policies regarding privacy and security and, if necessary, revises them in relation to regulatory changes, organizational changes or dictated by technological evolution. If the policies are modified, the new version will be published on this page of the site.
QUESTIONS, COMPLAINTS AND SUGGESTIONS
Anyone interested in more information, contributing their own suggestions or making complaints or objections regarding privacy policies or the way in which it processes personal data can contact the Data Protection Officer.
