Complete Cookie Policy
Who we are and what we do with your personal data?
RCS S.p.A., with registered office in Via Caldera, 21, Milan (hereinafter also referred to as "The Controller"), as data controller, is concerned about the privacy of your personal data and ensuring they are protected from any event that might put them at risk of violation.
The Controller implements policies and practices regarding the collection and use of personal data and the exercise of the rights granted to you by applicable regulations. The Controller takes care to update the policies and practices adopted for the protection of personal data whenever necessary and in the event of regulatory and organizational changes that may affect the processing of your personal data.
The Controller has appointed a data protection officer or data protection officer (RPD or DPO) whom you can contact if you have questions about the policies and practices adopted, at the address dpo@rcslab.it
How does the Controller collect and process your data?
Your personal information will be processed for:.
1) Browsing the website www.rcslab.it
The processing of your personal data, such as browsing data e.g. IP address and cookies released when browsing the website www.rcslab.it, are processed by the Controller to manage the website and to collect information, also of an aggregate nature.
Your personal data will not be in any way disseminated or disclosed to undetermined parties.
2) Communication to third parties and recipients
The communication of your personal data takes place mainly to third parties and/or recipients whose activity is necessary for the performance of the activities related to the aforementioned purposes, and also to respond to certain legal obligations. Any communication that does not respond to these purposes will be subject to your consent.
In particular, your data will be communicated to third parties/recipients for:
- the performance of the service (e.g. IT service providers);
- communications to the financial administration, and public supervisory and control bodies to which the Controller must fulfill specific obligations arising from the specificity of the activity carried out;
The personal data that the Controller processes for this purpose are:
- browsing data (IP address).
3) IT security reasons
The Controller processes, also through its suppliers (third parties and/or recipients), your personal data (e.g. IP address) or traffic data collected, or obtained, in the case of services exposed on the website, to the extent strictly necessary and proportionate to guarantee the security and the ability of a network or servers connected to it to withstand, at a given level of security, unforeseen events or unlawful or malicious acts that compromise the availability, authenticity, integrity and confidentiality of stored or transmitted personal data.
For these purposes, the Controller provides procedures for the management of personal data breach.
What are cookies and for what purposes can they be used?
A "cookie" is a small text file created by some websites on the user's computer when they access a specific site, with the purpose of storing and transporting information. Cookies are sent from a web server (which is the computer on which the visited website is running) to the user's browser (Microsoft Edge, Mozilla Firefox, Google Chrome, etc.) and stored on the latter's computer; they are then re-sent to the website when the user visits it again.
Some operations could not be performed without the use of cookies, which, in some cases, are therefore technically necessary. In other cases, the site uses cookies to facilitate and assist the user in navigating or to allow them to use specifically requested services.
Cookies can remain in the system for long periods and may also contain a unique identification code. This allows sites that use them to track the user's navigation within the site itself, for statistical or advertising purposes, to create a personalized profile of the user based on the pages they have visited and to show them and/or send them targeted advertisements (so-called Behavioral Advertising).
Which cookies are used and for what main purposes?
The Controller lists below the specific categories of cookies used, their purpose and the consequence that derives from blocking them via the browser:
COOKIE TYPE | FIRST/THIRD PARTY | PURPOSE | RETENTION TIME | CONSEQUENCE OF BROWSER BLOCKING |
|---|---|---|---|---|
Technical cookies | FIRST | Website management. They allow the safe and efficient functioning and exploration of the website | 12 months | These are cookies necessary for the use of the site; blocking them does not allow the site to function |
Functionality cookies | FIRST | Facilitate navigation and the service provided to the user based on a series of criteria selected by the latter | 12 months | It would not be possible to maintain the choices made by users during navigation |
Social buttons
On the www.rcslab.it website there are simple external links that allow access to our profiles on social networks, including LinkedIn. These links function as normal hyperlinks and do not install cookies on the user's device during browsing on our site.
For LinkedIn: https://www.linkedin.com/legal/privacy-policy
What happens if you do not provide your data?
Our site exclusively uses first-party technical and functional cookies, necessary for the correct functioning of the site. These cookies are essential and, according to current regulations (GDPR and European directives), do not require the explicit consent of the user.
How, where and for how long are your data stored?
How we process your data
The processing of personal data is carried out through IT procedures by specially authorized and trained internal subjects. They are allowed access to your personal data to the extent and within the limits in which it is necessary for the performance of the processing activities that concern you.
The Controller periodically verifies the tools by which your data are processed and the security measures provided for them, which it provides for constant updating; verifies, also through the authorized persons for processing, that no personal data are collected, processed, archived or stored of which processing is not necessary; verifies that the data are kept with the guarantee of integrity and authenticity and their use for the purposes of the processing actually carried out.
Where we process your data
Your personal data may also be processed outside the European Economic Area. In such circumstances, the Controller adopts all safeguards to ensure the security of your data, and in particular the application of the Data Privacy Framework between the European Union and the United States of America, and the application of standard contractual clauses approved by the European Commission.
For how long we process your data
- Cookies: We invite you to review the terms of conservation of personal data as indicated in the previous table.
- Website navigation: Personal data are kept for the time necessary to allow navigation of the site and in any case not more than 12 months, except in cases where events occur that require the intervention of the competent Authorities, also in collaboration with third parties/recipients to whom the IT security activity of the Controller's data is entrusted, to carry out any investigations on the causes that determined the event, as well as to protect the interests of the Controller related to a possible liability related to the use of the site and related services.
What are your rights?
In essence, at any time and free of charge and without any particular formalities for your request, you can:
- obtain confirmation of the processing carried out by the Controller;
- access your personal data and know their origin (when the data are not obtained directly from you), the purposes and aims of the processing, the data of the subjects to whom they are communicated, the period of conservation of your data or the criteria useful to determine it;
- update or rectify your personal data so that they are always exact and accurate;
- delete your personal data from the databases and/or from the archives, including backup archives, of the Controller in the case, among others, in which they are no longer necessary for the purposes of the processing or if this is assumed to be unlawful, and always if the conditions provided by law are met; and in any case if the processing is not justified by another equally legitimate reason;
- limit the processing of your personal data in certain circumstances, for example where you have contested their accuracy, for the period necessary for the Controller to verify their accuracy. You must be informed, in a timely manner, also of when the period of suspension has been completed or the cause of the limitation of processing has ceased, and therefore the limitation itself revoked;
- obtain your personal data, if received or processed by the Controller with your consent and/or if their processing is based on a contract and with automated tools, in electronic format also in order to transmit them to another data controller.
The Controller must proceed in this sense without delay and, in any case, at the latest within one month of receiving your request. The term can be extended by two months, if necessary, taking into account the complexity and the number of requests received by the Controller. In such cases, the Controller, within one month of receiving your request, will inform you and make you aware of the reasons for the extension. For the exercise of your rights, write to the address dpo@rcslab.it
How and when can you oppose the processing of your personal data?
For reasons related to your particular situation, you can oppose at any time the processing of your personal data if it is based on legitimate interest, by sending your request to the Controller, at the address dpo@rcslab.it
You have the right to the deletion of your personal data if there is no legitimate reason prevailing over the one that gave rise to your request.
To whom can you lodge a complaint?
Without prejudice to any other administrative or judicial action, you can lodge a complaint with the competent supervisory authority or to the one that performs its tasks and exercises its powers in Italy where you have your habitual residence or work or, if different, in the Member State where the violation of Regulation (EU) 2016/679 occurred.