(+39) 02 863277

Privacy Policy

INFORMATION NOTICE ON PROCESSING OF PERSONAL DATA

of the Users visiting the website of the Café & Bistrot S.r.l. pursuant to Article 13 of the EU Regulation 2016/679

WHAT IS THIS INFORMATION?

The information provided below describes, as required by the EU Regulation 2016/679, the processing operations performed on the personal data of the Users visiting Café & Bistrot S.r.l. website www.elbeverin.it .

The information provided does not concern other online websites, pages or services that can be accessed via hyperlinks on the above websites but relate to resources outside the Café & Bistrot S.r.l. domain.

DATA CONTROLLER

Visiting the website above may result into processing data relating to identified or identified natural persons.

The data controller is:

Café & Bistrot S.r.l. - Via Brera 29 - 20121 Milano (MI) - Tel.: (+39) 02 863277 - E-Mail: info@elbeverin.it .

WHICH DATA IS PROCESSED

The data processed is the navigation data and the data provided spontaneously by the user.

Navigation data

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of the Internet. This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, enable users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system and the user's IT environment.

Data provided directly by the user

This category includes all personal data provided voluntarily by the user (for example, when requesting for information by calling the numbers provided on the website or writing to the e-mail addresses indicated on the site).

WHAT ARE THE PURPOSES AND LEGAL BASES OF THE PROCESSING?

Navigation data: purposes and legal bases

Navigation data is used only to obtain anonymous statistical information on the use of the website, for site security purposes and to verify its proper functioning and could be used to determine responsibility in the event of possible cyber crimes against the website. The legal basis for the processing of such data is the legitimate interest and the legal obligation in case of requests by the authorities.
For the use of cookies please refer to the cookie policy.

Data provided directly by the user: purposes and legal bases

The personal data provided by the user on an optional basis are used only to process any requests made and to implement legal obligations and/or pre-contractual obligations and/or contractual obligations arising from the relationship about the case in question.
The legal bases for the processing of such data are therefore: a legal obligation and the execution of pre-contractual and contractual obligations.
In the areas of the site dedicated to specific services, specific information is provided, which the user must read before providing the data, in which all the information on the processing of data is indicated in detail.

HOW IS THE DATA MANAGED?

The collected data are processed by computer and only residually using paper.
For the processing of data in connection to the web site services the Holder uses servers located within Europe and computer systems located at the headquarters of the owner. The collected data will not be transferred abroad.
They adopted adequate technical and organizational measures and appropriate to ensure an adequate level of security and prevent the loss of data, illegal or incorrect use and unauthorized access.
The data conferred directly by the person concerned are kept for the time strictly necessary to give course to the requests of the person and then canceled, without prejudice to the cases for assignment (against which the data may be maintained for the entire duration of the relationship and in accordance with legal requirements), and the defensive needs (which might make it necessary an additional conservation).
The navigation data is not retained for more than seven days and are deleted immediately after their combination, subject to any need for detection of crime by the judiciary.
As for the data collected through ShinyStat™ Free (Triboo Data Analytics Srl), please refer to that stated in the cookie policy.

WHAT HAPPENS IF THE DATA IS NOT PROVIDED?

With the exception of the navigation data necessary to implement computer and telematic protocols, the provision of data by users through the various methods made available is free and optional.
However, failure to provide the same data will make it impossible to proceed with requests submitted or which the user intends to submit.

WHO CAN ACCESS THE DATA?

The data will be processed by the Company's employees and by collaborators authorized by the latter to process the data. The data may also be accessed by consultants or companies providing IT supply and assistance services for purposes related to the activities carried out on behalf of the owner and by consultants for the management of litigation and legal assistance in the event of any disputes that may require their involvement.
The person concerned may request the list of external subjects who carry out their activities as data controllers.

WHAT ARE THE RIGHTS OF THE PERSON CONCERNED?

The interested party can assert his rights as expressed in articles 15, 16, 17, 18, 19, 20, 21 of EU Regulation 2016/679, by contacting the Data Controller, writing to info@elbeverin.it .
The law accords the interested party concerned the right to ask the data controller for access to personal data and their rectification or deletion or to limit the processing of personal data concerning him or her or to object to their processing, in addition to the right to data portability.
The interested party is informed that, in the event that he/she considers that the processing of his/her personal information takes place in infringement of the provisions of the GRDP, he/she has the right to lodge a complaint with the Supervisory Authority, as laid down by article 77 of the Regulation or to seize the opportune seats of law (article 79 of the Regulation).