This Informative Notice is released pursuant to Articles 13 and 14 of EU Regulation 2016/679 (hereinafter “GDPR”) for the users of website www.leshommes.com.(di seguito, the “Website”).
1. Data controller
The Data Controller is
Notte Vandebosch Milano S.p.a.
Via Savona 97,
2. Policies of data controller regarding personal data - navigation of the website www.leshommes.com.
Through the website the Controller may directly or indirectly collect personal data (also "Personal Data" or only "Data") of the user (hereinafter, "User" or for the purposes of the legislation on the subject of data privacy "Concerned” or “Interested person”) in accordance with the applicable laws.
The User, while on the website, is always provided with clear and transparent information regarding the processing and potential processing that is made of his/her personal data, specific collection and use cases are reported and, in the event that this is necessary, his / her consent to treatment is requested.
3. Ways of collection of data
The personal data of Users may be collected automatically or by effect of Users’ interaction with the Website, as specified below.
4. Purposes of the processing
The personal data of Users who browse for information on the Website will be processed for purposes related to the functionality of the Website and navigation within the various sections.
The data of Users wishing to access specific sections of the Website (for example, for collaborations or for submitting personal job applications or other) may be processed for these specific purposes. The additional processing activities that may be necessary for these activities are appropriately highlighted within the individual sections ,with specific information and, if necessary, consent is requested in accordance with the law, - so that the processing of personal data of Users may take place exclusively with the Users’ consent.
5. Data processed
By browsing this Website, common personal data such as name, address, user name, e-mail address and telephone number, or even the IP address of the device used or User’s preferences can be collected and processed, in particular:
(i) Data acquired automatically: navigation data
(ii) Data on geolocation
This Website may, with the prior consent of the User, locate its position in order to allow it to better enjoy the services. The geolocation option is connected to the device operating system.
The geolocation will be enabled only if the user gives his consent to the manufacturer of the operating system of his device in the appropriate box that will appear. Even if you have given your consent, you can deactivate the option even temporarily, reactivating it through the settings of your device whenever it deems appropriate.
(iii) Data voluntarily shared
Through specific sections of this Website, the User will be able to voluntarily release his / her personal data, including the e-mail address to request and receive information about services provided, as well as contact our staff to obtain information on the services offered or book a service. The Data Controller and the categories of data collected and any other information required by Articles 13 and 14 of the GDPR are specifically identified in the privacy information on the margins of the individual data entry forms.
In cases where the provision of the service implies the collection and use of health data, this will be specified.
6. Optional nature of the provision of data
The User is free to provide personal data contained in the information request forms. In some cases that will be appropriately highlighted, their non-conferment may make it impossible to obtained the required services.
Through this Website personal data are collected and stored only when this is essential for the achievement of the stated purpose.
In the management of information, we use quality criteria to minimize the possibility that inaccurate information is used.
8. Place of processing of personal data
The processing of personal data relating to the services of the Website takes place at the headquarters of the Owner and possibly of managers, sub-managers and persons in charge, as specified below.
Users' personal data may be made available to other companies that have the role of Data Processors for activities connected to the aforementioned purposes, or of any other person to whom the data must be communicated pursuant to legal and contractual obligations .
The treatment may, limited to these cases, take place at the premises of these subjects.
Managers, and other subjects in charge of the processing by the Data Controller will operate on the basis of specific instructions given by the Owner in the context of contractual agreements as foreseen by Art. 28 GDPR.,
9. Processing methods
Personal data collected through navigation are collected electronically and processed using automated tools that guarantee security and confidentiality. The data acquired through specific sections of the Website may be processed by automated and manual means. Specific security measures are taken to prevent loss, illicit use and unauthorized access.
10. Storage of data
Users' data will be processed for the time and to the extent necessary to achieve the purposes for which they were collected.
Access to some features of the Website and / or some services and / or may be limited to underage Users or those users who are less than the age defined by the Owner (on the Website or indicated in other digital channels).
The Data Controller may use the personal data of underage users to carry out checks on their age and enforce any restrictions on the age they have defined or required by law.
12. External links to the Website
The Website contains external links to third-party websites. When clicking on these links, the Data Controller no longer has any influence on the collection, storage and processing of all details (for example the IP address or URL of the page on which the link is located) transmitted to them third parties, third party conduct is by definition beyond our control. The Data Controller accepts no responsibility for the processing of such personal data by third parties
13. Exercise of the rights of the interested party
The User, as an Interested party, can exercise his rights towards the Owner as defined in Articles 15-22 and 34 of the GDPR, specifically:
- exercise the opposition to the treatment in whole or in part;
- obtain the cancellation of data held by the holder;
- obtain the updating or correction of the data provided;
- ask and obtain in an intelligible form the data held by the holder (right of access);
- requesting and obtaining anonymous data transformation;
- request and obtain the block or limitation of data processed in violation of the law and those whose retention is no longer necessary in relation to the purposes of the processing;
- receive prompt communication regarding breaches of the integrity of their data according to Art 34 GDPR.
The interested party can directly contact the Data Controller for the exercise of his rights (interpello). Even if it is only the owner who is obliged to give feedback, the controller is obliged to collaborate with the owner for the purpose of exercising the rights.
In case of non-response, or inadequate response, you can contact the administrative (Guarantor) or judicial authority for the protection of your rights.
The deadline for the reply by the Controller is 1 (one) month for all rights. This term can be extended to 3 (three) months in cases of particular complexity.