INFORMATION FOR AMADORI GROUP WEBSITE USERS
Welcome to the Amadori Group websites. This pages explains some of our website management rules that apply to the personal data of people accessing our websites. These rules apply whenever you access Amadori Group websites and open pages on the sites, whether or not you use the services for which you need to register.
The rules apply to the Corporate website and all the smaller websites describing Amadori Group products, promotions and competitions. Visiting Amadori Group websites constitutes acceptance of the following terms and conditions. If you do not accept these terms and conditions, please do not access or use the content and services offered on our websites.
Type of data processed
The IT systems and the software procedures employed in their operation acquire personal data in the course of normal operations, the transmission of which is implicit in the use of internet communication protocols. The information is not collected in order to be associated with the persons identified, but by its very nature could, by means of processing and linking with data held by third parties, allow identification of users. The data that falls within this category includes, for example, the IP addresses or domain names of the computers connecting to the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of requests, the methods used to submit requests to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply from the server (successful, error, etc.) and other parameters of the user's operating system and software environment. The Amadori Group uses this data for the sole purpose of acquiring anonymous statistical information on the use of its websites and to monitor their correct operation. The data could be used to confirm liability in the event of computer fraud that could damage the websites. Otherwise, data about website contacts is only held for the time necessary for the purpose for which it has been collected and processed.
Services used by our websites
Social widgets and command buttons
Data processing methods
The data collected via our websites is processed using automated tools and strictly for the time necessary for the purpose for which it has been collected. Specific security measures are employed to prevent the loss of date, its illicit or improper use and unauthorised access to it.
Type of data collected
The browsing data is collected anonymously and is necessary to allow access to Amadori Group website content.
Use of the website by under-18s
Users aged under 18 may access our websites without restriction. They cannot use services requiring registration or the provision of data or information. Registration and the use of services made available via the Amadori Group websites is permitted only to people over the age of 18. No-one under the age of 18 may register on the sites or use the services available via the websites, unless they have obtained the prior consent of a parent/legal guardian.
Restrictions on the communication and dissemination of data
Browsing data may be passed on to data processing companies for provision to IT management services, for example in the case of hosting by third parties relating to the used of our websites. The data may also be processed within Amadori Group companies by the staff specifically appointed as data managers and/or processors according to their specific authorisation levels. Data processors and managers may only consult, use, process, compare and carry out any other necessary operations on data, including automated operations, if specifically authorised to do so. In the event of a specific request and in the circumstances permitted by law, the Amadori Group may pass on data to the security and law enforcement bodies. No browsing date is disseminated under any circumstances.
Data controller and data managers
The Amadori websites are managed by Gesco Società Cooperativa Agricola, Via del Rio 400, 47522 San Vittore di Cesena (FC), Italy, which is the data controller of the personal data of users accessing and using the websites. An up-to-date list of the data managers may be obtained from the data controller or by writing to firstname.lastname@example.org.
INFORMATION FOR USERS OF WEBSITE SERVICES
Sometimes access and use of the interactive services offered by the Amadori Group websites (e.g. subscription to the newsletter, participation in competitions, participation in events, campaigns, etc.) may require users to fill in online forms requiring information classified as personal data by Italian Legislative Decree 196/03, the personal data protection law (hereinafter “Privacy Code").
In accordance with article 13 of the Privacy Code, in its capacity as data controller, Gesco Società Cooperativa Agricola hereby provides some useful information about how user data is processed and users' rights.
Type of data processed
In order to access the services and content provided by Amadori Group on its websites, users may be asked for the following information, depending on the type of service: name, surname, home address, email address, date of birth, etc. We never ask users to provide sensitive information (e.g. about race or ethnicity, religious, philosophical or political beliefs, health, sexual orientation, etc.) or information about their legal status (e.g. criminal records, whether they have been charged or are under under investigation, etc.) in order to access our services.
Users may provide their personal data on a voluntary basis mainly in two ways:
Purpose of data processing
Personal data voluntarily provided by users will be used exclusively for the purposes of each individual service requested and used. Should the Amadori Group wish to use the data provided for additional or different purposes than those for which it was specifically collected, it will inform the user and ask for their express and specific consent to use the data as required. Personal data provided via our sites may be used for financial and statistic analysis and market research. However, in such cases data is always processed anonymously and as aggregate data, without ever linking the information processed with the individuals' personal data.
The following is a list of services that may be made available via our websites and the specific purposes of processing personal data in each case:
Consent to data processing
In all cases in which the individual's consent is required in order to process their data, we will obtain it expressly, freely and unconditionally beforehand for that specific purpose. However, for some specific purposes, the Privacy Code allows data controllers to process data without obtaining the consent of the individual involved (article 24 of Italian Legislative Decree 196/03). This applies, for example, when processing the data is necessary in order to comply with legal requirements, or to carry out contractual obligations towards the individual in question.
Data processing methods
Data is processed using paper, digital, computerised and electronic media. The data is saved both on computer systems and on paper or digital media as well as any other type of medium able to guarantee its security and confidentiality. The databases are kept in protected environments, access to which is monitored and managed in accordance with the requirement of the Privacy Code. The data will be entered onto the relevant databases which may be accessed, and therefore seen, by the staff specifically appointed as data managers and/or processors, according to their individual authorisation level. Data processors and managers may only consult, use, process, compare and carry out any other necessary operations on data, including automated operations, if specifically authorised to do so.
Data provision methods
Users may voluntarily decide to freely provide personal data by filling in online forms. Individuals are therefore free to provide the information requested or not. However, with specific reference to the data required to process requests made by individuals (marked with an asterisk), the failure to provide data or the provision of inaccurate data may make it impossible to fulfil the request.
Communication and dissemination
Without prejudice to information that must be provided by law, personal data may be shared with:
In any case, among the security measures adopted, when the relevant conditions are met, the Amadori Group appoints service providers with access to personal data in their work as data controllers.
The data is not normally disseminated. However, in the case of some specific campaigns promoted on our websites, individuals may be asked to provide their personal data (including photos and videos) in order to take part in events, competitions and themed initiatives of an exceptional and temporary nature, which by their intrinsic nature involve the communication and dissemination of such data. In such cases, the individual will be warned and specifically informed beforehand, and in any case their consent will be obtained before dissemination.
The individual's rights
Individuals may exercise their rights regarding the personal data described above at any time in accordance with article 7 of the Privacy Code (specifically, the right to access their personal data, to ask for confirmation of its existence, for it to be added to, updated, corrected or cancelled, and to refuse to allow it to be processed for legitimate reasons) and within the limits and according to the terms of articles 8, 9 and 10 of the Privacy Code, the individual may contact the data controller or write to the following address: email@example.com
Data controller and manager
The personal data controller is Gesco Società Cooperativa Agricola, which has its offices in Via del Rio 400 - 47522 S. Vittore di Cesena (FC), Italy.
A complete and up-to-date list of the managers in charge of processing your data may be requested directly from ourselves.