PRIVACY POLICY OF THIS WEB SITE

WHY THIS NOTICE

This page provides a description of the methods followed by this website to handle the processing of personal data supplied by its users.
This information is also provided pursuant to article 13 of Law Decree 196/2003 – Data Protection Code to the entities interacting with the web services of Pal S.r.l and Imal S.r.l., that can be accessed via the Internet at the following address:
www.imalpal.com
corresponding to the home page of the official website of Pal S.r.l and Imal S.r.l.,
This information only applies to the website of Pal S.r.l and Imal S.r.l., and not to other websites possibly accessed by the user through links.
The information is also based on the guidelines contained in Recommendation no. 2/2001 adopted on 17 May 2001 by the European Data Protection authorities within the Working Party set up by art. 29 of Directive 95/46/EC to lay down the minimum requirements for the collection of personal data online, and, more specifically, the methods, timing and content of the information that the Data Controllers must provide to users visiting web pages, whatever the purpose.
The Recommendation as well as a summary description of its purposes can be found in other sections of this website.

DATA CONTROLLER
Browsing this website may result in the processing of data relating to identified or identifiable subjects. The related Data Controllers are:
• Imal s.r.l. Via Rosalba Carriera, n. 63 I-41126 San Damaso (MO) Italy;
• Pal s.r.l. Via delle industrie, n. 6/B I-31047 Ponte di Piave (TV) Italy;

DATA PROCESSING LOCATION
The data processing related to the web services made available on this site, which takes place at the aforementioned headquarters of IMAL s.r.l. and PAL s.r.l. on via R. Carriera, 63 - 41126 San Damaso (Modena) and on via delle Industrie, 6/B - 31047 Ponte di Piave (Treviso), is solely performed by the technical staff of the office in charge of the processing, or by personnel in charge of occasional maintenance operations.
No data resulting from web-based services is communicated or disclosed.
Personal data provided by users requesting to be sent information material (bulletins, CD-ROMs, newsletters, annual reports, replies to enquiries, etc.) is only used to provide the service requested and is communicated to third parties only if necessary for said purposes.

CATEGORIES OF DATA PROCESSED

Surfing data
IT systems and software procedures used to operate this website capture some personal data as part of their normal operation; the transmission of such data is an inherent feature of Internet communication protocols. Such data is not collected in order to be linked to identified data subjects; nevertheless, due to its own nature, such data could allow the identification of users through processing and linking to other data controlled by third parties.
This category of data includes IP addresses, domain names of the computers browsing the website, the URI (Uniform Resource Identifiers) addresses of the requested resources, the time of such request, the method used when submitting the request to the server, returned file size, the numerical code relating to server response status (successful, error, etc. ...) and other parameters relating to the user’s operating system and software environment.
This data is only used to retrieve anonymous statistical information on the use and the proper operation of the website and is immediately deleted after processing. Said data may be used to verify liability in case of any legal IT-related crime to the detriment of the website: with the exception of this possibility, the data regarding on-line contacts is currently held for no longer than seven days.
Data voluntarily disclosed by the user
Sending e-mails to the e-mail addresses shown on this website on a voluntary basis involves the retrieval of the sender's e-mail address in order to reply to its queries as well as any other personal data included in such email.
Specific summary information notices will be shown and/or displayed on the pages that are used for providing services on demand.

COOKIES
No personal data concerning users is acquired by the website in this regard.
Cookies are not used for the communication of personal information; moreover, no kind of the so-called persistent cookies or of any system to track website users is adopted on the company website.
The use of the so-called session cookies (i.e. those that are not memorized on a permanent basis on the computer of the user and disappear once the browser is closed) is strictly limited to the transmission of session-specific identification data (made of random figures generated by the server) which are necessary to enable the user to safely and efficiently explore the website.
The so-called session cookies used on this website avoid the need to resort to other IT tools that are potentially detrimental to the users’ safe surfing and do not allow for the disclosure of personal identification data of the users.

OPTIONAL DATA PROVISION

Except for what has been stated above in relation to website browsing, users are free to provide their personal data reported in the application forms or otherwise mentioned in contacting the Office to request delivery of information material and other communications.
Failure to provide such data could lead to the Company being unable to satisfy the user's request.
For the sake of completeness, it is worth noting that in some cases (falling outside the ordinary management of this website) the Authorities might request information pursuant to art. 157 of Law Decree 196/2003, to control the processing of personal data. In these cases the reply is mandatory and, failure to provide one, might lead to administrative sanctions.

DATA PROCESSING ARRANGEMENTS
Personal data is processed with automated means for the time strictly necessary in order to achieve the aim for which such data has been collected.
Specific security measures are complied with in order to prevent the loss of such data, as well as its illegal or incorrect use or unauthorized access.

DATA SUBJECT’S RIGHTS
Data Subjects have the right to obtain confirmation, at any time, as to whether or not personal data concerning them exists, to be aware of the content and origin, verify its accuracy or ask that such data be integrated, updated or amended (art. 7 of Law Decree 196/2003).
Pursuant to the same Law Decree, data subjects have the right to request the cancellation, transformation to anonymous form or the blocking of any data processed in breach of the law, as well as in any case, to object to its processing for legitimate reasons.
The requests must be addressed to the Data Controllers:
• Imal s.r.l. Via Rosalba Carriera, 63 I-41126 San Damaso (MO) Italy;
• Pal s.r.l. Via delle industrie, n. 6/B I-31047 Ponte di Piave (TV) Italy;
to the kind attention of the Data Controller.

P3P

This privacy notice can be examined using the most recent browsers that implement the P3P standard (Platform for Privacy Preferences Project) as proposed by the World Wide Web Consortium (www.w3c.org). All efforts will be made to ensure the highest interoperability between the functions of this site and the automatic privacy verification mechanisms that are made available by some software products employed by users.
Bearing in mind that the current development status of automatic verification mechanisms is such as not to allow the ruling out of errors and malfunctioning, it is hereby specified that this document as posted at http://www.imalpal.com/en/privacy.php is the “Privacy Policy” of this site and will be updated as necessary (the various versions remain available for examination at the same Internet address).