Eurospin Italia S.p.A., hereinafter the Data Controller, safeguards the confidentiality of your personal data and guarantees the necessary protection from any event that may put them at risk of a breach. The Controller therefore shall implement policies and practices regarding the collection and use of personal data and the exercise of the rights that you hold according to the applicable regulations. The Controller is responsible for updating the policies and practices adopted for the protection of the personal data each time that this becomes necessary and nevertheless, in the event of regulatory and organizational amendments that may affect the processing of your personal data. The Controller has appointed a Data Protection Officer (DPO) whom you may contact should you have any questions regarding the policies and practices that have been adopted. The contact details of the Data Protection Officer are the following: DPO Office of the Eurospin Group Via Campalto 3/d 37036 San Martino Buon Albergo (VR) E-mail: dpo@eurospin.it
The Controller gathers and/or receives information about you, such as: IP address and cookies released through the navigation on the site eurospin.mt. These are used by the Controller to follow up with the management of the site and to gather information of an aggregate nature. The transfer of your personal data takes place primarily in regard to third parties and/or recipients whose activity is necessary for the fulfilment of the activities inherent to the above-mentioned purpose, and also to respond to specific legal or prescribed obligations for the control and supervision of the working operations. Each transfer that does not respond to these purposes shall be subject to your consent. Your personal data shall not be disseminated or divulged in any way to unspecified parties.
Cookie Policy Cookie PolicyOn the site eurospin.mt there are particular “buttons” (called social buttons/widgets) that represent the social network icons (e.g., LinkedIn). These buttons allow the users who are navigating the sites to interact directly with the social network represented there with just one click. In this case, the social network acquires the data relative to the user's visit, while the Controller shall not share any of the user's navigation information or data acquired through its own site with the social network accessible thanks to the Social buttons/widgets.
By accessing the site and going beyond the initial banner containing the short notice, the user would have granted their express consent to the use of the above-mentioned third-party cookies. The selection/deselection of the individual cookies can be effected through your own browser (select the Settings menu, click on Internet options, open the Privacy tab and choose the desired level of cookie blocking). For further information please visit the following links: Google Chrome, Mozilla Firefox, Apple Safari and Microsoft Windows Explorer. Moreover, you may activate the option Do Not Track that is found in most of the last generation browsers. Third-party cookies may be disabled by consulting the third party’s privacy policy, through the above-mentioned link, or by contacting them directly. Deactivating third-party cookies does not prejudice navigability in any way.
1. Transfers to Third Parties and Recipients The processing of your personal data occurs according to the contract and legal and/or regulatory obligations that arise from them. Your data shall not be transferred to third parties/recipients for their own autonomous purposes unless: 1. you grant authorisation; 2. it is necessary for the fulfilment of the obligations depending on the contract and on the legal rules that govern it (e.g. to protect your rights, etc.); The personal data that the Controller processes for such purposes are, among others: • IP address and cookies issued through navigation 2. Information Security The Controller, even by means of its suppliers (third parties and/or recipients), processes your personal data, information (e.g. logic access) or of traffic gathered or obtained in the event of services exposed on the web site as absolutely necessary and proportionately to guarantee the security and the capacity of a network or of the servers, at a specified level of security, during unforeseen events or illicit or harmful acts that compromise the availability, the authenticity, the integrity and the confidentiality of the saved or transmitted personal data. For these purposes, the Controller establishes procedures for the management of the breach of personal data (data breach).
We request that you examine the consequences resulting from the deselection of individual cookies, as explained in the above-mentioned table.
The data processing is carried out through information procedures by internal personnel who are duly authorised and trained. They are granted access to your personal data to the extent and within the limits in which this is necessary for the execution of the processing activities that concern you. Your data is processed separately from others even by means of pseudonymisation or aggregation that do not allow any potential identification. The Controller periodically checks the instruments through which your data are processed and the security measures stipulated for them for which constant updates are stipulated; he checks, even through personnel authorised to conduct the processing, that no personal data which does not need to be processed, is gathered, processed, archived or kept; he verifies that the data is kept with the guarantee of integrity and authenticity and its use for the purposes of the processing that is effectively executed. The data is kept in information and telematic archives located inside the European Economic Area. We invite you to examine the terms of personal data conservation as specified in the previous table.
At any time and gratuitously and without fees and particular formalities for your request, you may: • obtain a confirmation of the processing undertaken by the Controller; • access your personal data and gain insight of its origins (when the data is not obtained directly from yourself), the purposes and scope of the processing, the details of the subjects to whom it was transferred, the period of conservation of your data or the criteria used to determine this; • update or rectify your personal data in order that this is always precise and accurate; • cancel your personal data from the databases and/or archives even the Controller’s backup in the event, among others, that this is no longer required for the processing purposes or if this is perceived to be illicit, and always if there subsist the conditions stipulated by law; and nevertheless, if the processing is not justified by another equally legitimate reason; • limit the processing of your personal data in some circumstances, for example when you have contested its accuracy for the period required by the Controller to check its accuracy. You must be informed, within an adequate period, even of when the suspension period is completed or the cause of the processing limitation has failed and therefore the limitation itself is revoked; • obtain your personal data, if received or processed by the Controller with your consent and/or if its processing occurs on the basis of a contract and with automated instruments, in electronic format even for the purpose of transferring it to another processing controller. The Controller must proceed in this regard without delay and, nevertheless, no later than a month from receipt of your request. The period may be extended by two months, if necessary, considering the complexity and the number of requests received by the Controller. In such cases, the Controller shall inform you and keep you updated of the reasons for the extension within a month from receipt of your request. For further information and in order to send your request, you must contact the Controller at the following address privacy@eurospin.it.
For reasons relative to your particular situation, you may object at any time to the processing of your personal data if this is based on legitimate interest, by sending your request to the Controller at the following address privacy@eurospin.it. You have the right to cancel your personal data if there exists no prevailing legitimate reason in regard to that which gave rise to your request.
Notwithstanding any other administrative or judicial action, you may lodge a complaint to the competent board of control, that is, the one that carries out its tasks and exercises its authority in Italy where you habitually reside or work, or, if different, in the Member State where the violation of Regulation (EU) No. 2016/679 took place. Any updates to this information notice shall be communicated to you in a timely manner and through adequate means, and you shall also be informed if the Controller shall undertake the processing of your data for purposes other than those explained in this information notice, prior to proceeding and in sufficient time to grant your consent if necessary.