Information pursuant to art. 13 of Legislative Decree 196/03
Regulation on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation)
Mari Travel & Communication srls is particularly attentive to the aspects concerning the privacy of its customers/users. Through this page it intends to describe the management methods of its website (WWW.POMPEIDMC.COM) with reference to the treatment and protection of the personal data of customers/users who access it. This is a general information provided in compliance with EU Regulation 679/2016 “Regulation concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data” to those who consult the Mari Travel & Communication srls. The mere consultation of this site, as well as the registration on the same, in fact, may involve the registration, use, cancellation and, more generally, the processing of personal data relating to identified or identifiable users.
OWNER OF THE TREATMENT
The Data Controller is Mari Travel & Communication srls | VAT number 09407781211, with registered office in VIA Aldo Moro, first side street, 32 – 80045 Pompei (Na), e-mail: Info@pompeidmc.com.
DATA PROTECTION OFFICER
In carrying out their duties (ref. Art. 24 and Art. 37 Paragraph 1 of EU Regulation 679/2016) the Data Controller and the Managers have appointed as Data Protection Officer (DPO – Data Protection Officer LEO MANCUSO, VIA Aldo Moro, first traversa, 32 – 80045 Pompeii (Na), e-mail firstname.lastname@example.org.
This manager was designated on the basis of his professional qualities, with particular reference to his specialist knowledge of the legislation and practices on data protection. The duties of the Data Protection Officer are those indicated by the Art. 39 of the Regulation.
TYPE OF DATA COLLECTED, PURPOSE OF DATA PROCESSING AND PROVISION BY THE INTERESTED PARTY (USER)
Data “processing” means any operation or set of operations, performed with or without the aid of automated processes and applied to personal data or sets of personal data, such as the collection, registration, organization, structuring, storage, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of making available, comparison or interconnection, limitation, cancellation or destruction (Article 4 EU 679/2016). The entry of data for access to this site involves their acquisition for the purposes indicated below. The user is clearly free to choose whether to provide their data by entering them in the appropriate registration forms.
Navigation data – The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.
Data provided voluntarily by the user – The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.
The personal data relating to site users may be used in order to obtain anonymous statistical information on the use of the site, to check its correct functioning and to ascertain any liability in the event of offenses committed against the site, the Owner or third party. With reference to users who register on the site, as well as for the purposes described above, the data will be processed in order to:
• make it possible to access and navigate the site
• provide the user with the services offered by Mari Travel & Communication srls
• provide the user with the requested information by voluntarily sending an e-mail
• manage marketing activities and the sending of advertising material, only with express consent
In carrying out the processing activities, the Data Controller has not identified any legitimate interest either on its part or on the part of delegated third parties.
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. Consequently, mere access to the site implies the acquisition by the operator of information and data concerning the user. The provision of data for the request for information, for the preparation of a quote or for the performance of promotional activities, is optional since they are data collected by the writer to make the performance of its business optimal. Refusal to provide this data will make it impossible to send any information of an organisational, technical and commercial nature.
DATA PROCESSING, COMMUNICATION AND STORAGE METHODS
As far as the methods of data collection and processing are concerned, we would like to inform you that the data in our possession will be processed in written form and/or on paper, magnetic, electronic or telematic support, with instruments suitable for guaranteeing the confidentiality and security of the same in compliance with the provisions of EU Regulation 679/2016 (with particular reference to Articles 24, 32 and 35).
The data will be processed lawfully, correctly and transparently and to protect the privacy and user rights only by personnel directly authorized by the Data Controller, or by the Data Processors specifically appointed pursuant to Art. 28 of EU Regulation 679/2016 (list available from the Owner).
The data will not be disclosed, with this term meaning giving it knowledge to indeterminate subjects in any way, including by making them available or consulting them. The data may be communicated, with this term meaning giving knowledge of it to one or more specific subjects (list available from the Data Controller), in the following terms:
• to subjects who can access the data by virtue of provisions of the Law, Regulations or Community Legislation, within the limits set by these Rules
• to subjects who need to access data for auxiliary activities to achieve the purposes for which such data were collected
In particular, the data of “registered” users may be disclosed:
• to third parties who supply the goods/services available on the site as well as to third parties who carry out data analysis activities for statistical purposes and in any case within the limit of the processing purposes described above
• to third parties in charge of site maintenance by the Owner and under his supervision
• to the companies connected to Mari Travel & Communication srls for the same purposes indicated above, following the consent of the interested party, both on national and European territory (as authorized by the Guarantor), or on non-European territory, pursuant to Articles 44, 46 and 49 Paragraph 1 Letter a) and c) of EU Regulation 679/2016
No personal data acquired from the WEB service will be disclosed.
The data will be kept for a period not exceeding that necessary for the purposes for which they were collected or subsequently processed, also on the basis of the applicable legal provisions.
RIGHTS OF INTERESTED PARTIES
The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence or otherwise of the same data and to know its content and origin, verify its accuracy or request its integration or updating, or the rectification, cancellation or limitation, or to oppose their treatment, to lodge a complaint with the supervisory authority pursuant to Art. 15 of EU Regulation 679/2016.
Furthermore, pursuant to Articles 16, 17, 18, 19, 20, 21 and 22 of the same EU Regulation 679/2016, the interested party has the right to request rectification, cancellation (right to be forgotten), limitation of treatment, the notification in case of rectification or cancellation of personal data or limitation of treatment, data portability, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons to their treatment.
In order to exercise these rights, you can contact the Data Controller directly as indicated above, at the e-mail address: email@example.com indicating “cancellation of personal data” as the subject.
WHAT ARE COOKIES
Cookies are small text files that the sites visited by the user send to the device (usually to the browser); they are stored in the corresponding browser folder while the user is intent on visiting a website, to then be re-transmitted to the same sites during subsequent visits. They are used for the purpose of improving navigation, tracking user tastes, allowing you to manage the presence or absence of targeted marketing initiatives or the provision of services connected to the activity of the Data Controller such as newsletters, demos, etc.
If limitations are placed on their use, this affects the user’s status during consultation. Blocking or removing them from the browser cache could cause incomplete use of the services offered by the web application.
For the purposes that are of interest here, cookies can be divided into two categories: technical cookies and profiling cookies.
Profiling cookies – as required by provision 229/2014 of the Guarantor for the protection of personal data – are aimed at creating profiles relating to the user and are used in order to send advertising messages in line with the preferences expressed by the same of surfing the net.
This site does not use profiling cookies. Therefore, these will not form the subject of this Information.
Technical cookies are those used for the sole purpose of “carrying out the transmission of a communication over an electronic communications network, or as strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide this service” (cf. art. 122, paragraph 1, of the Code on the processing of personal data). The cookies of this category include persistent cookies and session cookies.
Persistent cookies help sites remember user data and settings for later consultation. This allows for faster and more time-saving access since there is no need to log in again. Persistent cookies remain active even after the browser is closed.
Session cookies are temporary cookies whose operation on the machine is limited to the duration of the user’s session. When the browser is closed, session cookies expire. These are generally used to identify users when they access a site, to remind the user of his preferences when switching between site pages, to provide specific information previously collected, etc.
THIRD PARTY COOKIES
The so-called Third-party cookies are cookies set by a site other than the one the user is browsing. They are used, for example, by the site that the visitor first chose and which contains ads from another server or third-party website. Operationally, the browser collects information fed from different sources so that all elements are displayed on the same page, thus creating more cookies in the corresponding browser folder.
All these cookies can be removed directly from the browser settings or through special programs, even free ones, or it is possible to block their creation. In the latter case, some site services may not work as expected and it may not be possible to access or even no longer having the associated cookie, losing user preferences, in this way the information would be displayed in the wrong local form or may not be available.
THREATS BASED ON COOKIES
Since cookies are transmitted between the browser and the website, a malicious user or an unauthorized person could intercept the data transmission and the information relating to them. Although relatively rare, this fact can happen if the browser connects to the site using, for example, an unsecured WI-FI network. Other cookie-based attacks involve server settings. If a website does not require the browser to use only encrypted connections (e.g. https), malicious people can exploit this vulnerability to deceive visitors by sending them personal information through unsafe channels. Attackers can then hijack personal data for unauthorized processing purposes.
HOW CAN I CONTROL THE INSTALLATION OF COOKIES
Most browsers accept cookies automatically but it is still possible to choose not to accept them. However, it is advisable not to disable them because this could prevent moving from one page to another.
If you do not want your computer to receive and store cookies, you can change the security settings of your browser (Internet Explorer, Google Chrome, Safari etc.). In any case, it should be noted that certain parts of this site can be used to their fullest extent only if the browser accepts cookies. Consequently, the choice to remove and not accept cookies could negatively affect the permanence on the site and its use.
Browser manufacturers provide help pages relating to the management of cookies in their products. See below for more information.
• Google Chrome
• Internet Explorer
• Mozilla Firefox
• Safari (Desktop)
• Safari (Mobile)
• Android Browser
• Opera Mobile
For other browsers, please consult the documentation provided by the manufacturer on their respective websites.
Most browsers have implemented the privacy setting function that provides different levels of acceptance of cookies, expiration and elimination after a user has visited a particular site.
This site uses the cookies listed in the table below:
Name Type Owner Duration
PHPSESSID Technicians First part 30 minutes
cookieAccept Technicians First part 15 days
_utma Analytics Third party Google 2 years
_utmb Analytics Third party Google 1 day
_utmc Analytics Third party Google 1 year
_utmc Analytics Third part Googe 6 months
For further clarifications, you can contact the Data Controller directly as indicated above by writing an email to the address: firstname.lastname@example.org.