OUR WEBSITE’S PRIVACY POLICY

Here is why we provide this notice: This page describes how the site is managed in relation to the processing of personal data of users who view it. This is a notice provided pursuant to articles 13 and 14 of the GDPR as well as of legislative decree no. 196/2003 – Code regarding the protection of personal data of those who interact with the web services of 4EVER YOUR FRIENDS S.R.L.U., accessible by electronic means from the address:

corresponding to the start page of our official service company website.
The information is given only for our company’s site and not for other websites accessed by users via links.
The notice is also based on Recommendation No. 2/2001, adopted on 17 May 2001 by European Authorities through a Working Party on the Protection of Data, set up pursuant to art. 29 of Directive 95/46/CE, determining some minimum requirements for the gathering of personal data on-line, and, in particular, the manner, duration and nature of the information which the Data Controller is obliged to provide to users when they access web pages, regardless of the purpose of such access.
The purpose of the Privacy Notice is to provide the utmost transparency regarding the information that the website collects and how it uses it.

THE DATA “CONTROLLER” On viewing this site, personal data relating to identified or identifiable persons may be processed but no special categories of data or data of a judicial nature are processed, unless voluntarily provided when applying for one of the positions open at our company.
The data “Controller” is 4ever Your Friends S.r.l.u., based in Follonica (GR), Via del Fonditore no. 790 / B (VAT no.: 01414280535 ).

DATA PROCESSOR The list of data processors and sub-processors is available from the operational headquarters of the Controller located in Follonica (GR), Via dell’Artigianato 745. Alternatively, it can be requested by sending an email to privacy@yfgroup.it.

LEGAL BASIS FOR DATA PROCESSING

Processing is aimed exclusively at the correct, punctual and diligent provision of the Controller’s services as requested voluntarily by the user by filling in special contact forms – for information requests or sending of applications – present on our site.

The processing of the user’s personal data may take place if one of the following conditions exists:

the user expresses consent to the processing of his/her personal data for specific purposes (e.g. marketing, profiling,..);
it is necessary for the execution of pre-contractual measures with the user;
it is necessary for the execution of the contract in place with the user;
it is necessary to fulfil legal obligations to which the Controller is subject;
it is necessary for the performance of a task carried out in the public interest;
it is necessary for the pursuit of the legitimate interest of the Controller or of third parties.

By utilising or consulting this Website, Visitors and Users explicitly approve this Privacy Notice and consent to the processing of their personal data in relation to the means and purposes described above, including any disclosure to third parties whereby necessary for the provision of a service by our Company.

If the processing by the Controller concerns specific purposes for which consent is required, this is expressed by the user actively ticking a specific information box on our website in the “contacts” section and in the section “work with us”.

The user always has the right to request the Data Controller to specify the legal basis that legitimates the processing of his/her personal data (e.g. consent, fulfilment of pre-contractual measures or performance of the contract, legal obligations, …) by sending a request to the dedicated email address: privacy@yfgroup.it.

TYPE OF DATA COLLECTED AND PURPOSE

This website collects – independently or through third parties – various kinds of personal data.

Browsing data

As with all Websites, this Website also utilises log files in which information garnered from User visits is automatically collected and stored. Transmission is implicit in the use of Internet communication protocols.

The information collected could include the following:

– Internet Protocol (IP) address;

– domain names of the PC and the terminals used by users; – type of browser and parameters of the device used to connect to the site; – name of the internet service provider (ISP); – date and time of visit; – web page of the visitor’s origin (referral) and exit; – possibly the number of clicks.

The information listed here is processed automatically and collected in an exclusively aggregated form in order to verify the correct functioning of the website, and for security reasons.

As of May 25, 2018, this information is processed based on the legitimate interests of the Controller.
As a security measure (anti-spam filters, firewalls, and virus detection), the data automatically stored may also include personal data like IP addresses. Such data may be used to block attempts to hack the website or other users, or any other harmful or illegal activity, and is handled according the laws governing data usage and storage.

Such data are never used for user identification or profiling, but merely to protect the site and its users.

Such data can also be processed:

– for statistical purposes on the use of services (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.)

As of May 25, 2018, this information is processed based on the legitimate interests of the Controller.

Browsing data do not persist for more than 26 months, except for the need to ascertain criminal offences requested by judicial authorities.

Data provided voluntarily by users

The user has the option to send, explicitly and voluntarily:

messages to the Controller’s email address;
private messages sent by users to the Controller’s profiles/pages on social media (where possible);
compiling and forwarding contact forms on the site in the “contacts” section or in the “work with us” section;
comments, if the site allows it.

In these cases, the site automatically detects and records some user contact data, including the email address, necessary to respond and all personal data contained therein.

In the event of filling in contact forms, in particular in the “work with us” section, the site automatically detects and records user personal data, even those belonging to special categories (for example: identification data, photos, email addresses and social media profiles, telephone number, biometric data, information on habits, previous experience), contained therein.

These data are voluntarily provided by the user when requesting information and/or sending an application for a position with the Controller.

The information that site users deem to make public through the services and tools rendered available to them (for example on social media platforms linked to the website), is provided by the User knowingly and voluntarily, exempting this Site from all liability regarding any violation of laws.

It is up to the user to verify that he/she has permission to provide third parties personal data or content protected by national and international regulations.

By filling out a contact form, sending a message, entering a comment or communicating any other information, the user expressly accepts this privacy policy.
The data received will be used exclusively for the provision of the requested service and/or the handling of the application and will be kept for the time strictly necessary to carry out the specified activities.

The data received can be used for:

Contacting the user by telephone, when given, or by email, through a newsletter or mailing list;
Managing contacts and sending messages, via Mailup;
Remarketing and behavioural targeting;
Statistics;

In any case, the data collected by the website are never shared with third parties, unless upon legitimate request by the judicial authority and only in the cases set forth by law.

Specific notices on the processing of personal data, including those belonging to special categories (provided voluntarily by the user when sending CVs) are available on the website of the Controller in the “Work with us” section at the bottom of the contact form provided therein.

Specific consent boxes are provided on the website of the Controller in the “Contacts” and “Work with us” section at the bottom of the contact forms provided therein.

Cookies and other tracking systems

Cookies are data created on a server that are stored in text files on the hard disk of the user’s computer and allow the operation of this website, the use of a specific functionality explicitly requested by the user, that is to say they allow improvements in the operation of this website, such as cookies that make the browsing faster or show content of interest to the user depending on previous choices. Cookies can be permanent (persistent cookies), but can also have a limited duration (session cookies). This website uses both persistent and session cookies. Session cookies are not permanently stored on your computer and disappear when the browser is closed. Persistent cookies help customise browsing, depending on the device used by the user (computer, tablet, smartphone), as well as third-party cookies that are used to analyse site access (e.g. Google Analytics) and allow users to share the site content through social media networks (Facebook) or email (Add This). These cookies are stored permanently on your computer and have a variable duration.

User profiling cookies are not used.

The possible use of Cookies – or other tracking tools – by this Website or by the owners of third-party services used by this Website, unless otherwise specified, is to provide the Service requested by the User, in addition to any other purposes described in this document and in the Cookie Policy.

For specific information, please refer to the Cookie policy on our website.

PROCESSING METHOD AND DATA PROCESSING PLACE The Data Controller uses appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data.

The data are currently processed and stored on servers located in Europe and/or on computer/electronic media held at the operating site.

Personal data can be entered and processed on the company management software on computer systems present on site or on the CRM management software in cloud and, if so, they are stored on servers in Aruba which, as declared, are located in the EU.

Personal data are used for the time period necessary to achieve the goal for which they were collected.

They are also processed, on behalf of the Controller, by professionals and/or companies entrusted with carrying out technical, developmental, managerial and administrative accounting tasks, in their capacity as independent data controllers or joint controllers or external processors, with duties and responsibilities detailed in the relative deed of appointment.

DURATION OF DATA RETENTION

The data are processed and stored for the time required for the purposes for which they were collected, in particular:

Personal data collected for pre-contractual purposes or linked to the execution of a contract between the owner and the user will be kept until the execution of the relative contract is completed;
Personal data (also belonging to special categories) collected with the user’s prior consent for pre-contractual purposes or linked to the execution of a contract will be kept for a longer period than that mentioned above, namely: a) until consent is withdrawn; b) within the time frame indicated in the detailed notice for “candidates for a position” available in the “Work with us” section of this website.
Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such time as this interest is satisfied. The user can get information on the legitimate interest of the Data Controller in the relevant sections of this privacy policy or from the Controller directly.
The Controller may be obliged to keep the user’s personal data for a longer period in order to comply with a regulatory obligation or by order of an authority.

Personal Data will be deleted at the end of the retention period. Therefore, upon expiry of this term, the right of access, cancellation, rectification and the right to portability of the Data may no longer be exercised.

DATA RECIPIENTS

The recipients of data collected on viewing the site are the following subjects designated by the Data Controller, pursuant to article 28 of the Regulation, as the Data Processors.

BOMBER SNC Via Zannerini 5/b, Massa Marittima (GR) VAT number 01624970537 Email info@bomberweb.it as a provider of web marketing services for the web platform;
MINDS 2 CODE Strada Colomba Pecorari 1/A bis, Perugia (PG) VAT number 03330730544, as a provider of development services, delivery and operational management of the technological platforms used.

The personal data collected are also processed by the Controller’s personnel, acting on the basis of specific instructions provided for the purposes and methods of the processing itself.

RIGHTS OF THE DATA SUBJECTS

The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence of such data and to know their content and origin, verify its accuracy or request their integration, updating, or rectification.

The users concerned have the right to request the deletion, transformation into anonymous form or blocking of data processed in breach of the law. In all legitimate circumstances they may oppose the processing of their data under article 15 and subsequent amendments of the GDPR).

Requests should be sent by email to the address: privacy@yfgroup.it by filling in a specific request form, downloadable here.

RIGHT TO LODGE A COMPLAINT

Data Subjects who believe that the processing of personal data referring to them carried out through this site is in violation of the provisions of the Regulations have the right to lodge a complaint with the Data Protection Authority, as provided for by Article. 77 of the Regulation itself, or to address the appropriate judicial offices (Article 79 of the Regulation).

This represents the website’s “Privacy Policy” and will be constantly updated.

Updated on: 25/05/2018

Privacy Policy modal