This page describes how the website manages the treatment of the personal information of the visitors who consult it. This information note is drafted pursuant to Art.13 of Legislative Decree 679/2016 (Privacy Code) and issued to all those who interact with the web-based services of Credem Euromobiliare Private Banking S.p.A (hereinafter Credem Euromobiliare Private Banking) that may be accessible from its website.
This information note applies only to the Credem Euromobiliare Private Banking website and not and it does not apply to other linked websites users connect to. The information note is also shaped by the Italian Data Protection Authority's Recommendation n.2/2001, which personal data protection authorities, gathered in the Working Party established by art. 29 of the Data Protection Directive 95/46/EC, adopted on May 17, 2001 to identify some minimum requirements for collecting personal information online regardless of the purpose of the connection.
Data controller and data coordinator
The Data Controller is Credem Euromobiliare Private Banking S.p.A based at Via Emilia San Pietro, 4 – 42121 Reggio Emilia (RE), Italy.
The Data Controller has appointed a Data Protection Officer ("Data Protection Officer" or "DPO"), whom you can contact to exercise your rights, as well as to receive any information relating to them and/or to this Notice:
The Data Controller and the DPO, also through the designated structures, will take care of your request and provide you, without undue delay and, in any case, at the latest within one month of receipt, the information relating to the action taken regarding your request.
We inform you that if the Data Controller has doubts about the identity of the person who submitting the request, he may request additional information necessary to confirm the identity of the interested party.
Types of data processed
Browsing DataInformation technology systems and software procedures used to operate the Site acquire, during the normal course of operation, some personal data whose transmission is implicit in the communication protocols of the Internet .
The personal data relates to internet traffic which, due to its nature, cannot be automatically associated to identified users, but by being processed or associated with data held by third parties, it may allow the identification of users/visitors of the website.
These types of data include IP address and the domain names of computers used by the users logging onto the site, the URLs or URIs (Uniform Resource Locators and Identifiers) pertaining to requested resources, the timestamp of requests, the method used in formulating requests to the server, the size of files obtained in reply, the numerical code that shows the server’s given reply (successful completion, error and so on) and other parameters relating to the operating system and to the user’s ITC environment. These data are used solely for the purpose of gleaning anonymous statistical information on the site’s use and for checking and controlling their proper functioning; in any case they are immediately deleted after processing. These data could be used to define responsibility in the hypothetical event of ITC-related crimes committed that damage the site: except for this possibility, web contact data do not currently persist longer than seven days.
Data supplied by the user voluntarilyThe explicit and voluntary choice of the user to send emails to the address published on this site leads to the success acquisition of the sender’s address. This is necessary for responding to requests as well as the inclusion of possible further data in the electronic message. These data will only be handled in order to process the submitted request.
Specific summary information will be progressively reported or displayed on the pages of the website prepared for these particular services on request.
Optional supply of personal data and consequences Apart from that specified for navigation data, the user is free to provide personal data contained in the appropriate request forms, in the sections of the website prepared for requests for information / assistance. It should also be noted that failure to provide them may make impossible to obtain what is requested.
Methods of Data processing Your personal data will be processed using automated, computerized and telematic tools, strictly related to the purposes indicated and, in any case, with methods suitable for guaranteeing their security and confidentiality in accordance with the provisions of Article 32 of the GDPR. Your data will be processed for the time necessary to achieve the purposes for which they were collected. Specific security measures are observed in order to prevent data loss, illicit or incorrect use and unauthorized access.
Rights of interested partiesAs an interested party you may, under the conditions provided for by the GDPR, exercise the rights enshrined in articles 15 to 21 of the GDPR and, in particular, the right to:
The above rights may be exercised against the Data Controller by contacting the references indicated in point 1 above.
The exercise of your rights as an interested party is free of charge pursuant to Article 12 of the GDPR. However, in case of manifestly unfounded or excessive requests, also due to their repetitiveness, the Data Controller may charge you a reasonable fee, regarding the administrative time costs incurred to manage your request, or deny your request.
You can consult this page regarding the documentation relating to: