PRIVACY FOR REMOTE VIDEO IDENTIFICATION

• Click here to read the document

PRIVACY POLICY

This page describes how the website manages the treatment of the personal information of the visitors who consult it. This information note is drafted pursuant to Art.13 of Legislative Decree 679/2016 (Privacy Code) and issued to all those who interact with the web-based services of Credem Euromobiliare Private Banking S.p.A (hereinafter Credem Euromobiliare Private Banking) that may be accessible from its website.

This information note applies only to the Credem Euromobiliare Private Banking website and not and it does not apply to other linked websites users connect to.
The information note is also shaped by the Italian Data Protection Authority's Recommendation n.2/2001, which personal data protection authorities, gathered in the Working Party established by art. 29 of the Data Protection Directive 95/46/EC, adopted on May 17, 2001 to identify some minimum requirements for collecting personal information online regardless of the purpose of the connection.

Data controller and data coordinator

The Data Controller is Credem Euromobiliare Private Banking S.p.A based at Via Emilia San Pietro, 4 – 42121 Reggio Emilia (RE), Italy.

The Data Controller has appointed a Data Protection Officer ("Data Protection Officer" or "DPO"), whom you can contact to exercise your rights, as well as to receive any information relating to them and/or to this Notice:

• by writing to Credem Euromobiliare Private Banking S.p.A. via Emilia San Pietro, 4, 42121 Reggio Emilia (RE), Italy – To the attention of Data Protection Officer;
• by sending an e-mail to privacy@credemeuromobiliarepb.it;
• by sending a certified e-mail to the certified email address credemeuromobiliarepb@pec.gruppocredem.it;
• by calling the toll-free number 800 450045.

The Data Controller and the DPO, also through the designated structures, will take care of your request and provide you, without undue delay and, in any case, at the latest within one month of receipt, the information relating to the action taken regarding your request.

We inform you that if the Data Controller has doubts about the identity of the person who submitting the request, he may request additional information necessary to confirm the identity of the interested party.

Types of data processed

Browsing Data
Information technology systems and software procedures used to operate the Site acquire, during the normal course of operation, some personal data whose transmission is implicit in the communication protocols of the Internet .

The personal data relates to internet traffic which, due to its nature, cannot be automatically associated to identified users, but by being processed or associated with data held by third parties, it may allow the identification of users/visitors of the website.

These types of data include IP address and the domain names of computers used by the users logging onto the site, the URLs or URIs (Uniform Resource Locators and Identifiers) pertaining to requested resources, the timestamp of requests, the method used in formulating requests to the server, the size of files obtained in reply, the numerical code that shows the server’s given reply (successful completion, error and so on) and other parameters relating to the operating system and to the user’s ITC environment. These data are used solely for the purpose of gleaning anonymous statistical information on the site’s use and for checking and controlling their proper functioning; in any case they are immediately deleted after processing. These data could be used to define responsibility in the hypothetical event of ITC-related crimes committed that damage the site: except for this possibility, web contact data do not currently persist longer than seven days.

Data supplied by the user voluntarily
The explicit and voluntary choice of the user to send emails to the address published on this site leads to the success acquisition of the sender’s address. This is necessary for responding to requests as well as the inclusion of possible further data in the electronic message. These data will only be handled in order to process the submitted request.

Specific summary information will be progressively reported or displayed on the pages of the website prepared for these particular services on request.

Cookies
A cookie is a small "data file" that some websites, while being visited, can send to the address of the user who is browsing them. For these reasons, the Web server of Credem Euromobiliare Private Banking, while browsing its site, can exchange cookies with users' computers. Each user, if he prefers, can still set his browser in such a way as to receive a warning of the presence of a cookie and decide whether to accept or reject it. It is also possible to automatically refuse to receive cookies by activating the appropriate browser option: failure to use cookies, however, could lead to difficulties in interacting with the Bank's website. For more information on cookies, please refer to the specific information published in the "Privacy" section of this site.

Optional supply of personal data and consequences
Apart from that specified for navigation data, the user is free to provide personal data contained in the appropriate request forms, in the sections of the website prepared for requests for information / assistance. It should also be noted that failure to provide them may make impossible to obtain what is requested.

Methods of Data processing
Your personal data will be processed using automated, computerized and telematic tools, strictly related to the purposes indicated and, in any case, with methods suitable for guaranteeing their security and confidentiality in accordance with the provisions of Article 32 of the GDPR. Your data will be processed for the time necessary to achieve the purposes for which they were collected. Specific security measures are observed in order to prevent data loss, illicit or incorrect use and unauthorized access.

Rights of interested parties
As an interested party you may, under the conditions provided for by the GDPR, exercise the rights enshrined in articles 15 to 21 of the GDPR and, in particular, the right to:

• obtain information such as the confirmation if your data are being processed and, in this case, obtain access to your data - including a copy- and also the communication of the following informations: purpose of the processing, categories of personal data processed, recipients to whom these have been or will be communicated, data retention period, rights of the data subject (right of access - article 15 GDPR);
• obtain, without undue delay, the correction of inaccurate personal data concerning you and / or the integration of incomplete personal data (right of rectification - article 16 GDPR);
• obtain, without undue delay, the cancellation of your personal data (right to cancellation - article 17 GDPR);
• obtain the treatment of data limitation (right to treatment data limitation - article 18 GDPR);
• receive in a structured format, commonly used and readable by an automatic device, the personal data concerning you, transmit them to another holder without impediments and, where technically feasible, obtain that your personal data are transmitted directly by the Bank to another owner, if the processing is based on consent and is carried out by automated means (right to data portability - article 20 GDPR);
• oppose the processing of your personal data, unless there are legitimate reasons for the Data Controller to continue the processing (right to object - article 21 GDPR);
• propose a complaint to the Guarantor Authority for the protection of personal data.

The above rights may be exercised against the Data Controller by contacting the references indicated in point 1 above.

The exercise of your rights as an interested party is free of charge pursuant to Article 12 of the GDPR. However, in case of manifestly unfounded or excessive requests, also due to their repetitiveness, the Data Controller may charge you a reasonable fee, regarding the administrative time costs incurred to manage your request, or deny your request.

You can consult this page regarding the documentation relating to:

• Application form for the exercise of rights by the interested party
• Customer information for natural persons, sole proprietorships and professionals
• Customer information for legal persons (companies), institutions and associations
• Processing of personal data: INFORMATION FORM relating to credit information systems - How we use personal data
• List of subjects to whom the data can be communicated
• Electronic Signature Service: Technical document
• Information documents on occasional transactions
• Biometric signature - General information
• General information regarding personal data processing, pursuant to art. 13 and 14 of EU Regulation 679/2016 (GDPR) – Information for Professional Service providers
• Video Surveillance Notice