This policy is given under EU N. 2016/679 Regulation of the European Parliament and of the 27 April 2016 of the Board relative to the safeguard of physical person with reference to the personal data treatment, and to the free circulation of these data (General Regulation on data protection, also called “Regulation” or “GDPR”), to those who interact with EMC Therapy srl website, accessible via web address https://kinup.it (also called “Website”).
This document explains which information is collected when you visit our website, and how and why this information is collected and used.
We take seriously your privacy and we are proactive for ensuring all the necessary steps to protect your personal data.
This informative is given only for the above mentioned website and not for other websites eventually available for consultation via link in this website.
Our contacts
1. Data controller: EMC Therapy srl, Via Arno, 09 – 60025 Loreto (AN), email: info@kinup.it
2. Data processor: Sistema 3 srl, Via Valle Cascia, 33 – 62010, Montecassiano (MC), email: info@sistema3.it
Which data we collect?
Personal data collected and treated via this website are the following:
· Navigation data
Informatic systems and applications dedicated to the correct functionality of this website collect some data (whose transmission is implicit in the use of Internet communication protocols) not linked to direct identifiable users.
Among collected data there are IP addresses of tools used by the users who log into the website, URI (Uniform Resource Identifier) notation addresses of requested resources, the hour of request, the method utilized in submit the request to the server, file dimension obtained as an answer, numeric code which indicates the status of the answer given by the server (successful, error, etc.) and other parameters concerning the operating system and the informatic environment used by the user.
This database is treated for the only for the shortest time as well as to obtain anonymous statistic information about the website use and for controlling the regular functionality.
· Contact data given by the user
These data are voluntarily inserted by the user in given compilation fields planned by this website: email address
· Cookies
For knowing more about the cookies treated by the website https://kinup.it , please refer to the cookie policy available at the following link:
For which purpose?
Navigation data are acquired by informatic systems and software procedures of this website for its common functionality. These are information that are not collected to be linked to identified interested people, but for their type might allow, through elaborations and associations with data held by third parts, to identify users. These data are only used to obtain anonymous statistic information on the use of the website and to control its common functionality. This database is collected on the user explicit consent via persistent navigation on the website.
Contact data given by the user will be used for the following purposes:
· informative newsletter about the KINUP activity.
· market survey e-mailing and informative materials sending about KINUP activity and initiatives
These data are collected under the interested person explicit consent, which is given by filling the special form request.
How do we manage data?
Personal data treatment is made through informatic and/or telematic instruments, with organizational modalities and with logics strictly related to the indicated purposes. Personal data treatment is implemented by the Data processor, with whom the Data controller subscribed a special agreement according to article 28 of RGDP. The Data processor himself will be able to have another Data processor with whom he will subscribe precise written agreement in which there are protection duty which are to be put into effect and respected.
What are the management legal basis?
User personal data management is based on the following legal basis:
· user given consent for one or more specific purposes.
However, it is always possible to require the Data controller to clarify the legal basis of each treatments at the email address info@kinup.it
Where are data collected?
Data are collected both in server units belonging to the Data processor, located in via Valle Cascia n. 33 in Montecassiano, either to Aruba spa Datacenter IT2 located in via Sergio Ramelli, 8, 52100, Arezzo (AR). However, Personal data may be transferred to extra UE countries: USA. For those countries if a European Committee adequacy decision is in force or, in absence of this decision, it’s possible to require more information to the Data controller. The info to be required can be about proper adopted guarantees, and also the modalities to obtain a copy of this data or the exact place where they were available.
Which security measures are adopted?
The Treatment is made by Data processor with modalities and instruments suitable for guaranteeing personal data security and confidentiality. The Data processor has adopted - for the Data controller - technical and organizational measures adequate for guaranteeing and allowing to demonstrate that the Treatment is made in compliance of reference law. Furthermore, connections are carried on in a security regimen https with adoption of BCRYPT encryption tools. A daily backup system is available with copy both on server with RAID5 discs and another copy in an external dedicated NAS. Continuity service is guaranteed (business continuity) through data redundancy made by Aruba spa provider.
Personal data will be stored for the necessary period referring to the applicable law. Anyway, user can withdraw his/her personal data consent any time. Data transmitted to services providers will be managed for the strictly necessary period to the execution of the tasks given to them.
Which rights are granted to the user?
Users have all the rights admitted by UE 2016/679 Regulation. These are:
· right to have access to its personal data (after confirmation that their own data are under treatment by the Data controller);
· right to obtain the rectification and integration of its own personal data.
· right to obtain the deletion of its own personal data.
· right to obtain the limitation of the treatment of its own personal data if there are special conditions.
· right to receive personal data given to the Data controller in a common use format, as well as to transmit to another Data controller.
· right to oppose to the personal data treatment if there are situations connected to his own personal situation.
· right not to be submitted to an automatic decisional process.
· right to receive a communication when his data are corrupted or stolen.
· right to withdraw the consent to the treatment at any time.
· right to lodge a complaint with public control authority.
To exercise its personal rights, users can send a request to the contacts of Data controller or Data processor available in this document.
Last version 22/03/2022.