Matrix Engineering

Menu
Menu

Privacy Policy

WWW.MATRIX-ENGINEERING.IT

Data Protection Information pursuant to Articles 13 and 14 of Regulation (EU) 2016/679 (GDPR)

MATRIX ENGINEERING S.r.l., headquartered at Via Dell’Amicizia 10 – 20025 Legnano (MI), VAT/Tax Code no. 07594320157 – Tel. +39.0331.544379 – email amministrazione@matrix-engineering.it, in its capacity as Data Controller (hereinafter, the “Company” or the “Controller”), provides the following information regarding the processing of personal data carried out within the context of its institutional website accessible online from the address: www.matrix-engineering.it (hereinafter, the “Website”).

Please note that this information is provided only for the Website and not for other websites that may be consulted via hyperlinks or widgets (e.g., social networks) published on the Website, which refer to resources outside the Controller’s domain or to processing activities that may arise from the voluntary sending of messages.

  1. Categories of Data Subjects and Processed Personal Data

The Controller processes the personal data of natural persons (identified or identifiable) who visit and consult the Website or who voluntarily interact with the Controller through it (hereinafter, the “Users”). The personal data processed are:

  1. Browsing Data: the computer systems and software procedures used to operate the Website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes: IP addresses or domain names of the computers and terminals used by users, URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment;
  2. Communicated Data: the optional, explicit, and voluntary sending of messages through the filling out and submission of forms on the Website and/or to the Company’s contact addresses or institutional profiles/pages on social media (where this possibility is provided) entails the acquisition of the User’s contact details necessary to respond, as well as any other personal data included in the registration form or communications. Specific information will be published on the Website pages containing the form or prepared for the provision of certain services.
  3. Cookies and other tracking systems: this site uses only technical cookies, strictly limited to what is necessary for safe and efficient navigation of the sites. No cookies are used for user profiling.

However, the user can exclude them by disabling them directly through the specific setting options of the browser used for navigation:

Internet Explorer

https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies

Google Chrome

https://support.google.com/chrome/answer/95647?hl=en

Mozilla Firefox

https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences

Apple Safari

https://www.apple.com/legal/privacy/en-ww/cookies/

If the user completely disables cookies, some functionalities of the site may be disabled: however, the browser will continue to store a small amount of information, necessary for the basic functionalities of the site. (hereinafter, collectively, the “Personal Data”).

  1. Purposes of Processing and Legal Bases:

The Controller processes the Personal Data collected within the context of the Website for the purposes and on the legal bases indicated in the following table:

What are the PURPOSES of the processing? What are the LEGAL BASES of the processing?
1) Compliance with a legal obligation related to civil, fiscal, and administrative provisions, community regulations, codes or procedures approved by competent Authorities and other Institutions, as well as to follow up on requests from the competent administrative or judicial authority and, more generally, from public entities in compliance with legal formalities. Compliance with a legal obligation to which the Controller is subject.
2) To assert and defend its rights, including through out-of-court initiatives and through third parties, as well as to prevent and detect fraudulent activities or abuse of the Website (for potentially criminal purposes, such as identity theft, cybercrimes, etc.). Pursuit of the legitimate interest of the Controller.
3) To allow Users to access the Website and navigate optimally and to manage requests received through the Website. Execution of pre-contractual measures adopted at the User’s request.
4) Limited to Users’ browsing data sub par. 1 point a), for the purpose of security of the Controller’s systems and to obtain statistical information on the use of the Website (such as the most frequently visited pages of the Website, the average time spent on each page), as well as to monitor and manage the functioning of the Website and improve the services provided. Pursuit of the legitimate interest of the Controller.
5) To manage the contact section of the site and thus respond to any user requests received through the completion of any forms or through communications sent to the Controller’s email address. Execution of pre-contractual measures adopted at the User’s request.
  1. Mandatory Nature of Data Provision and Consequences of Failure to Provide

Except as specified for browsing data (and, in the specific policy, for the management of cookies), the user is free to provide their personal data (through any form – on the pages that allow it – or in other ways to the Controller’s contacts) to send information requests or to receive commercial communications. It is understood that failure to provide them, even partially, may prevent the Controller from fulfilling the User’s request and communication activities, as well as the fulfillment of any related obligations.

  1. Processing Methods

Personal Data will be processed by means of both manual and automated computerized tools exclusively by authorized and properly trained personnel.

  1. Recipients/Categories of Recipients of Personal Data

For the purposes indicated in this information notice:

  • The Users’ Personal Data may be communicated:
  • to the Controller’s authorized processors (employees or collaborators);
  • to third-party service providers to the Controller (including IT service providers, hosting providers, web editors, as well as companies or entities providing legal and insurance services) who will act, if applicable, as data processors;
  • to third-party companies and professionals appointed to assert the Controller’s rights, interests, claims arising from the relationship with the Users;
  • to State Administrations, Judicial or Administrative Authorities, Public and Private Entities, also following inspections and audits;
  • to entities that may access the data by virtue of legal or secondary or community regulations.

Only the category of recipients is indicated, as it is subject to continuous updates. To know the updated list of recipients, Users can contact the Controller directly, by writing to the contact details indicated in paragraph 9 of this information notice.

  1. Retention Periods of Personal Data

The Personal Data will be retained by the Controller for the time strictly necessary for the purpose for which they were collected; specifically, the Controller will retain:

  • Users’ browsing data (indicated in par. 1, lett. a) for the duration of the browsing session and in any case no longer than seven days, except in the case of system malfunctions, in which case they will be retained until the issue is resolved;
  • Data communicated by Users (indicated in par. 1, lett. b):
  1. For personal data communicated through the completion of forms on the website, for the time necessary to fulfill the related request;
  • Personal Data whose processing is necessary in relation to legal obligations for the duration required by law;

and in any case, for the purposes indicated in par. 2, n. 2, for a maximum period equal to the limitation period of the relevant actions increased by a prudential period of six months, in order to ensure the right of defense of the Company with reference to future possible disputes in judicial or administrative proceedings. In any case, upon the expiration of the respective terms, all Personal Data will be deleted or anonymized. It remains understood that the terms indicated may be extended in cases where retention for a further period is required in the event of possible litigation, requests from competent authorities, or under applicable law.

  1. Transfer of Personal Data to a Third Country or International Organization

Within the purposes outlined above, it is possible that your data may be transferred to countries belonging to the EU.

  1. Rights

Users, if the circumstances warrant, may exercise the following rights towards the Controller:

  • Right of access: allows Users to obtain confirmation from the Controller as to whether or not personal data concerning them is being processed and, if so, to gain access to their personal data;
  • Right to rectification: allows Users to obtain the rectification/integration of inaccurate/incomplete Personal Data;
  • Right to erasure: allows Users to obtain, in the cases provided for by law, the deletion of their personal data;
  • Right to restriction of processing: allows Users to obtain, in the cases provided for in Art. 18, paragraph 1 of the GDPR, the restriction (i.e., marking of stored personal data with the aim of limiting its processing in the future) of the processing of their personal data;
  • Right to data portability: allows Users – in cases where processing is carried out by automated means on the legal basis of the contract or consent – to receive in a structured, commonly used, and machine-readable format, limited to the data provided to the Controller, the personal data concerning them and similarly the right to transmit such data to another data controller.

Additionally, Users have the right:

  • to object to the processing of their Personal Data for the purposes indicated in paragraph 2;
  • and, if they believe that the processing of Personal Data concerning them carried out through this Website is in breach of the GDPR, to lodge a complaint pursuant to Art. 77 of the GDPR, with the national supervisory authority of the Member State of the European Union where the Data Subject has their habitual residence or place of work or where the alleged breach of their right occurred (if this State is Italy, the subject to whom they may apply is the Data Protection Authority) or to take legal action (Art. 79 of the GDPR).
  1. Contacts

To exercise all rights, the data subject may submit a specific request by contacting the Controller using the following methods:

  • by mail to MATRIX ENGINEERING S.r.l. at the address Via Dell’Amicizia 10 – 20025 Legnano (MI);
  • by sending an email to the ordinary email address e-mail amministrazione@matrix-engineering.it
  1. Modifications

This privacy policy was updated on 15/09/2022 The Company reserves the right to partially or fully modify this information or update its content, e.g., following changes in applicable law. Therefore, the Company invites the User to regularly consult the information notice to be aware of the latest updated version in order to always be informed about how Personal Data is collected and used.

Scroll to Top