Datenschutz- und Cookie-Richtlinie

Casalini Libri s.p.a. informs that, pursuant to art. 13 of the European General Data Protection Regulation, no. 2016/679 ("Regulation") and Italian Legislative Decree 196/03 and subsequent amendments and additions, the personal data provided by the User in relation to the services provided on its platforms will be processed in accordance with the provisions of the Privacy Code and the Regulation, for the purposes stated below.

Data Controller

The Data Controller is the company Casalini Libri s.p.a., with registered office in Fiesole (FI), Via Benedetto Da Maiano n. 3, postcode 50014, VAT no. 03106600483 (hereinafter, the "Data Controller").

Personal Data Protection Officer

The Data Protection Officer (DPO) is Mr Massimo Di Menna (engineer). For all needs regarding the protection of personal data, including the exercise of the rights granted to the data subject by current legislation, please refer to the following contacts at the Data Protection Officer: massimo.dimenna@gruppoingegneria.it

Purpose, Legal Basis of Processing and Data Retention Period

Personal data will be processed for the following purposes and legal bases:

This website uses cookies. For details, please refer to the appropriate cookie policy.

Method and location of the Data processing

Data processing methods

The Data Controller processes Users' Personal Data using suitable security tools to protect against the unauthorised access, distribution, modification or destruction of Personal Data.
Processing is carried out using electronic and/or telematic tools, with organisational methods and logic strictly related to the stated purposes. In addition to the Data Controller, in certain cases, other parties involved in the organisation of the site may have access to the Data (administrative, sales, legal staff and system administrators) or appointed external categories (such as third-party technical service providers, mail couriers, hosting providers, IT companies and communication agencies) which can, if necessary, be appointed by the Data Controller to handle the Personal Data.
External parties appointed as External Data Processors include business partners (the suppliers).
The updated list of Data Processors can always be requested from the Data Controller.

Place and Times

Data is processed at the Data Controller's operational facilities and at any other place where the parties involved in the processing are based. Data is processed for the time period necessary to provide the User with services, or for the time required for the purposes described in this document, and the User can always request that processing is discontinued or that data is deleted.

Data transfer

Personal data will not be transferred abroad.

The Data Subjects' Rights

Data subjects - the identified or identifiable natural persons to whom the data refer - may exercise specific data protection rights, which are listed below:
  1. right of access: the right to obtain from the Data Controller confirmation as to whether or not personal data is being processed and, if so, to obtain access to personal data and detailed information on the origin, purposes, categories of data processed, recipients of communication and/or transfer of data, and so on;
  2. right of rectification: the right to obtain, from the Data Controller, the correction of inaccurate personal data without undue delay, as well as the integration of incomplete personal data, including by provision of an additional declaration;
  3. the right to deletion ("the right to be forgotten"): the right to obtain from the Data Controller the deletion of personal data without undue delay where: i. the data is no longer necessary in relation to the purposes of the processing; ii. the consent on which the processing is based is withdrawn and there is no other legal basis for the processing; iii. the personal data has been processed unlawfully; iv. the personal data must be deleted in order to comply with a legal obligation;
  4. right to object to processing: the right to object at any time to the processing of personal data whose legal basis is a legitimate interest of the Data Controller;
  5. right to limit the processing: the right to obtain from the Data Controller the limitation of processing, in cases where the accuracy of personal data is contested (for the period necessary for the Data Controller to verify the accuracy of such personal data), if the processing is illegal and/or the data subject has objected to the processing;
  6. right to data portability: the right to receive personal data in a structured, commonly used and machine-readable format and to transmit such data to another Data Controller, if technically feasible, only for cases where the processing is based on consent or contract and only for data processed by electronic means;
  7. right to lodge a complaint with a supervisory authority: without prejudice to any other administrative or judicial remedy, a data subject who considers that processing operations concerning them are in breach of the Regulations shall have the right to lodge a complaint with the supervisory authority of the Member State in which that person resides or habitually works, or of the State in which the alleged breach occurred.
The rights can be exercised by contacting the Data Controller at the following addresses: info@casalini.it.