This Privacy Policy is aimed at describing the methods of managing second- and third-level websites owned by TMalle Re S.r.l., in relation to the processing of personal data of users/visitors of those websites. TMalle Re S.r.l. processes all personal data concerning visitors/users of the services offered on the websites, in full compliance with the Italian privacy laws and, in particular, Legislative Decree no. 196/2003.

If access to specific services is subject to registration, through communication of personal data, you will receive a specific information notice when you register for the services.

Collection of data, which may be requested, is the necessary condition to access the services offered on the websites. TMalle Re S.r.l. keeps all technical data relating to the connections, in order to permit the security checks that are required by Law and to improve the quality of the services offered and personalise them based on the users/visitors’ needs.

TMalle Re S.r.l. may also use users/visitors’ data to periodically send email messages containing advertising, promotional material or initiatives or commercial communications.

The personal data, collected and kept by TMalle Re S.r.l., shall be processed by employees and/or collaborators of the data controller acting as persons in charge of the processing (“incaricati“). Personal data shall not be disseminated or disclosed to Third Parties, except for in the cases provided for by the privacy notice and/or by Law and, in any case, only as permitted by Law. TMalle Re S.r.l. shall register the log files in compliance with the applicable laws. These data allow identifying the user only following a series of processing and interconnection operations, and necessarily through data provided by other providers. These operations may only be carried out upon request of the competent Judicial Authorities authorised pursuant to express provisions of law aimed at preventing and/or combating crimes.

The sending of personal data by users/visitors to use specific services, or to submit queries via email, implies that TMalle Re S.r.l. will collect the sender’s address and/or other personal data. These data will be processed only to reply to your queries, or to provide the service, and will be disclosed to third parties only if this is necessary to satisfy the users/visitors’ requests.

Data will be processed through automated tools for as long as strictly necessary to achieve the purposes for which data have been collected and, in any case, in compliance with the applicable privacy laws.

L’invio da parte degli utenti/visitatori di propri dati personali per accedere a determinati servizi, ovvero per effettuare richieste in posta elettronica, comporta l’acquisizione dell’indirizzo del mittente e/o di altri eventuali dati personali, tali dati verranno trattati esclusivamente per rispondere alla richiesta, ovvero per la fornitura del servizio, e verranno comunicati a terzi solo nel caso in cui sia necessario per ottemperare alle richieste degli utenti/visitatori stessi.

Il trattamento viene effettuato attraverso strumenti automatizzati per il tempo strettamente necessario a conseguire gli scopi per i quali i dati sono stati raccolti e, comunque, in conformità alle disposizioni normative vigenti in materia.

We adopt ad hoc security measures to prevent loss of data, unlawful or incorrect use or unauthorised access. TMalle Re S.r.l. does not assume any liability for any unauthorised access or loss of personal data outside its control.

The data controller is TMalle Re S.r.l., with registered office at Piazzale Cadorna, 6 – 20123 – Milano – Italy, which may use personal data for all the purposes specified in the privacy notice provided when you register for a service.

Art. 7. Right to access personal data and other rights

1. A data subject shall have the right to obtain confirmation as to whether or not personal data concerning him/her exist, regardless of their being already recorded, and communication of such data in intelligible form.

2. A data subject shall have the right to be informed:

a) of the source of the personal data;

b) of the purposes and methods of the processing;

c) of the logic applied to the processing, if the latter is carried out with the help of electronic means; and

d) of the identification data concerning data controller, data processors and the representative designated as per Article 5(2);

e) of the entities or categories of entities to whom or which the personal data may be communicated and who or which may get to know said data in their capacity as designated representative(s) in the State’s territory, data processor(s) or person(s) in charge of the processing.

3. A data subject shall have the right to obtain:

a) updating, rectification or, where interested therein, integration of the data;

b) erasure, anonymization or blocking of data that have been processed unlawfully, including data retention of which is unnecessary for the purposes for which they have been collected or subsequently processed; and

c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected.

4. A data subject shall have the right to object, in whole or in part:

a) on legitimate grounds, to the processing of personal data concerning him/her, even though they are relevant to the purpose of the collection; and

b) to the processing of personal data concerning him/her, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys.