Milestone Rome on a need to know basis may only use any information collected from individual Milestone Rome’s website users.
Data will be collected and handled according to the Recommendation number 2/2001, adopted on May 17, 2001 by the European Authorities for the protection of personal data, in order to identify common minimum requirements for on-line collection of personal data within the European Union. Also, this Recommendation supplies added information on the subject by Italian law, according to Article 13 of the Legislative Decree number 196 dated June 30, 2003 – Codex, in the matter of personal data protection.
At any time, the users may exercise their rights towards Milestone Rome which is in charge of handling personal data, pursuant to the Article 7 of the Legislative Decree 196/2003.
We constantly review our systems and data to ensure the best possible service to our users. We will investigate any unauthorised action against computer systems and data affecting Milestone Rome’s website with a view to prosecuting and/or taking civil proceedings to recover damages against those responsibles.
Ownership and responsibilities regarding handling of personal data
Milestone Rome, e-mail address firstname.lastname@example.org, website www. milestonerome.com, has ownership of personal data handling.
Data handling location
Data will be handled on www.milestonerome.com, which is the website of the data handling owners. According to provisions of Article 43 and following of the Legislative Decree 196/2003, explicit consent by the interested party must be secured prior to possible data handling outside the European Union.
Objectives of data handling and its modalities
Personal data and navigation data, automatically gathered by the site or voluntarily supplied by the users, are collected for the objectives and with the modalities indicated below.
Data will be handled through instruments and with modalities that ensure data privacy and security, in accordance with provisions of the Legislative Decree 196/2003 and current regulations.
Milestone Rome will use both compulsory and voluntary data supplied by users exclusively for the purposes indicated below:
- Allowing delivery of services purchased from the site, and, in general, meeting administrative, accounting or technical requirements;
- Answering specific requests for information by the users;
- Supplying the users with regular updates on new products or services offered by the site, or on specific commercial offers;
- Informing the users regarding site maintenance or possible disservice;
- Allowing commercial profiling of the users;
- Allowing the owners of the site to defend themselves in Court, or prior to a Court action, from users’ abuse of the site itself or its services.
Whenever necessary, as per the Legislative Decree 196/2003, Milestone Rome will request the users for their approval before proceeding with data handling.
Types of handled data
Data automatically supplied by the users
During operations, information systems and procedures connected with the website, Milestone Rome collects some personal data about the users. It is navigation data connected with the technical use of the site, which allow the registered users to access the services that are offered. This information is given compulsorily.
This type of information allows the identification the users. In this category of data we find IP address and other information connected with the identity of the users or their technical modalities of accessing the site.
This data are used solely for the objectives indicated above, and only for the length of time that is necessary to execute the services requested by the users. The users will have the prerogative to request removal of such data at any time for legitimate reasons.
This kind of data could be used to verify responsibility in case of possible cybercrimes against the site.
We use IP addresses to analyse trends, administer the site, track users’ movement, and gather broad demographic information for aggregate use. IP addresses are not linked to personally identifiable information. Additionally, for systems administration, detecting usage patterns and troubleshooting purposes, our web servers automatically log standard access information including browser type, access times/open mail, URL requested, and referral URL.
This information is not shared with third parties and is used only within Milestone Rome on a need-to-know basis. Any individually identifiable information related to this data will never be used in any way different to that stated above without the explicit permission by the users.
Data voluntarily supplied by the users
In this category of data we find name, surname, username, e-mail address and other information voluntarily supplied by the users who register for this site.
Also supplying sensitive personal data, such as data that might identify the users’ ethnic or racial background, religious or philosophical beliefs, political opinions, health conditions or sexual orientation, remains an optional and voluntary action, and requires explicit consent by the users.
In case an user should decide to utilize the site, in any way, for publishing or sharing a third party’s data, he/she will assume total and complete responsibility for such action. The owners will be held harmless for the instrumental handling of data consequent to said communication or dissemination.
Milestone Rome declares its commitment to keep and control all data automatically gathered by the site or voluntarily supplied by the users in such a manner and with such measures as to reduce to the minimum all risks relating to destruction, loss, unauthorized access, not permitted or inappropriate handling of said data for objectives that are inconsistent with the original purpose of their collection.
Data handling outside the European Union
As per Articles 43 and 44 from the Legislative Decree 196/2003 and Articles 25 and 26 from the Directive 95/46/CE by the European Parliament and Council, dated October 24, 1995, personal data handling may take place in a Country that is not a European Union member only if said non-member Country can guarantee an adequate level of protection and safety.
For this reason, Milestone Rome guarantees services from suppliers that conform to protection protocols for data safety, such as “Safe Harbor”, that is, a bilateral agreement between EU and USA that defines safe and shared rules for personal data transfer to companies located in the US.
Rights of the parties involved
In order to exercise the rights established by Article 7 of the Legislative Decree 196/2003 (confirmed existence of supplied data, knowledge of their content and source, request for blocking data in violation of law, opposition to data handling for legitimate reasons), the users may contact directly the data handling owners at the address stated above.
Website users have the right to request sight of, and copies of any and all website user records we keep, on the proviso that we are given reasonable notice of such a request. Website users are requested to retain copies of any literature issued in relation to the provision of our services. Where appropriate, we shall issue website users’ with appropriate written information, handouts or copies of records as part of an agreed contract, for the benefit of both parties.
We will not sell, share, or rent the personal information of our users to any third party or use the e-mail address of our users for unsolicited mail. Any email sent by Milestone Rome will only be in connection with the provision of agreed services and products.
We are committed to protecting the privacy of all our users. Any information concerning the website users and their respective website users Records are regarded as confidential and therefore will not be passed to third parties. However, website users records may be divulged if legally required to do so to the appropriate authorities.