Privacy notice

Privacy Policy
Click here to read the cookie policy immediately
This policy has been drawn up specifically for visitors to the website and users of the app.
This document cancels and replaces the previously published cookie policy.
Specific summary information will be provided or displayed on the website pages dedicated to providing specific services on demand and complete with data collection forms.
Please note that to provide a complete service our website/app may contain links to other websites/apps not managed by Edi.Cer. S.p.A.
Edi.Cer. S.p.A. is not responsible for errors, content, cookies, publication of unlawful content, advertising, banners or files that do not comply with applicable regulations and the Personal Data Protection Code on the part of website/apps not managed by the Data Controller.

Data subjects: users of website, users of registered area and app
As the Data Controller for your personal data pursuant to articles 13 and 14 of European Regulation 2016/679, Edi.Cer. S.p.a. hereby informs you that the aforementioned Regulation protects the rights of data subjects with regard to the processing of their personal data and that said data will be processed in accordance with principles of fairness, lawfulness and transparency and in such a way as to respect your confidentiality and rights.
The information and personal data submitted by you or otherwise acquired during use of the website/app will be processed in accordance with the provisions of the aforementioned regulation and the privacy obligations contained therein.

Type of data processed by the website/app
a) Identified data as defined by art. 4. 2 of the European Regulation.
The website/app collects personal data supplied voluntarily by the user/data subject. The optional, explicit and voluntary sending of e-mail to the addresses indicated on this website/app and the filling out of the forms on the website will result in the acquisition of the sender’s personal data (for example, first name, last name and e-mail address). Specific information is provided below.
b) Navigation data
During normal operation, the computer systems and software procedures used for the functioning of this website/app acquire certain personal data through the use of Internet communication protocols.
Although such information is not acquired for the purpose of being associated with identified data subjects, by its nature it may enable users to be identified as a result of processing and association with data in the possession of third parties. This category includes IP addresses or domain names used by users who connect to the website/app, addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used for submitting the request to the server, the size of the file obtained, etc.
These data are used for the sole purpose of obtaining anonymous and aggregated statistical information on the use of the website/app and to check that it is used correctly, and reside permanently on third-party servers (the hosting provider). The data may be used for verifying responsibility in the event of computer crimes that cause damage to the website/app.
c) Cookies
The website/app uses cookies to customise the user experience, speed up navigation, improve safety, analyse the use and efficiency of the services, and provide commercial information. When entering for the first time, users have the choice of whether or not to install the available cookies or alternatively to view the Cookie Policy setting out all the ways in which consent can be granted or withheld.

Purposes of data processing:
1. Registration: Your identification data collected in the registration area (e.g. first name and last name, e-mail address, interests, telephone number, tax code, links to social media profile) will be used for your registration with the website, allowing you to access the services provided within your personal area, such as choosing the topics you want to be updated on, downloading the app onto your mobile device to receive alerts on selected topics, receiving bimonthly newsletters with content of interest and accessing the LOGIN area of the website to modify your personal profile. Providing your data for registration purposes (on the legal basis of art. 6.1.a) is optional but you will be unable to register without doing so. Your personal data will be processed using manual, electronic and/or computerised and automated procedures in accordance with the methods indicated in articles 6 and 32 of the GDPR and adopting appropriate security measures. This may include introducing your data into the Data Controller’s corporate CRM. If you have granted consent, third party cookies will also be active while you browse the website (for further information refer to the Cookie Policy available on the website). Third party cookies capable of identifying the visitor’s IP address (Google Analytics) will also be active if you access the reserved area. Moreover, to compare and potentially improve the results of the communications, the Data Controller will use systems for sending out newsletters and promotional communications with reports. The reports allow the Data Controller to ascertain for example: number of readers, number of times opened, number of unique “clickers” and number of clicks; the devices (iPhone, Blackberry, Nokia, etc.) and operating systems (Windows, Apple, Linux, Android, etc.) used to read the communication; details of individual users’ activities; the number of outstanding users who have not yet confirmed their subscriptions; details of emails sent by date/hour/minute; details of delivered and undelivered emails out of those sent; list of people who have unsubscribed from the newsletter; users who have opened an email or clicked on a single link; users with problems viewing the message; link tracking (i.e. the number of clicks on the message links); click tracking (which links have been clicked on and by whom). All these data are used for the purposes of comparing and if possible improving the results of communications.
2. Browsing the website/app: the data collected during navigation will be used for the following purposes:
2.a) performance of closely related operations instrumental to the management of relations with users or visitors to the website/app, on the legal basis of the execution of pre-contractual measures adopted at their request (art. 6.1.b) of the Regulation) as processing is necessary for provision of the Service;
2.b) collection, storage and processing of your data, on the legal basis of consent (art. 6.1.a), for:
• statistical analyses allowing visitor to be identified;
• statistical analyses for verifying the quality of the services provided by the website/app;
• improving the browsing experience by providing services and sending advertising messages in line with the preferences expressed during navigation;
• sharing of website/app content or the use of third party software.
The processing of data for the purposes indicated in point 2.a) is obligatory. Failure to communicate, or incorrect communication, of any of the information may limit and/or prevent full use of the functionality and services present on the website/app.
Provision of the data indicated in purpose 2.b) is optional and refusal to grant permission for your data to be processed will not affect the functionality or services present on the website/app. You can grant your consent by clicking on “Accept” in the Cookie Warning (banner).
With regard to optional provision of data, further information on the cookies used by the website is provided in the cookie policy available in the website footer and also accessible by clicking on the cookie warning.

Processing methods:
Your personal data are processed using electronic means, automated calling systems, cookies and reports for the time strictly required to fulfil the purposes for which said data were collected. All processing is performed in accordance with the methods indicated in arts. 6 and 32 of the GDPR and adopting the adequate security measures indicated.
Web service related processing is performed on the external provider’s premises in Italy and is stored at the sites where the physical servers of the third parties who provide third party services are located.

Communication: Your data are processed only by duly appointed personnel and may be communicated to third parties acting as Data Controllers or Data Processors. The list of said third parties is available on request of the data subject by writing to: [email protected]

Public disclosure: Your data will not be disclosed publicly.

Third parties: Your data may also be collected using tools and services provided by third parties and stored on their premises. For further information refer to the Cookie Policy.

Period of retention: Please note that in accordance with the principles of lawfulness, purpose limitation and data minimisation, pursuant to art. 5 of the GDPR, your personal data will be retained no longer than the period of time necessary to perform the services provided or until such time as you object to processing.

Controller: In accordance with law, the Data Controller is the undersigned company (Edi.Cer. S.p.a., Via Monte Santo 40 – 41049 Sassuolo) in the person of its pro tempore legal representative.

You have the right to obtain from the Data Controller the erasure (“right to be forgotten”), restriction, information, rectification, portability and objection to processing of your personal data, and in general you may exercise all the rights established by arts. 15, 16, 17, 18, 19, 20, 21 and 22 of the GDPR by writing to [email protected]

Application of this Privacy notice
If you have any queries about this Privacy Notice, please contact Edi.Cer. S.p.A. by sending an e-mail to in[email protected]

Changes to this Privacy notice
EDI.CER S.p.A. reserves the right to update this privacy policy according to changes in law and taking due account of suggestions made by employees, customers, associates and users.
If any substantial changes are made to the privacy policy, Edi.Cer. S.p.A. will publish these changes in a clearly visible way.

Extract from EU Regulation 2016/679: Arts. 15, 16, 17, 18, 19, 20, 21, 22 – Rights of the Data Subject
1. The data subject is entitled to receive confirmation of the existence of personal data regarding him or her, even if such data have not yet been recorded, and to be sent these data in an intelligible form, as well as to lodge a complaint with the supervisory authority.
2. The data subject has the right to obtain the following information:
the origin of personal data;
the purpose and methods of processing;
the rationale followed in the case of processing carried out with the aid of electronic equipment;
the identification details of the data controller, data processors and designated representative pursuant to article 5, subsection 2;
the parties or categories of parties to whom the personal data may be disclosed in their capacity as designated representatives in the state territory, as data processors or as appointees.
3. The data subject is also entitled to request:
that the data be updated, corrected or, if in his/her interest, supplemented;
that unlawfully processed data be erased, transformed into an anonymous form or blocked; this includes data that do not need to be stored for the purposes for which the data were collected or subsequently processed;
a declaration that the parties to whom said personal data have been communicated or disclosed have been informed about the operations indicated in subsections a) and e) and their contents, unless this operation should prove impossible or requires the use of resources that are manifestly disproportionate to the rights that are being protected.
data portability.
4. The data subject has the right to totally or partially oppose:
the processing of his/her personal data for valid reasons, even if such data are relevant to the purpose of collection;
the processing of his/her personal data for the purposes of sending out advertising or direct sales material or for the conducting of market surveys or commercial communications.

Anti-spam policy
1. Introduction
1.1 In the context of electronic messaging, “spam” means unsolicited bulk messages.
1.2 We have a zero-tolerance spam policy.
2. Spam filtering
2.1 Our messaging systems automatically scan all incoming and outcoming email messages and filter out messages that appear to be spam.
2.2 We may also report incoming email as spam. This can result in IP addresses and domain names being blacklisted.
3. Spam filtering issues
3.1 No message filtering system is 100% accurate, and from time to time legitimate messages will be filtered out by our systems.
3.2 If you believe that a legitimate message you have sent has been filtered out by our systems, please advise the message recipient by another means.
3.3 You can reduce the risk of a message being caught by the spam filters by:
(a) sending the message in plain text (instead of, or in addition to, HTML);
(b) removing any message attachments;
(c) avoiding the terminology and text styling typically used by spammers; and/or
(d) ensuring that your messages are scanned for malware before dispatch.
4. User spam
4.1 Users must not use our messaging facility or any of our other services to store, copy, send, relay or distribute spam.
5. Receipt of unwanted messages from us
5.1 In the unlikely event that you receive any message from us or sent using our systems that may be considered to be spam, please contact us using the details below and the matter will be investigated.