Privacy Policy

Privacy Policy of www.esngroup.eu

 

This application collects some personal data of its users.

 

Print this document using the print command in your browser settings.

 

 

Data Controller

 

ESN Engineering Service Network Srl

Operational Headquarters: Via Blancanuca, 4 - 24047 Treviglio (BG) - Italy

T: +39 0363 44317

Email: info@esngroup.eu

Registered office: Via Vincenzo Monti, 15 - 20123 Milan - Italy

Data Controller contact email: info@esngroup.eu

Types of data collected

Among the personal data collected by this application, either independently or through third parties, are: Cookies; Usage Data.

Complete details on each type of data collected are provided in the dedicated sections of this Privacy Policy or by notifications displayed before the data is collected.

Personal Data may be freely provided by the User or, in the case of Usage Data, automatically collected during the use of this Application.

Unless otherwise specified, all Data requested by this Application are mandatory. If the User refuses to communicate the Data, it may be impossible for this Application to provide the Service. In the cases in which this Application indicates certain Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the Service or its operation.

 

Users who may have doubts on which Data are mandatory are encouraged to contact the Data Controller.

The possible use of Cookies - or other tracking tools - by this Application or by the owners of third-party services used by this Application, unless otherwise specified, is to provide the Service requested by the User, in addition to any additional purposes described in this document and in the Cookie Policy, where available.

The User accepts responsibility for the Personal Data of third parties which may be obtained, published or shared through this Application and warrants that he or she has the right to disclose or disseminate such data, releasing the Data Controller from any liability towards third parties.

Method and place of the Data processing

Data processing methods

The Data Controller adopts appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data.

The processing is carried out by means of computer and/or telematic tools, with organisational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other subjects involved in the organisation of this Application (administrative, commercial, marketing, legal, system administrators) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, as Data Processors by the Data Controller, may have access to the Data. The updated list of Data Processors can always be requested from the Data Controller.

Legal basis for the data processing

The Data Controller processes Personal Data relating to the User if one of the following conditions exists:

• the User has given consent for one or more specific purposes; Note: in some jurisdictions, the Data Controller may be allowed to process Personal Data without the User's consent or another of the legal bases specified below, until the User objects ("opts out") of such processing. However, this does not apply where the processing of Personal Data is governed by European legislation on the protection of Personal Data;
• Processing is required to take necessary pre-contractual steps and/or execute a contract with the User;
• The processing is necessary for the performance of a legal obligation to which the Data Controller is subject;
• The processing is necessary for the execution of a task of public interest or for the exercise of any public authority vested in the Data Controller;
• The processing is necessary for the pursuit of the legitimate interest of the Data Controller or of third parties.

However, the Data Subject may ask the Data Controller to clarify the legal basis of the processing, and, in particular, whether the processing is based on legal provisions, is provided for by a contract, or is necessary to conclude a contract.

Place of processing

Data are processed at the Data Controller's operational facilities and at any other location where the parties involved in the processing are based. For further information, please contact the Data Controller.

The User’s Personal Data may be transferred to a country other than the one where the User is located. To obtain further information on the place of processing, the User may refer to the section concerning the details on the processing of the Personal Data.

The User is entitled to obtain information on the legal basis for the transfer of the Data outside the European Union, or to an international organisation under public international law, or formed by two or more countries, such as the United Nations, as well as on the security measures adopted by the Data Controller to protect the Data.

 

The User may check whether one of the transfers described above takes place by consulting the section of this document relating to details on the processing of Personal Data, or by requesting further information from the Data Controller via the contact details provided above.

Data retention period

The Data are processed and stored for the time required by the purposes for which they were collected.

Therefore:

• Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until the performance of that contract is completed.
• The Personal Data collected for purposes relating to the legitimate interest of the Data Controller will be retained until this interest is satisfied. The User may obtain further information on the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.

When the processing is based on the User’s consent, the Data Controller may keep the Personal Data for longer until such consent is revoked. Furthermore, the Data Controller may be obliged to keep the Personal Data for a longer period in compliance with a legal obligation or by the order of an authority.

At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this period, the right of access, cancellation, rectification and data portability may no longer be exercised.

 

Purposes of the Processing of the Collected Data

The User’s Data are collected to allow the Data Controller to provide the Service, comply with legal obligations, respond to requests or enforcement actions, protect the Data Controller’s own rights and interests (or those of Users or third parties), and identify any malicious or fraudulent activities, as well as for the following purposes: statistics, and the display of content from external platforms.

To obtain more detailed information on the purposes of the processing and on the Personal Data processed for each purpose, the User can refer to the relevant “Details on the processing of Personal Data” section.

 

Details on the processing of the Personal Data

The Personal Data is collected for the following purposes and using the following services: 

• Statistics
• Viewing content from external platforms

Statistics

The services referred to in this section allow the Data Controller to monitor and analyse traffic data and keep track of User behaviour.

Google Analytics (Google Ireland Limited)

Google Analytics is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the collected Personal Data for the purpose of tracking and analysing the use of this Application, and for compiling reports and sharing them with other services developed by Google.

Google may use the Personal Data to contextualise and personalise the advertisements of its advertising network.

Personal Data processed: Cookies; Usage Data.

Place of processing: Ireland - Privacy Policy - Opt Out.

Google Analytics with IP anonymization (Google Ireland Limited)

Google Analytics is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the collected Personal Data for the purpose of tracking and analysing the use of this Application, and for compiling reports and sharing them with other services developed by Google.

Google may use the Personal Data to contextualise and personalise the advertisements of its advertising network.

This Google Analytics integration makes your IP address anonymous. The anonymisation consists in abbreviating the IP addresses of Users within the European Union or Countries part of the European Economic Area agreement. Only in exceptional cases the IP address will be sent to Google's servers and abbreviated in the United States.

Personal Data processed: Cookies; Usage Data.

Place of processing: Ireland - Privacy Policy - Opt Out.

Viewing content from external platforms

This type of service allows you to view content hosted on external platforms directly from the pages of this Application and to interact with them.

This type of service may collect data on web traffic relating to pages where the service is installed, even when the User is not directly using it.

Google Fonts (Google Ireland Limited)

Google Fonts is a font display service managed by Google Ireland Limited that allows this application to integrate such content within its pages.

Personal Data processed: Usage Data; various types of data as specified in the Privacy Policy of the service.

Place of processing: Ireland - Privacy Policy.

YouTube Video Widget (Google Ireland Limited)

YouTube is a video content sharing service managed by Google Ireland Limited that allows this Application to integrate such content within its pages.

Personal Data processed: Cookies; Usage Data.

Place of processing: Ireland - Privacy Policy.

 

Rights of the User

The User may exercise certain rights with reference to the Data processed by the Data Controller.

In particular, the User has the right to:

• Withdraw consent at any time. The User can revoke their previously expressed consent to the processing of their Personal Data.
• Object to the processing of the Personal Data. The User may object to the processing of the Personal Data when it is performed on a lawful basis other than consent. More details on the right to object are given in the section below.
• Access their Personal Data. The User has the right to obtain information on the Data processed by the Data Controller, on certain aspects of the processing, and to receive a copy of the processed Data.
• Verify and request rectification. The User can verify the correctness of their Data and request its updating or correction.
• Obtain limitation to the processing of the Data. In certain circumstances, the User may ask for restrictions to be set on the processing of the Personal Data. In such cases, the Data Controller will not process the Data for any other purpose than their conservation.
• Obtain the deletion or removal of their Personal Data. When certain conditions are met, the User may request the deletion of their Data by the Data Controller.
• Receive their Data or have the Data transferred to another Data Controller. The User has the right to receive their Data in a structured, commonly used and machine-readable format, and, where technically feasible, to obtain its unhindered transfer to another Data Controller. This provision is applicable when the Data is processed with automated tools and the processing is based on the User’s consent, on a contract to which the User is a party, or on contractual measures connected to it.
• Lodge a complaint. The User can lodge a complaint with the relevant personal data protection authority or take legal action.

Details on the right of objection

When the Personal Data are processed in the public interest, in the exercise of public authority vested in the Data Controller or to pursue a legitimate interest of the Data Controller, the User has the right to object to the processing for certain reasons relating to their particular situation.

The User is reminded that when Personal Data is processed for direct marketing purposes, the User may object to the processing without giving any reason. To find out whether the Data Controller processes Personal Data for direct marketing purposes, the User may refer to the relevant sections of this document.

How to exercise the rights of the User

To exercise the User’s rights, the User may direct a request to the contact details of the Data Controller indicated in this document. Requests can be filed free of charge and are processed by the Data Controller as soon as possible, and, in any case, within one month.

 

Further information on data processing

Legal defence

The User's Personal Data may be used by the Data Controller in legal proceedings or in the preparatory stages for its possible establishment to defend against misuse of this Application or related Services by the User.

The User declares that he/she is aware that the Data Controller may be obliged to disclose the Data by order of public authorities.

Specific policies

At the User's request, in addition to the information contained in this Privacy Policy, this Application may provide a User with additional and contextual information regarding specific Services, or the collection and processing of Personal Data.

System logs and maintenance

This Application and any third-party services used by it may collect system logs; these are files that record interactions and may also contain Personal Data, such as the User IP address, for operational and maintenance purposes.

Information not contained in this Policy

Further information in relation to the processing of Personal Data may be requested at any time from the Data Controller using the aforementioned contact details.

Response to “Do Not Track” requests

This Application does not support “Do Not Track” requests.

To find out if any of the third-party services used supports them, the User is invited to consult the respective privacy policies of such third-party services.

Changes to this Privacy Policy

The Data Controller reserves the right to make changes to this Privacy Policy at any time by informing Users on this page and, if possible, on this Application and, where technically and legally feasible, by sending a notification to Users through one of the contact details held by the Data Controller. Therefore, please consult this page frequently, referring to the last modification date indicated at the bottom.

Where changes involve processing on the legal grounds of consent, the Data Controller will seek to obtain the User’s consent again, if necessary.

Definitions and Legal References

 

Personal Data (or Data)

Personal Data is any data that, directly or indirectly, also in connection with any other information, including a personal identification number, identifies or makes identifiable a natural person.

Usage Data

Usage Data is data collected automatically through this Application (including from third-party applications integrated into this Application), including: the IP addresses or domain names of the computing devices used by the User to connect with this Application, the addresses in URI notation (Uniform Resource Identifier), the time of server requests, the method used to forward such requests to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), the country of origin of the request, the characteristics of the browser and operating system used by the visitor, the various temporal connotations of the visit (e.g. the time spent on each page), and the details of the navigation through the Application, with particular reference to the sequence of pages consulted, the parameters relating to the operating system and the IT environment of the User.

User

The individual using this Application, who, unless otherwise specified, coincides with the Data Subject.

Data Subject

The natural person to whom the Personal Data refers.

Data Controller (or Owner)

The natural person, legal person, public administration or any other entity that processes Personal Data on behalf of the Data Controller, as set out in this Privacy Policy.

Data Controller (or Owner)

The natural or legal person, public authority, service or other entity which, individually or together with others, determines the purposes and means of the processing of the Personal Data and the tools adopted, including security measures relating to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

Application

The hardware or software tool through which the Personal Data of the User are collected and processed.

The Service

The Service provided by this Application as defined in the relevant terms (if any) on this website/application.

 

European Union or EU

Unless otherwise specified, any reference to the European Union contained in this document is intended to be extended to all current member states of the European Union and the European Economic Area.

Cookies

Cookies are Tracking Tools with a small amount of data that are stored in the User’s browser.

Tracking Tool

Tracking Tools are any technology, such as cookies, unique identifiers, web beacons, integrated scripts, e-tags and fingerprinting, which allow users to be tracked, for example, by collecting or saving information on the User’s device.

Legal References

This Privacy Policy has been drawn up on the basis of multiple legislative systems, including Articles 13 and 14 of EU Regulation 2016/679.

 

 

 

Unless otherwise specified, this privacy policy applies exclusively to this Application.

Last modification: 28 May 2019

iubenda hosts this content and collects only the Personal Data strictly necessary for the provision of the service.