Privacy and legal notes
Privacy and legal notes
In this document (hereinafter named also “Policy”) are described the method for managing the web site of CA Indosuez Wealth (Italy) S.p.A. concerning the processing of personal data of users who use it. This is information is also given pursuant to art. 13 General Data Protection Regulation – EU Regulation 2016/679 2016/679.
The Information is provided only for the official website of www.ca-indosuez.com (the “Site”) and not to other Web sites eventually linked.
General Data Protection Regulation (EU) 2016/679 (hereinafter “GDPR”).
While this website is visited, the data concerning identified or identifiable persons can be processed. The Data Controller is CA Indosuez Wealth (Italy) S.p.A. – Piazza Cavour, 2 20121 Milan (Italy).
PURPOSE OF THE TREATMENT
Following consultation of this site, data relating to identified or identifiable persons may be processed.
KIND OF DATA PROCESSED
The information systems and the software procedures of this web site, within their normal running, acquire some personal data whose providing is implicit in the use of Internet communications protocols. This information is not gathered to be connected with identified interested parties, but for its nature could allow to identify the users. To this category of data belong the IP addresses or the domain names of the personal computers used by the users who connect to the site, the URI (Uniform Resource Identifier) notation addresses of the required resources, the time of the request, the method used to send the request to the server, the dimension of the file obtained as an answer, the number code identifying the status of the answer given by the server (successful, error, etc.) and other parameters concerning the operating system and the user’s IT environment. These data are used only to obtain anonymous statistical information concerning the use of the web site and to check that it works correctly and are cancelled immediately after their processing. Moreover, the data could be used to verify responsibilities in case of possible cybercrimes damaging the web site
Data provided freely by the user
The discretionary, explicit and voluntary providing of personal data by the user to the contacts present on this web site entails the subsequent acquisition of the data provided by the sender. Such data will be processed by the Data Controller mainly with electronic means, in order to follow up the user’s request.
Cookies are small text files that are deposited on the user’s personal computer by the web sites he/she visits. Their main task is allowing the web site to work and operate in a more efficient way, as well as providing information to the web site owners.
The web site makes use of technical cookies, to the extent strictly necessary to use and visit the web site.
DISCRETIONARY NATURE OF THE DATA PROVIDING
Apart from what has been specified concerning the surfing data, users are free to provide their personal data or not. However, the non-providing can entail the impossibility of obtaining what they asked.
We remind you that the total or partial disabling of the so called technical cookies can compromise the use of the web site functions. Anyway, users can decide whether to accept the cookies or not, by modifying the safety settings of their browser.
- Chrome: https://support.google.com/chrome/answer/95647?hl=it
- Firefox: https://support.mozilla.org/it/kb/Gestione%20dei%20cookie
- Internet Explorer: http://windows.microsoft.com/it-it/internet-explorer/delete-manage-cookies
- Opera: http://help.opera.com/Windows/10.00/it/cookies.html
- Safari: http://support.apple.com/kb/HT1677?viewlocale=it_IT
The gathered data can be transferred or communicated to other companies for activities strictly connected and instrumental to the efficiency of the service, such as the management of the information system. The personal data provided by the users who ask for literature (brochure, leaflets, etc..) are used solely to carry out the service or performance required and are communicated to third parties only if it’s needed for such purpose (companies that take care of packaging, labelling, shipment). Apart from these cases, personal data won’t be either communicated or granted to anybody, unless it’s provided by the agreement or authorized by the subjects. In this case, personal data could be sent to third parties, but only in case:
a) there’s an explicit consent to share the data with third parties;
b) the information must be shared with third parties in order to carry out the service required;
c) it’s needed to meet requests by the Judicial Authority or Public Security. No data deriving from the web service will be disseminated.
DATA PROCESSING PLACE
The processing connected to the web services of this site takes place in the seat of the Data Controller and is carried out only by the technical staff in charge of the processing, or by other operators in case of occasional maintenance actions.
LINK TO OTHER WEB SITES
This site could contain links or references to access other web sites. The Company doesn’t control either the cookies or the monitoring technologies of other web sites to which this Policy doesn’t apply.
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. Personal data collected for statistical analysis purposes are anonymised.
RIGHTS OF THE DATA SUBJECT
Pursuant to articles 15 to 22 of GDPR the subjects to whom the personal data refer have the right at any time to exercise the following rights on the personal data provided:
- to cancellation;
- treatment limitation;
- to portability;
The right to exercise the rights may be received by the Bank through an electronic communication, preferably sent by email to the email address dedicated to the exercise of the rights: firstname.lastname@example.org, or paper at the following address
Spettabile CA Indosuez Wealth (Italy) S.p.A.
c.a. Delegato del Titolare e DPO
Piazza Cavour, 2
In order to facilitate the request, the following modules are available:
CA Indosuez Wealth (Italy) S.p.A. verifies the privacy and safety policy at regular intervals and revises it if needed according to regulatory or organizational changes or to the ones derived from the technological evolution. If the policy should be changed, the new version will be published in this page of the web site.
QUESTIONS, CLAIMS AND SUGGESTIONS
DATA PROTECTION OFFICER
CA Indosuez Wealth (Italy) S.p.A. has established the figure of the Data Protection Officer who has the responsibility for observing, evaluating and organizing the processing of personal data processing within the Bank, so that they are processed in compliance with the legislation. The function has been outsourced to Avvera s.r.l., a company specialized in consulting in the field of data protection, security and management of confidential information. The Data Protection Officer can be reached at the following email address: email@example.com