Privacy policy

Subjects of treatment

The data controller in accordance with the laws in force is the owner of the site:
Il Piccolo di Ciminna Giuseppe
C.F. CMNGPP76E30G273S
P.IVA 06681680820 (IT)
Cortile Dominici
90133 Palermo (PA)
Italy

Legal basis of the treatment

The data are processed mainly on the basis of the consent of the users. The consent is given through the banner at the bottom of the page, or through the communication forms or request services specially prepared, with which consents relating to the specific purpose of the service are collected. The provision of data and therefore consent to the collection and processing of data is optional, the User can deny consent, and can revoke at any time a consent already provided (see Cookie policy page).
However, denying consent may make it impossible to provide some services and the browsing experience on the site may be reduced.

The data for the security of the site and for the prevention of abuse and SPAM, as well as the data for the analysis of site traffic (statistics) in aggregate form, are processed on the basis of the legitimate interest of the Data Controller to protect the site and the users themselves. In such cases, you always have the right to object to data processing (see section Your rights).

Purpose of treatment

The processing of data collected by the site, in addition to the purposes connected, instrumental and necessary for the provision of the service, is aimed at the following purposes:

Statistics (analysis)
Collection of data and information in an exclusively aggregated and anonymous form in order to verify the correct functioning of the site. None of this information is related to the natural person-user of the site, and does not allow it to be identified in any way. You don’t need consent.
Security
Collection of data and information in order to protect the security of the site (spam filters, firewalls, virus detection) and Users and to prevent or unmask fraud or abuse at the expense of the website. The data are automatically recorded and may also include personal data (Ip address) that could be used, in accordance with the applicable laws, in order to block attempts of damage to the site or to bear Harm to other users, or otherwise malicious activities or constituting offence. These data are never used for the identification or profiling of the user and are periodically erased. You don’t need consent.

Data collected

User data is collected as follows:

Data collected in an automated manner

During the navigation of the Users, the following information may be collected and stored in the log files of the server (hosting) of the site:

internet protocol (IP) address;
browser type;
parameters of the device used to connect to the site;
name of the internet service provider (ISP);
date and time of visit;
web page of origin of the visitor (referral) and exit;
possibly the number of clicks.

These data are used for statistical and analytical purposes, in an aggregate form. The IP address is used exclusively for security purposes and is not cross-referenced with any other data.

Location of treatment

The data are processed at the headquarters of the Data Controller, and at the web hosting datacenter. The web hosting (Tantrahost), is responsible for the processing of data on behalf of the owner, is located in the European Economic Area and acts in accordance with European standards (Tantrahost privacy policy).

Data retention period

The data collected during the operation of the site are kept for the time strictly necessary to carry out the activities specified. At maturity the data will be deleted or anonymatized, unless there is further purpose for preserving them.
The data (IP address) used for site security purposes (blocking attempts to damage the site) are kept for 30 days.
Data for analytics purposes (statistics) are stored only in aggregate form.

Transfer of data to third parties

The data collected by the site are generally not provided to third parties, except in specific cases:

legitimate request by the judicial authority and only in the cases provided for by law;
if it is necessary for the provision of a specific service requested by the User;
for performing security checks or site optimization.

Transfer of data to countries outside the European Union

Some of the data collected may be shared with services located outside the European Union. Especially with Google, Facebook and Microsoft (LinkedIn) via social plugins and the Google Analytics service. The transfer is authorized on the basis of specific decisions of the European Commission, or on the basis of the Standard Contractual Clauses of the individual services (see paragraphs relating to third-party services in the Cookie policy).

Security measures

The data of visitors / users are processed in a lawful and correct manner, adopting the appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. We are committed to protecting the security of your personal data during its transmission, using Secure Sockets Layer (SSL) software, which encrypts information in transit. The treatment is carried out by means of computer tools and/or telematics, with organizational modalities and with logic strictly related to the indicated purposes. In addition to the Data Controller, in some cases, categories of employees involved in the organization of the site or external subjects (such as third-party technical service providers, hosting providers) may have access to the data.

Rights of the user (data subject)

Pursuant to European Regulation 679/2016 (GDPR) the User may, according to the methods and within the limits established by current legislation, exercise the following rights:

oppose in whole or in part, for legitimate reasons, to the processing of personal data concerning him for the purpose of sending advertising material or direct selling or for carrying out market research or commercial communication;
request confirmation of the existence of personal data concerning him (right of access);
know its origin;
receive intelligible communication;
have information about the logic, methods and purposes of the processing;
request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
in cases of processing based on consent, receive at the sole cost of any support, your data provided to the owner, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
the right to lodge a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor’s page);
as well as, more generally, exercise all the rights that are recognized by the current provisions of law.

Requests should be addressed to the data controller.

Cookie	Duration	Description
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category.
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Others".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
elementor	never	This cookie is used by the software that manages this website. It allows the website owner to implement or modify the website content in real time.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Cookie	Duration	Description
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_ga_0PHPJZXP5D	2 years	This cookie is installed by Google Analytics.

Cookie	Duration	Description
df	3 months 8 days	No description available.
HstCfa4711595	1 year	No description available.
HstCla4711595	1 year	No description available.
HstCmu4711595	1 year	No description available.
HstCns4711595	1 year	No description available.
HstCnv4711595	1 year	No description available.
HstPn4711595	1 year	No description available.
HstPt4711595	1 year	No description available.
m	1 hour 23 minutes	No description available.
oa	4 hours	No description available.