Information on the protection of personal data
Monzacamper S.r.l. (hereinafter "la Monzacamper") undertakes to protect personal data and to respect the privacy of users. Monzacamper collects personal data and submits them to further processing in accordance with Regulation (EU) 2018/1725 of the European Parliament and of the Council, of 23 October 2018, on the protection of individuals in relation to the processing of personal data by the institutions, of the organs and bodies of the Union and on the free circulation of such data, and repealing Regulation (EC) no. 45/2001).
The purpose of this information is to explain the reasons why your personal data are processed, the way in which all personal data are collected, managed and protected, what use is made of the information obtained and what your rights are in this regard. Further on, you will find the contact details of the data controller, which you can contact to exercise your rights, the data protection officer and the European data protection supervisor.
The information relating to the processing of the service responsible for managing the identity and access of Monzacamper, is shown below.
2. WHY AND HOW PERSONAL DATA ARE PROCESSED
Purpose of processing: The service responsible for managing the identity and access of Monzacamper provides users with a common registration method that allows them to register and make purchases or rentals from Monzacamper. Monzacamper collects and uses personal data to manage reservations and purchases and the related rights in the context of IT systems. The main purpose is to ensure the consistent application of an adequate level of security to the IT services of Monzacamper, capable of identifying and authenticating the user of the service and / or defining their roles and authorizations in the context of the service.
The additional purposes of the processing for users who have an employment relationship with Monzacamper are the following:
services that allow users to find their contact details (e-mail address, contact address book or telephone directory)
selection of users from lists, usually based on some selection criteria
creation of user lists, mainly e-mail distribution lists
customization of the user interface according to the user's needs
The processing is automated and takes place through computers / automatic systems.
Your personal data will not be used for an automated decision-making process, including profiling.
3. WHAT ARE THE LEGAL BASES GOVERNING THE PROCESSING OF PERSONAL DATA
WE PROCESS YOUR PERSONAL DATA WHY
a) The processing is necessary for the execution of rental or sale contracts and for marketing activities.
4. WHAT PERSONAL DATA IS COLLECTED AND SUBJECT TO FURTHER PROCESSING
To carry out the processing, Monzacamper collects the following categories of personal data:
name and surname provided by the Human Resources Systems,
date of birth
history of name changes
a unique identification number attributed by Sistemi della Monzacamper (Per_ID)
Based on this information, Monzacamper generates:
a unique username or account (according to specific rules)
a unique e-mail address (according to specific rules)
Monzacamper keeps a chronology of:
- name changes
- last authentications and last account authentication activities (date and time of the last authentication (successful or failed) and number of successful or failed login attempts)
This supplemental information is used to diagnose and resolve problems, to address security incidents, and to avoid account duplication. This information is useful for monitoring any suspicious / malicious activity concerning the user account.
- information relating to the start and end date of the contract
- office address and telephone number
- mobile phone number (for two-factor authentication, if available in Monzacamper systems)
Based on previous information and the policy on fundamental rights of people, Monzacamper generates:
The communication of personal data is mandatory as a requirement for access to the computer systems of Monzacamper. Failure to communicate your personal data may make it impossible to access these IT systems.
For Monzacamper staff, we have obtained personal data directly from the interested party.
5. HOW LONG THE PERSONAL DATA ARE KEPT
Monzacamper keeps personal data only for the time necessary for the purpose for which it was collected
Personnel data are kept as long as the user maintains a relationship with Monzacamper.
However, the user ID (username), personal number, name / surname and date of birth are kept for a longer period of time in order to avoid errors and to:
allow the re-use of the identifier, if necessary, if the person requests the restoration of access to the computer services of Monzacamper after a prolonged absence, it is preferable to keep the data longer in order to prevent duplication of entries and to ensure security .
The log files are kept for 6 months.
6. HOW THE PERSONAL DATA IS PROTECTED AND SAVED
All personal data in electronic format (databases) are stored on Monzacamper servers.
To protect personal data, Monzacamper has taken a series of technical and organizational measures. Technical measures include interventions aimed at guaranteeing online security and at countering the risk of data loss or modification or unauthorized access, taking into account the risks involved in the processing and the nature of the data processed. Organizational measures include limiting access to personal data only to authorized persons with a legitimate need to know for the purposes of the specific processing.
7. WHO HAS ACCESS TO PERSONAL DATA AND TO WHOM IT IS DISCLOSED
Access to personal data is allowed to Monzacamper personnel in charge of the specific treatment and to authorized personnel on the basis of the "need to know" principle. This staff is required to comply with the law and any other confidentiality agreements.
Personal data are not accessible to other recipients nor are they transferred to third countries or international organizations.
The information collected is not passed on to third parties except by virtue of legal obligations.
8. WHAT ARE THE RIGHTS OF THE DATA SUBJECT AND HOW CAN THEY EXERCISE
Your rights as an "interested party" are specified in Chapter III (articles 14 to 25) of Regulation (EU) 2018/1725 and include in particular the right to access personal data and to rectify them if they are inaccurate or incomplete. case, you have the right to delete your personal data, to limit its processing and to oppose the processing. You also have the right to data portability,
as well as to oppose the processing of your personal data for reasons connected with your particular situation, pursuant to article 5, paragraph 1, letter a).
For self-registered users:
He has given his consent to provide his personal data to Monzacamper for the current processing operation. This consent can be revoked at any time by notification to the data controller. You can also cancel your account at any time. The withdrawal of consent will not affect the lawfulness of the processing carried out before the withdrawal.
To exercise your rights, you can contact the data controller or, in the event of a conflict, the data protection officer. If necessary, you can also contact the European Data Protection Supervisor. The relevant contact details are given in point 9.
If you wish to exercise your rights in relation to one or more specific treatments, please provide a description in the request.
9. CONTACT INFORMATION
- The data controller
If you wish to exercise your rights pursuant to Regulation (EU) 2018/1725, or if you have comments, questions or issues that concern you, or if you wish to lodge a complaint regarding the collection and use of your personal data, you can contact:
the privacy office of Monzacamper or the data controller at the following address: email@example.com
- The data protection officer of Monzacamper
For questions regarding the processing of personal data, pursuant to regulation (EU) 2018/1725, you can contact the data protection officer (firstname.lastname@example.org)
- The European Data Protection Supervisor
You have the right to lodge a complaint with the European Data Protection Supervisor (email@example.com) if you believe that the rights you enjoy under regulation (EU) 2018/1725 have been violated, following the processing of your personal data by the data controller.