Privacy Policy of Dr. Eretta Costantino Studio - General Surgery and treatment of Lymphedema

Studio Dott. Eretta Costantino - General Surgery and Lymphedema treatment intends to inform you and all users and / or visitors of the dottorcostantinoerettalinfedema.website.majeeko.com site (respectively the "Users" and the "Site"), about how they are used your personal data and the purposes of the processing.

Data Processing Subjects

Data Controller

The owner of the processing of personal data is Studio Dott. Eretta Costantino - General Surgery and treatment of Lymphedema (hereinafter the "Owner").

Via Del Corso, 2, 19038 Sarzana Italy

You can write to us at any time at eretta.costantino@gmail.com for any request for information or to exercise your rights.

Types of data collected

Personal data, collected through the contact form

• First name

• Surname

• E-mail

These data will be processed in order to be able to process and respond to any requests received, or in any case to effectively follow them up.

Navigation data, collected automatically

Like all websites, our site also makes use of log files, in which information collected in an automated manner during your visits is stored. The computer systems and software procedures used to operate the Site, in fact, automatically acquire some information during use, the transmission of which is implicit in the use of Internet communication protocols.

• Technical data. We mean technical data:

  • Internet Protocol (IP) address or domain name of the device you use;

  • type of browser and device parameters used to connect to the Site;

  • the URI (Uniform Resource Identifier) ​​addresses of the requested resources or the method used to submit the request to the server;

  • name of the internet service provider (ISP);

  • date and time of visit;

  • web page of origin (referral) and exit of the User;

  • possibly the number of clicks;

  • the size of the file obtained in response;

  • the numerical code indicating the status of the response given to the server (successful, error, etc.);

  • other parameters relating to the operating system and the IT environment of your device.

• Cookies or similar technologies. Cookies are small text files that are saved in the browser of the user's end device in most cases for the duration of the current session, until the browser is closed, but in some cases even beyond. For more information, please visit the "Cookies" section.

The information is used for the analysis and maintenance of the technical functioning of our servers and the network and will be automatically deleted after 3 months.

This information is processed in an automated form and is not collected to be associated with natural persons, but by its nature, it could allow users / visitors to be identified. These data are collected only for technical purposes for the proper functioning of the site and statistics and therefore are not associated with a user.

Method and place of processing of the collected data

The Data Controller processes the User's Personal Data with appropriate security measures aimed at preventing unauthorized access, disclosure, modification or destruction of Personal Data.

The processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated in this information. In addition to the Data Controller, in some cases, categories of employees involved in the organization of the site (personal assistance, administrative, commercial, marketing, legal, system administrators) or external subjects (such as external IT service providers) may have access to the Data. hosting provider)

Use of collected data

We collect, process and use personal data for the purpose of providing and monitoring our services.

Our Data Controller will take care that the data you provide will be processed by persons specifically appointed, authorized and instructed to process it pursuant to article 30 of the Privacy Code and articles 28 and 29 of the Privacy Regulation. We inform you that we also care about data security, also pursuant to art. 5 and 32 of the Privacy Regulation to prevent data loss, illicit or incorrect use and unauthorized access.

Remember that, in any case and at any time, you can request the Data Controller to delete your data through a simple communication to be sent, without particular formalities, to the addresses indicated at the beginning of this document.

Third party services that carry out data processing

For the provision of the website, Studio Dott. Eretta Costantino - General Surgery and Treatment of Lymphedema makes use of external services which, in a differentiated way, process data. The purposes and methods of processing by the various services are summarized below.

Google Analytics

Purpose: User statistics

Data processed: Session data, navigation data

Provider / Company: Google - Privacy Policy

Google Fonts

Purpose: Fonts

Data processed: Navigation data

Provider / Company: Google - Privacy Policy

Google Maps

Purpose: Presentation of the map within the site

Data processed: Navigation data

Provider / Company: Google - Privacy Policy

Google Tag Manager

Purpose: Tag / Pixel Management

Data processed: Navigation data

Provider / Company: Google - Privacy Policy

Mongo DB Atlas

Purpose: Data storage and monitoring of the database infrastructure

Data processed: User data, Facebook page data, billing data, user action log

Provider / Company: MongoDB, Inc. - Privacy Policy

Mandrill

Purpose: Sending transactional emails

Data processed: Email, user contact details, billing data

Provider / Company: The Rocket Science Group, LLC - Privacy Policy

Amazon Web Services

Purpose: Web service provider

Data processed: User data, Facebook page data, billing data, user action log

Provider / Company: Amazon Web Services, Inc. - Privacy Policy

Facebook

Purpose: Incorporation of multimedia elements, analytics service provider, also for marketing purposes

Data processed: User contact data, Tracking of user behavior

Provider / Company: Facebook Ireland Ltd. - Privacy Policy

PayPal

Purpose: Online payments

Data processed: Payment information, billing data

Provider / Company: PayPal (Europe) S.à rl - Privacy Policy

NewRelic

Purpose: Infrastructure monitoring

Data processed: Session data, navigation data

Provider / Company: New Relic, Inc - Privacy Policy

Cloudflare

Purpose: Content distribution

Data processed: Navigation data

Provider / Company: Cloudflare - Privacy Policy

MaxCDN

Purpose: Content distribution

Data processed: Navigation data

Provider / Company: NetDNA, LLC - Privacy Policy

Seeweb

Purpose: Domain registration, DNS and management of e-mail boxes

Data processed: Billing data

Provider / Company: Seeweb srl - Privacy Policy

Shellrent

Purpose: Domain registration, DNS and management of e-mail boxes

Data processed: Billing data

Provider / Company: Shellrent Srl - Privacy Policy

Transmission of data

The Site uses various proprietary and third-party services, necessary for the provision of the service, marketing analysis, commercial communications, infrastructure monitoring and for the purposes of technical assistance. The data collected in the context of the provision of services will in no case be sold to third parties.

To whom and in what area we can transmit your data

Your data may be communicated, within the EU, in full compliance with the provisions of the Privacy Code and the Privacy Regulation, to the following subjects:

• to the financial administration and / or other public authorities, where this is required by law or at their request

• to credit institutions for purposes instrumental to the online purchase of the Products

• to the structures, subjects and external companies that the Data Controller uses to carry out activities connected, instrumental or consequent to the execution of the Site Services

• to external consultants (for example, for the management of tax obligations), if not designated in writing as Data Processors

The information automatically collected by the Site, as well as some anonymous data relating to the number and type of interactions on the activities associated with the purposes of loyalty in the strict sense, may also be transferred to Third Party cloud servers located also outside the EU, resulting in this processing necessary for the execution of the Site Services and requested by you. The legal basis of this treatment is, therefore, the art. 49, paragraph 1, lett. b of the Privacy Regulation and Art. 43, paragraph 1, lett. b Privacy Code.

Information, modification, copying and deletion of personal data

Exercising your rights

At any time you can exercise the rights referred to in art. 7 of the Privacy Code and pursuant to art. 15, 16, 17, 18, 20 and 21 of the Privacy Regulation, by sending a written communication to the contact details of the Data Controller.

Access, export or cancellation

To request access, rectification, cancellation or blocking of personal data, you can send a request to the email address eretta.costantino@gmail.com.

Your personal data will be exported within 30 days and sent to the email with which the request was made.

In the event of a request for cancellation, as part of the exercise of the right to be forgotten, the procedure will be carried out within the expected technical times and in accordance with the retention period stated in this document.

Duration of Treatment

Without prejudice to legal obligations, the retention of personal data will take place in paper and / or electronic / computer form and for the time strictly necessary to satisfy the well-founded criteria and the nature of the services provided, in compliance with your privacy and current regulations.

For purposes of analysis aimed at developing and improving the service, the user's personal data may be subject to the same retention period.

Invoices, accounting documents and transaction data are kept for 11 years in accordance with the law (including tax obligations).

Security and data protection

Through our portal and the third party services indicated in the previous paragraphs, your data are processed in compliance with the applicable law and using adequate security measures in compliance with the legislation in force, also pursuant to articles 5 and 32 of the Privacy Regulation.

We take care to ensure appropriate security measures to prevent unauthorized access, theft, disclosure, modification or unauthorized destruction of your data.

Modification of this information

This information on the protection of personal data is subject to constant updating and revision by the Data Controller. In the event of significant changes that may affect users' rights, the right communications and information on existing redress options will be made in advance.

If you have any questions regarding this information and in relation to the processing of Personal Data, you can contact us at the following e-mail address: eretta.costantino@gmail.com