Privacy Policy – zilianiservice.com

This privacy notice shall be considered valid only for this website (zilianiservice.com and its subdomains) and not for other websites that users may visit through links referenced on this site. Please review the relevant privacy notices when visiting third-party websites.

This policy was updated on 06-11-2025

DATA CONTROLLER

The data controller is Ziliani Service S.R.L., established in Via Emilia Parmense Est 31, 29010 Pontenure (PC) – ITALY e Vat number: IT01644480335, which avails of its own processing managers or those of external processing companies.

PURPOSES OF PROCESSING, LEGAL BASIS AND RETENTION TIME

We process personal data only with a proper legal basis established by law. In the following list you can found all the information concerning the purposes of processing, the types of personal data processed, the legal basis and the data retention time.

Processing purpose Data type Legal Basis Data retention
NAVIGATION DATA

Website navigation — ensuring proper website functionality and cybersecurity

 – navigation data – legitimate interest of the controller to promote its business through the web channel and to protect users and the website from cyber attacks We will retain navigation data for the time strictly necessary to achieve the purposes for which it is collected, and subsequently automatically deleted; regarding cookies, the retention period is indicated in the specific lists, where available
STATISTICS

Processing of statistical surveys for analytical purposes

 – navigation data – legitimate interest of the Controller to improve and enhance the website and user experience based on statistical surveys, in order to make these changes relevant and data-driven. The information necessary for producing statistics will be retained in disaggregated form for the period necessary to process anonymous and aggregated indicators

DESCRIPTION AND PROCESSING METHODS

NAVIGATION DATA

The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and associations with data held by third parties, allow users to be identified.

This category of data includes:

  • IP addresses or domain names of computers used by users connecting to the site
  • URI (Uniform Resource Identifier) addresses of requested resources
  • time of the request
  • method used in submitting the request to the server
  • size of the file obtained in response
  • numerical code indicating the status of the response given by the server (successful, error, etc.)
  • other parameters relating to the operating system and the user’s computing environment

This data is used solely to ensure the website’s functionality, to obtain anonymous statistical information on usage, and for cybersecurity purposes (e.g., reconstructing a cyber attack and determining responsibility in case of cybercrimes against the site or other users). It is retained for a limited period and subsequently deleted after processing.

The site may also process data automatically through sending Cookies to the user. The use of this electronic tool is analytically described through the website’s Cookie Policy.

STATISTICS

The Controller may process information about website usage by users. This information, processed where possible in anonymized and/or aggregated form, will be necessary to detect statistics on user interaction with the site itself to evaluate improvement, enhancement or revision interventions of functionalities in order to optimize, make more pleasant and meaningful the user experience, as well as evaluate more comprehensively the tool’s impact.

The results of the processing will not constitute personal data, as they will be expressed in aggregated, anonymous terms for the Controller’s exclusive internal use.

DATA COMMUNICATION TO THIRD PARTIES

Data may therefore be communicated to third parties belonging to the following categories::

·         companies that provide services for managing the information system and website (subjects dealing with hosting services, e-commerce and payment platforms, consultants in website development, etc.)
·         offices or companies that provide services within assistance and consultancy relationships (in IT, accounting/administrative fields, etc.));
·         entities, administrations and public authorities, for fulfilling legal obligations connected to the commercial relationship, should evidence of crimes or cyber attacks against our system or other site visitors be found or in the context of dispute management with the data subject.

Further information related to the third parties who may process your personal data are available by submitting a specific request to the data controller.

TRANSFER OF DATA OUTSIDE THE EUROPEAN UNION

Ziliani Service S.R.L. may transfer personal data to third countries outside the European Union, as the website hosting service is provided by the US company Automattic Inc., with headquarters at 60 29th Street #343 San Francisco, CA 94110 United States of America.

Your browsing data will be transferred.

Automattic Inc. adheres to the EU-U.S. Data Privacy Framework (European Commission adequacy decision).

PROVISION OF DATA AND CONSEQUENCES OF REFUSAL TO REPLY

The communication of your personal data is mandatory when the process is necessary to browse in the website, to carry out commercial and information requests received through contact forms or personal area, to provide the services and to perform a contract with customers. the denial to submit those data will affect our capability to carry out your requests.

In the other cases, such as for marketing purposes, the transmission of data it’s optional and, when needed, subject to your explicit consent.

WHAT ARE YOUR RIGHTS AS DATA SUBJECT?

§ Access to personal data: you can ask us to confirm that processing of your personal data is taking place and obtain access to data in our possession concerning you.

§ Rectification and updating of personal data: if you believe your data is incorrect or no longer updated, you have the right to ask us for rectification.

§ Erasure of personal data: when processing is concluded, you withdraw consent or object to processing and there are no other legal reasons why we can retain your personal data, you can request its deletion.

§ Restriction of processing: if processing is based on the legitimate interest of the controller or third parties or you wish to restrict the processing scope of such data, you can request restriction of processing.

§ Objection to processing and use of automated decision-making processes: you can object to processing for a particular purpose when it is based on the legitimate interest of the controller or third parties; furthermore, you can object to the use of automated decision-making processes, including profiling.

§ Portability of personal data: in certain circumstances, you can request that your data be provided to you in a structured, commonly used and machine-readable format.

§ Withdraw given consent: if processing is based on your consent, you can withdraw it at any time.

For more information, you can visit the Privacy Authority website: https://www.garanteprivacy.it/i-miei-diritti

ARE THERE LIMITS TO EXERCISING MY RIGHTS?

Yes, regulations provide for cases where exercising your rights may be limited. For example, rights may be limited when processing is based on a legal obligation, is carried out for establishing or defending a right in judicial proceedings, or when there is a risk of harming others’ rights and freedoms. The Controller will assess the existence of limitations and respond to your request within one month, as required by law.

HOW CAN I EXERCISE MY RIGHTS OR GET MORE INFORMATION?

You can exercise your rights as data subject, obtain more information on processing methods and request any clarification on personal data protection by contacting the Data Controller at the e-mail address: zilianiservice@gmail.com.

To help us identify your rights exercise request, it is appropriate that the communication specifies in the subject line: “Request for exercise of data subject rights – Privacy”.

Within the communication, it is important to specify and demonstrate your identity, what your relationship with the Controller is and which right you intend to exercise, in addition to all information you deem useful to facilitate the exercise.

We can suggest using the form for exercising rights prepared by the Privacy Authority downloadable here: https://www.garanteprivacy.it/home/modulistica-e-servizi-online

CAN I FILE A COMPLAINT WITH THE PRIVACY AUTHORITY?

Yes, you have the right to file a complaint with the Authority for Personal Data Protection (Privacy Authority). You can do so by sending a PEC message addressed to protocollo@pec.gpdp.it, by registered mail with return receipt addressed to or by hand delivery to the Authority’s office at Piazza Venezia 11, 00187 Roma.

Finally, through other contact tools made available by the Authority on its website: https://www.garanteprivacy.it/home/modulistica-e-servizi-online or with the competent supervisory authority of another EU country.