This information is provided in accordance with EU Regulation 2016/679 (hereinafter referred to as the “Regulation”, or General Data Protection Regulation, hereinafter referred to as “GDPR”) and describes the methods of processing personal data of users who consult and use this website, accessible at the address https://www.alternative-group.it/ (hereinafter also referred to as the “Website”) or use the services offered through the Website.

In accordance with the current European Regulation on the protection of personal data no. 679/2016 (GDPR), data collection and processing will always follow principles of lawfulness, fairness, and transparency.

Upon visiting the Website, personal data concerning the user accessing the site (referred to as the ‘data subject,’ meaning an identified or identifiable individual) may be processed.

 

A. Data Controller

The Data Controller is Alternative Group S.r.l., represented by its legal representative pro temporewith VAT number 03711181200, with registered office at Via Innocenzo Malvasia 14 – Bologna (BO), and email address info@alternative-group.it (hereinafter referred to as the “Controller”).

 

B. Types of Information Collected, Purposes, Legal Basis, and Data Retention Period

Personal data may be collected either autonomously by the Data Controller or through third parties.

In this case, the computer systems and software procedures responsible for the operation of this Website acquire certain technical and computer-related data (e.g., IP address, type of browser used, operating system, domain name, and website addresses from which access or exit was made, etc.), the transmission of which is inherent to the normal functioning of the internet.

Purpose: such data may be processed solely for the purpose of obtaining anonymous statistical information about the use of the website and/or for monitoring its correct operation.

Retention: this data will be deleted immediately after processing.

Legal Basis: the processing is carried out based on the legitimate interest of the Data Controller in making the Website accessible and ensuring its navigation (Article 6, paragraph 1, letter f). Express consent of the data subject is required exclusively for the specific profiling activity (Article 6, paragraph 1, letter a).

The optional, explicit, and voluntary sending of communications via email to the addresses provided on this website entails the subsequent acquisition of data provided by the user, including their email address, and consent to receive any response messages to their requests.

In this case, providing the email address and any other data that may be indicated is optional but necessary to avail of the service and receive a response to your request. In the absence of such information, we will not be able to proceed with the processing.

Purpose: the personal data provided in this manner are used solely for the purpose of satisfying or responding to the transmitted requests and are disclosed to third parties only if necessary for this purpose.

Retention: the data is retained for the period necessary for the fulfillment of the request and in accordance with applicable regulations.

Legal Basis the processing is carried out for the performance of a contractual and pre-contractual obligation undertaken by the Data Controller regarding the service (Article 6, paragraph 1, letter b).

This website utilizes technical, tracking, and profiling cookies. For details, please refer to the dedicated cookie policy

 

C. Integration of Social Media Links

We have integrated social media plugins (Facebook, Instagram, Linkedin, Youtube, Vimeo) on the website. This means that by clicking on one of the buttons (for example, the “Like” button on Facebook), some information is shared with the social media service providers.

If the User is logged into their personal accounts on the aforementioned platforms, when they click or touch one of these buttons, the social media provider may link this information to their account. Depending on the settings, these actions may also be displayed on the personal profile, thus becoming visible to other users within the network.

 

D. Data Recipients

The personal data collected are processed by the personnel of the Data Controller, who act with specific authorization, based on specific instructions provided regarding the purposes and methods of the processing.

Furthermore, individuals designated as Data Processors pursuant to Article 28 of the GDPR or sub-processors, whom the Data Controller uses for the provision of services and for the performance of their respective tasks, may be recipients of the data collected following the consultation of the Website or the use of the services, within the limits of their respective assignments.

The relevant list can be requested from the Data Controller using the contact details provided in Section A.

If, through the services offered by the website, a Data Processor is designated pursuant to Article 28 of the GDPR or a sub-processor, the data will be communicated to their respective Data Controller and/or Data Processor.

 

E. Data Transfer

There is no provision for the transfer of personal data abroad.

 

F. Rights of Data Subjects

Data subjects – the identified or identifiable natural persons to whom the data refers – can exercise specific rights regarding data protection, as listed below:

a) Right of Access: the right to obtain from the Data Controller confirmation as to whether or not personal data concerning them is being processed, and, if so, access to personal data and detailed information regarding the origin, purposes, categories of data processed, recipients of communication and/or data transfer, and more;

b) Right to Rectification: the right to obtain from the Data Controller the rectification of inaccurate personal data concerning them without undue delay, as well as the right to have incomplete personal data completed, including by providing a supplementary statement;

c) Right to Erasure (“Right to Be Forgotten”): the right to obtain from the Data Controller the erasure of personal data without undue delay in the following cases: i. the personal data is no longer necessary for the purposes for which it was collected; ii. the consent on which the processing is based is withdrawn, and there is no other legal basis for processing; iii. the personal data has been unlawfully processed; iv. the personal data must be erased to comply with a legal obligation;

d) Right to Object to Processing: the right to object at any time to the processing of personal data based on the Data Controller’s legitimate interest;

e) Right to Restriction of Processing: the right to obtain from the Data Controller the restriction of processing when: i. the accuracy of personal data is contested (for the period necessary for the Data Controller to verify the accuracy of such personal data); ii. the processing is unlawful, and the data subject opposes the erasure of personal data;

f) Right to Data Portability: the right to receive personal data concerning them, which they have provided to the Data Controller, in a structured, commonly used, and machine-readable format and to transmit this data to another Data Controller, where technically feasible, only for cases where the processing is based on consent or a contract and only for data processed by electronic means;

g) Right to Lodge a Complaint with the Supervisory Authority: without prejudice to any other administrative or judicial remedy, the data subject who believes that the processing concerning them violates GDPR Regulation has the right to lodge a complaint with the supervisory authority of the Member State where they reside or work habitually or where the  alleged violation occurred.

To exercise your rights, you can contact the Data Controller at the following address info@alternative-group.it or using the contact information provided above.