Privacy Policy and Processing of Personal Data

This communication is made available to you – pursuant to Articles 13 and 14 of the European Regulation 2016/679 on the protection of personal data (“Regulation” or “GDPR”) – and is addressed to those who interact with the web services accessible electronically from this website (“website or site”). The purpose of this Notice is to inform you about how we process personal data about you.

Data controller

The Data Controller of your personal data is Borsalino Museum located at C.so Cento Cannoni 21- 15100 Alessandria;
Tel: 0131 1677091 E-mail: info@borsalinomuseum.com

General principles and employment on data protection

Borsalino Museum is committed to protecting all personal data it processes by adhering to the following general principles.
All data are processed lawfully, fairly and transparently with respect to the data subject, in accordance with the general principles set forth in Reg. EU no. 2016/679 and the current legislation on personal data protection:
– all data are processed and collected only for the purposes stated in this Policy or for the specific purposes already shared with the data subject, with the aim of collecting, processing and using as little personal data as possible;
– if the personal data collected is no longer needed for any purpose or for legal obligations, every effort will be made to delete, destroy, or anonymize it;
– specific security measures are observed to prevent data loss, illegal or incorrect use, and unauthorized access;
– personal data will not be shared, sold, made available, or disclosed to parties other than those specified in the Notice.

Types of data collected

The website offers informative and sometimes interactive content. While browsing the Site may, therefore, acquire information about the visitor in the following ways:

Navigation data

The computer systems and software procedures used to operate this website acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user’s operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information about the use of the site and to check its correct operation and is deleted immediately after processing. The data could be used to ascertain liability in case of hypothetical computer crimes against the site.

Cookies

In order to make its services as efficient and easy to use as possible this Site makes use of cookies. Therefore, when visiting the Site, a minimal amount of information is placed on the User’s device, as small text files called “cookies,” which are saved in the User’s web browser directory. There are different types of cookies, but basically the main purpose of a cookie is to make the Site work more efficiently and to enable certain features. For more information you can consult the Site’s Cookie Policy included at the end of this document.

Data Voluntarily Provided by the User

You do not collect or use personal information about those who visit the website. Visitors remain anonymous. The only exception is for information voluntarily provided by the user in site forms, which is necessary to fulfill contractual obligations to provide requested services or to fulfill user requests.
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site, involves the subsequent acquisition of the sender’s email address, as well as any other personal data entered, necessary to respond to requests.

Optional provision of data

Apart from what has been specified for navigation data, the user is free to provide his or her personal data via Collection Form, or otherwise indicate them in the contact section in order to take advantage of the services offered, solicit the sending of information and other communications. Failure to provide them may result in the inability to obtain what has been requested. Sending data involves the subsequent acquisition of the sender’s email address, as well as any other personal data entered, necessary to respond to requests.

Purpose and legal basis for processing

Users’ personal data are processed for the following purposes:
a. Ensure access to the Site, navigation, and enjoyment of online services made available in connection with the Site;
b. for needs related to the operations of authorization, enabling and customization of access to the various areas and related content of the Site for the use of the services offered;
c. where the activity is planned and subject to your consent, to send you by e-mail informative and promotional communications, as well as to fulfill your requests;
d. Establishment of liability in case of hypothetical computer crimes against the site.

The legal basis for the processing is:
– for the purposes set forth in paras. (a) and (b), from the legitimate interest of the owner, in this case embodied in offering access to the site and its services;
– For the purpose of (c), from the consent freely given by the data subject;
– for the purpose of (d) above, by the legitimate interest of the Data Controller.

Method, place and duration of processing

Personal data are processed by computer and/or telematic means. Processing is carried out using organizational methods and logic strictly related to the stated purposes.
The Data Controller has implemented technical and organizational measures to provide an adequate level of security and confidentiality for personal data. These measures take into consideration the state of the art of the technology, the costs of its implementation, the nature of the data and the risks associated with its processing. The purpose is to protect data from accidental or unlawful destruction or alteration, accidental loss, unauthorized disclosure or access, and other forms of unlawful processing.
In addition, when handling Your personal data, The Data Controller collects and processes personal data that is adequate, relevant and not excessive as required to fulfill the above purposes and ensures that such personal data remains current and accurate.
The data are processed at the operational locations according to which the Data Controller is organized by authorized internal parties, and at external parties duly appointed as Data Processors.
In any case, the dissemination of your personal data is completely excluded.

Transfer of data outside the European Union

In general, processed data are not transferred outside the European Union. It is understood in any case that the Holder, should it become necessary, will have the right to move the location of the servers to countries outside the EU or to use cloud services also located outside the European space. In such a case, the Data Controller assures as of now that the transfer of data will take place in accordance with the applicable legal provisions by entering into agreements, if necessary, to ensure an adequate level of protection.
Data shall be processed for as long as is strictly necessary for the pursuit of the above purposes, subject to any retention periods prescribed by law or regulations.

Categories of individuals to whom data may be disclosed

The data collected by the Data Controller will only be shared for the above purposes; we will not share or transfer your personal data to third parties other than those listed in this Policy. In the course of our activities and exclusively for the same purposes as those listed in this Notice, your personal data may be transferred to the following categories of recipients:
– Partners and Entities related to the Data Controller, to whom the Data Controller communicates data exclusively to ensure the provision of services;
– hosting providers, IT companies, communications agencies, third-party technical services, postal carriers;
– persons, companies or professional firms that provide assistance and advice to the Data Controller, in accounting, administrative, legal, tax and financial matters;
– Subjects to whom the right to access the data is recognized by legal provisions or orders of the authorities.
With such individuals, if necessary, agreements may be signed by the Owner identifying them as Data Processors. An up-to-date list of Data Processors can always be obtained from the Data Controller.

Rights of users regarding their personal data

The data subject, i.e., the natural person to whom the personal data relate, has the right to request from the Data Controller access to, rectification or erasure of his or her personal data, as well as to request restriction or object to their processing. The data subject also has the right to data portability. To exercise these rights, you can refer to the contacts listed in this policy.
All requests received will be processed and responded to in accordance with the concrete provisions of the applicable regulations, including with reference to the actual existence of the prerequisites for their acceptance. In the absence of such subsistence, the Data Controller may not act on the requests. The Data Controller makes every effort to respond to legitimate and well-founded requests within one month of their receipt. Depending on the complexity and number of requests, as well as the above, this deadline may be extended by two months. At the final outcome of the handling of the request and against the same, the data subject has the option of filing a complaint with the supervisory authority at www.garanteprivacy.it and filing a judicial appeal.

Changes to the disclosure

The Data Controller reserves the right to make changes to this policy in order to incorporate changes in legislation or to adapt to intervening technological innovations. Any changes will be posted on this web page made continuously searchable via the hyperlink located on the home page of the Site.

Cookie Policy

This Cookie Policy sets out how Borsalino Museum and third parties authorized by us, uses Cookies when you interact with our sites or the services offered through the sites. By using our websites you give your consent to the use of cookies in accordance with this “Cookie Policy”.
This Cookie Policy is part of our Privacy Policy – which explains how we use information, including any personal data we may collect about you – and should be read in addition to it.
The law provides that we may store cookies on your device if the cookies are strictly necessary for the operation of this site. For all other types of cookies, however, we need and require your consent.
This site uses different types of cookies and different cookies. Some cookies are created and read by third-party services that appear on our pages. Below, you will find all the information about what cookies are, how we use them on our sites, and your current consent status.

What are cookies?

A “cookie” is a small text file that is stored on computers, tablets, cell phones and any device used to browse the Internet, which can store browsing information for statistical or functional purposes. While browsing through our websites, we may collect information about traffic flow and page visits to our domains. This information, obtained through cookies, will be treated securely.
The purpose of using cookies is to make the experience more efficient for the user by personalizing access to the website, optimizing the navigation and operation of the website, improving our services, and providing content and/or advertising related to user preferences.
When we talk about cookies, we are actually referring to a broader range of technologies rather than just cookies, including web beacons, clear gifs, pixels, and other similar technologies. When we talk about proprietary cookies, we mean cookies transmitted by Borsalino MuseumWhen we talk about third-party cookies, we mean cookies from other sites transmitted by third parties unrelated to Borsalino Museum
They can be, for example, banner ads, images, videos, maps, or specific links to web pages on other domains that reside on servers other than the one on which the requested page is located. In other words, these cookies are set directly by website operators or servers other than this website. The use of these cookies requires the prior acquisition of the user’s free informed consent.
Depending on their duration, they are distinguished into session cookies (i.e., those that are temporary and automatically deleted from the terminal at the end of the browsing session by closing the browser) and persistent cookies (i.e., those that remain stored on the terminal until they expire or are deleted by the user). In any case, persistent cookies expire after 7 days.
Based on function and purpose of use, cookies can be divided into technical cookies and profiling cookies.

Technical cookies

Some cookies are used to perform computer authentication, session tracking, and storage of specific information about users accessing a web page. These so-called technical cookies are often useful to enable you to navigate a website and use all of its features. Technical cookies are those whose use does not require user consent.
Analytics cookies also belong to this category. These are cookies that collect information about a user’s use of a website and help improve its operation. For example, analytics cookies show which pages are most frequently visited, allow you to see what the recurring patterns of use of a website are, and help you understand any difficulties the user encounters in using it.

Types of cookies used by our site

The main functions of cookies installed on the site are technical and are used to continuously improve services, for authentication, for statistical purposes, and for counting site visits. Therefore, the use of cookies is strictly for the purpose of facilitating server functions while browsing the site and for requesting services.
The site also allows the sending of third-party cookies that are not tools of our ownership, so for more information, you can access the notice and third-party consent acquisition forms by clicking on the links below.
To improve the website and understand which parts or elements are most appreciated by users, and thus also for marketing purposes, Google Analytics third-party cookies are used as an anonymous and aggregated analysis tool. These cookies are not tools that we own, so for more information, you can consult the information provided by Google below.

Social Network Plugin

The indicated sites also incorporate social networking plugins and/or commands to enable easy sharing of content on your favorite social networks. Such plugins are programmed not to set any cookies when the page is accessed, to safeguard users’ privacy. Eventually cookies are set, if so provided by social networks, only when the user makes actual and voluntary use of the plugin. Keep in mind that if the user browses while being logged into the social network then he or she has already consented to the use of cookies conveyed through this site at the time of signing up for the social network. The collection and use of information obtained by means of the plugin is governed by the respective privacy policies of the social networks, to which please refer.
– Facebook (cookie policy link) https://www.facebook.com/policies/cookies/
The website may use Facebook ADS programs operated by Facebook Inc. and Google Adwords and Google Remarketing technology operated by Google Inc. The conversion tracking feature of Facebook ADS and AdWords also uses cookies to help us track sales and other conversions.

Cookie Management

Users can manage their cookie preferences through features in common browsers that allow them to delete/remove cookies (all or some) or to change their browser settings to block cookies from being sent or to limit them to specific sites (as opposed to others). Therefore, you can deny the use of cookies by following the disabling procedure provided by your browser. The following are the ways proposed by the major browsers:
– Google Chrome – https://support.google.com/chrome/answer/95647?hl=it&hlrm=it
– Mozilla Firefox – %20dei%
– Internet Explorer – http://support.microsoft.com/kb/196955
– Safari – http://support.apple.com/kb/PH5049
To get information about the cookies stored on your terminal and disable them individually, please refer to the link: http://www.youronlinechoices.com/it/le-tue-scelte

Cookie Policy Update

This privacy policy may be subject to change over time – also related to the possible entry into force of new sector regulations, the updating or provision of new services or to intervening technological innovations – so the user/visitor is invited to periodically consult this page.

More questions about cookies

If you still have questions after reading this “Cookie Policy,” please contact Borsalino Museum by writing to info@borsalinomuseum.com