Privacy Policy – www.paprojectautomation.it
This privacy notice shall be considered valid only for this website (www.paprojectautomation.it and its subdomains) and not for other websites that users may visit through links referenced on this site. Please review the relevant privacy notices when visiting third-party websites.
This policy was updated on 30-01-2026
DATA CONTROLLER
The data controller is Project Automation S.r.l., established in Via Podgora 76, 42019 Sant’Ilario d’Enza (RE) – ITALY e Vat number: IT02300780356, which avails of its own processing managers or those of external processing companies.
PURPOSES OF PROCESSING, LEGAL BASIS AND RETENTION TIME
We process personal data only with a proper legal basis established by law. In the following list you can find all the information concerning the purposes of processing, the types of personal data processed, the legal basis and the data retention time.
Processing purpose | Data type | Legal Basis | Data retention |
NAVIGATION DATA Website navigation — ensuring proper website functionality and cybersecurity | – navigation data | – legitimate interest of the controller to promote its business through the web channel and to protect users and the website from cyber attacks | We will retain navigation data for the time strictly necessary to achieve the purposes for which it is collected, and subsequently automatically deleted; regarding cookies, the retention period is indicated in the specific lists, where available. |
STATISTICS Processing of statistical surveys for analytical purposes | – navigation data | – legitimate interest of the Controller to improve and enhance the website and user experience based on statistical surveys, in order to make these changes relevant and data-driven. | The information necessary for producing statistics will be retained in disaggregated form for the period necessary to process anonymous and aggregated indicators. |
CONTACT FORM Following up on information/contact requests and managing communications with the data subject | – identifying data – contact and address details – specific information related to the request | – fulfillment of pre-contractual needs of which the data subject is a party | Data will be processed for the time strictly necessary to respond to your information/contact request and to manage communications. Subsequently, they will be deleted or used to achieve other purposes (e.g., establishing a relationship with the data subject). |
NEWSLETTER Sending newsletters and email communications | – identifying data – contact and address details | – express consent of the user | Your email address and other data necessary for sending the newsletter will be retained until consent is revoked or you exercise your rights. These faculties can be exercised by choosing not to receive our newsletter anymore. You can communicate your choice not to receive the newsletter anymore through our contact details or directly within our communications, by clicking the unsubscribe link at the bottom of the email |
SOCIAL NETWORKS Managing communication through social networks | – identifying data – data related to the data subject’s social profile – data communicated by the user in the context of interaction with the Controller through social media | – fulfillment of pre-contractual needs of which the data subject is a party – legitimate interest of the Controller to manage communication with the data subject | Data will be processed for the time strictly necessary to respond to your information/contact request and to manage communications based on the policies identified by the social network. Subsequently, they will be deleted or used to achieve different purposes (e.g., establishing an employment or commercial relationship) |
DESCRIPTION AND PROCESSING METHODS
NAVIGATION DATA
The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and associations with data held by third parties, allow users to be identified.
This category of data includes:
- IP addresses or domain names of computers used by users connecting to the site
- URI (Uniform Resource Identifier) addresses of requested resources
- time of the request
- method used in submitting the request to the server
- size of the file obtained in response
- numerical code indicating the status of the response given by the server (successful, error, etc.)
- other parameters relating to the operating system and the user’s computing environment
This data is used solely to ensure the website’s functionality, to obtain anonymous statistical information on usage, and for cybersecurity purposes (e.g., reconstructing a cyber attack and determining responsibility in case of cybercrimes against the site or other users). It is retained for a limited period and subsequently deleted after processing.
The site may also process data automatically through sending Cookies to the user. The use of this electronic tool is analytically described through the website’s Cookie Policy.
STATISTICS The Controller may process information about website usage by users. This information, processed where possible in anonymized and/or aggregated form, will be necessary to detect statistics on user interaction with the site itself to evaluate improvement, enhancement or revision interventions of functionalities in order to optimize, make more pleasant and meaningful the user experience, as well as evaluate more comprehensively the tool’s impact. The results of the processing will not constitute personal data, as they will be expressed in aggregated, anonymous terms for the Controller’s exclusive internal use. |
CONTACT FORM Through the contact form on the website, users are asked for personal identification data and contact details, as well as other information inherent and pertinent to the specific request of the interested user. Data is entered and sent voluntarily by the user who wishes to be contacted by the site owner to submit specific information requests and questions to the latter. The collected data will be used exclusively to respond to submitted requests and will be subject to further processing only if a relationship is established between the user and the Controller. |
NEWSLETTER Through the newsletter service, it carries out promotional activities for the company among users and customers by sending emails or other electronic communications containing updates and news regarding the Controller’s activities. Acquired data will not be communicated to third parties for marketing purposes. Communication of data for newsletter service provision purposes is subject to the data subject’s prior consent when the email address is collected through the site. This is without prejudice to the data subject’s possibility to avail themselves of the faculty to unsubscribe from the mailing list, an action that will suspend the sending of further promotional communications of this kind. |
SOCIAL NETWORKS The controller manages part of its online communication through public profiles on social networks. Comments left under posts/shared content and any other interaction will follow the regulations and policies of the social platform (the latter may configure itself as an autonomous Controller of these processes, therefore reference is made to the privacy policies of the individual social network). Private correspondence maintained with data subjects (through messaging/chat tools made available by the social network itself) will be subject to processing in compliance with social platform rules for the purpose of managing communication and providing responses to data subject requests. The latter’s data may also be processed outside the social network in pre-contractual and, subsequently, contractual contexts in case of establishing a relationship with the data subject. The data controller mainly uses the following social network: Facebook, LinkedIn |
DATA COMMUNICATION TO THIRD PARTIES
Data may therefore be communicated to third parties belonging to the following categories:
· companies that provide services for managing the information system and website (subjects dealing with hosting services, e-commerce and payment platforms, consultants in website development, etc.) |
· offices or companies that provide services within assistance and consultancy relationships (in IT, accounting/administrative fields, etc.); |
· companies and entities providing technical or consultancy services regarding market research, marketing and promotion activities of our business and products; |
· entities, administrations and public authorities, for fulfilling legal obligations connected to commercial relationships should evidence of crimes or cyber attacks against our system or other site visitors be found or in the context of dispute management with the data subject. |
Further information related to the third parties who may process your personal data is available by submitting a specific request to the data controller.
PROVISION OF DATA AND CONSEQUENCES OF REFUSAL TO REPLY
The communication of your personal data is mandatory when the process is necessary to browse in the website, to carry out commercial and information requests received through contact forms or personal area, to provide the services and to perform a contract with customers. The denial to submit that data will affect our capability to carry out your requests.
In the other cases, such as for marketing purposes, the transmission of data is optional and, when needed, subject to your explicit consent.
WHAT ARE YOUR RIGHTS AS DATA SUBJECT?
§ Access to personal data: you can ask us to confirm that processing of your personal data is taking place and obtain access to data in our possession concerning you. § Rectification and updating of personal data: if you believe your data is incorrect or no longer updated, you have the right to ask us for rectification. § Erasure of personal data: when processing is concluded, you withdraw consent or object to processing and there are no other legal reasons why we can retain your personal data, you can request its deletion. § Restriction of processing: if processing is based on the legitimate interest of the controller or third parties or you wish to restrict the processing scope of such data, you can request restriction of processing. § Objection to processing and use of automated decision-making processes: you can object to processing for a particular purpose when it is based on the legitimate interest of the controller or third parties; furthermore, you can object to the use of automated decision-making processes, including profiling. § Portability of personal data: in certain circumstances, you can request that your data be provided to you in a structured, commonly used and machine-readable format. § Withdraw given consent: if processing is based on your consent, you can withdraw it at any time. For more information, you can visit the Privacy Authority website: https://www.garanteprivacy.it/i-miei-diritti |
ARE THERE LIMITS TO EXERCISING MY RIGHTS?
Yes, regulations provide for cases where exercising your rights may be limited. For example, rights may be limited when processing is based on a legal obligation, is carried out for establishing or defending a right in judicial proceedings, or when there is a risk of harming others’ rights and freedoms. The Controller will assess the existence of limitations and respond to your request within one month, as required by law.
HOW CAN I EXERCISE MY RIGHTS OR GET MORE INFORMATION?
You can exercise your rights as data subject, obtain more information on processing methods and request any clarification on personal data protection by contacting the Data Controller at the e-mail address: info@paprojectautomation.it.
To help us identify your rights exercise request, it is appropriate that the communication specifies in the subject line: “Request for exercise of data subject rights – Privacy”.
Within the communication, it is important to specify and demonstrate your identity, what your relationship with the Controller is and which right you intend to exercise, in addition to all information you deem useful to facilitate the exercise.
We can suggest using the form for exercising rights prepared by the Privacy Authority downloadable here: https://www.garanteprivacy.it/home/modulistica-e-servizi-online
CAN I FILE A COMPLAINT WITH THE PRIVACY AUTHORITY?
Yes, you have the right to file a complaint with the Authority for Personal Data Protection (Privacy Authority). You can do so by sending a PEC message addressed to protocollo@pec.gpdp.it, by registered mail with return receipt addressed to or by hand delivery to the Authority’s office at Piazza Venezia 11, 00187 Roma.
Finally, through other contact tools made available by the Authority on its website: https://www.garanteprivacy.it/home/modulistica-e-servizi-online or with the competent supervisory authority of another EU country.