Regulation

Privacy Policy - Certified Email

Regulation of services

Hosting Solutions invites all customers of the certified email service to read the privacy policy below.

Information pursuant to European Regulation 679/16 art.13

  • The purpose of processing the personal data of the holders of PEC email accounts, including the external data of the Internet accesses carried out (e-mail addresses, World Wide Web sites, date, time, duration, generated traffic and access node) is to enable the provision of the service covered by the contract and the management of support requests and/or any complaints in the interest of the Holder.
  • The processing will be carried out by means of telematic (databases), paper (non-computerised archives), postal (information mail exclusively related to the service) and telephone (services rendered to Users) supports and includes, by way of example but not limited to, the collection, storage, communication between data controllers, disclosure and any other activity useful for the fulfilment of the purposes here represented.
  • The provision of data and its processing are strictly functional to the execution of the contractual relationship and therefore constitute a necessary condition for the provision of the requested service. For this purpose, in consideration of the characteristics of the service provided and only for it, the Data Controllers may have to transfer to third parties, typically interconnected in the network, personal data of the Holder of the PEC email account and/or information transmitted by Him (activation of the service on nodes managed by third parties, e-mail messages, access to remote servers, etc.). For the same purposes, personal data may be transferred outside the national territory.
  • Since the personal data requested are strictly and exclusively necessary for the fulfilment of the contract concluded between the parties, the proven mendacity of the individual data, or the failure to provide data concerning the provision of the service, or even the failure to provide information regarding its amendment, shall entitle the service provider to refuse its performance.
  • The personal data provided may also be processed in the same way for purposes connected with credit risk protection, customer identification and for the performance of information to verify the truthfulness of the data provided and the customer's solvency, including during the course of the relationship. To this end, the data may be communicated to third-party companies specialising in the management of commercial or credit-related information (such as data processing centres, banks, risk centres, etc.). Any refusal to allow the use of the data described in this point may result in the application of the conditions set forth in articles 2.2 (Acceptance by Namirial SpA and conclusion of the Contract) and 5.6 (Means of guarantee) of the General Conditions of Contract.
  • Any further disclosure or dissemination of data to third parties is excluded, except only in the cases expressly provided for in European Regulation 679/16.

Rights of the data subject (Art. 15 - 22 reg. Eur 679/16)

The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and the following information:

  • the origin of the data;
  • the purpose of processing;
  • the logic of the processing;
  • the identification details of the Data Controller and Data Processors;
  •  the subjects to whom the data may be communicated.

The data subject has the right to assert all rights under Articles 15 to 22 of European Regulation 679/16

The data controllers of the holders of PEC email accounts are:

  • for accounts on the certified domain @pcert and on domains certified until 21/01/2020, ITNet s.r.l. with registered office in Milan, Via del Bosco Rinnovato 8/Palazzo U4 20090 Assago - Milanofiori Nord (MI);
  • for accounts on the certified domain @mypcert and on domains certified as from 22/01/2020, Namirial S.p.A. with registered office in Senigallia (AN), Cap 60019, Via Caduti sul Lavoro n. 4;. For details on the processing of personal data, please refer to the document Namirial - DATA PROCESSING POLICY
  • Genesys Informatica s.r.l. with registered office in Via dei Cattani 224/18 - 50145 Florence (FI) for the part of data entry by the data subject and transmission to the suppliers (autonomous data controllers) indicated above. Further information regarding the GDPR is available here: Privacy Notice - Hosting Solutions.