Privacy policy

This Website (www.finproject.com) collects some Personal Data from its Users.

Data Controller

Finproject S.p.A., Via San Gabriele, 96 – 62010 Morrovalle (MC) – ITALY

Data Processor

For any information relating to the processing of personal data, it is possible to contact the personal data protection officer (“DPO”) appointed by the Company by writing an email to the following address: dpo@eni.com.

Types of Data collected

In general, the Personal Data collected by this Website, independently or through third parties, includes:

  • Common personal data necessary to request the Services (last name, name, telephone number, company name, country, e-mail);
  • Usage data and browsing data (system log, IP address, etc.).

The Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Website. Unless otherwise specified, all Data requested by the Website is mandatory. Failure to provide the aforementioned data could make it impossible for this Website to allow correct browsing.

In cases where this Website indicates some Data as optional, Users are free to refrain from communicating such Data without any consequence on the availability of the Service or on its operations.

Purpose of processing the collected data

The User Data is collected to allow the Data Controller to:

PURPOSE

LEGAL BASIS

Follow up on requests for Services made by users.

The processing is necessary for the execution of a contract with the user and/or the execution of pre-contractual measures.

To contact the user to respond to their requests (for information, for a quote or of any other nature indicated in the contact form).

The processing is necessary for the execution of a contract with the User and/or the execution of pre-contractual measures.

Carry out statistical analysis activities.

The processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties.

Ensure the proper functioning of web pages and their contents.

The processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties.

Methods of processing the data collected

Methods of processing

The Data Controller adopts the appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data.
The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.

Scope of data circulation

For the pursuit of the purposes referred to in the previous paragraph and within the limits of what is strictly necessary, the user’s personal data may be brought to the attention of employees of the Data Controller (administrative, commercial, legal, system administrators), duly authorized to process the data, based on and within the limits of the tasks and duties assigned to them.

Furthermore, all those subjects who carry out activities connected, instrumental and/or in support of the activities of the Data Controller and to which the latter may call on – after their appointment as data processors – to perform the aforementioned activities, may become aware of the user’s personal data within the limits of what is strictly necessary and in compliance with the purposes referred to in the previous paragraph.

In addition, the data may be disclosed to the police, the armed forces and other public administrations, for the fulfilment of obligations established by law, regulations or EU legislation.

The data is processed exclusively within the European Union.

Data storage period

In general, the Data provided will be stored in the form that allows your identification for the time strictly necessary for the purpose for which they were collected and subsequently processed, and in any case within the limits set by the law and as indicated in the related disclosures.

In any case, personal data of the data subject could also be kept for a subsequent period if the need arises in order to defend or assert a right and/or to fulfil any additional legal obligations or orders issued by the Authorities.

Rights of the data subject

Users may exercise certain rights with reference to the Data processed by the Data Controller.

In particular, the data subject has the right, where applicable, to:

  • Object to the processing of their data. The Data Subject may object to the processing of their Data when it takes place on a legal basis other than consent.
  • Access their data. The Data Subject has the right to obtain information on the Data processed by the Data Controller, on certain aspects of the processing and to receive a copy of the Data processed.
  • Verify and request rectification. The Data Subject is entitled to verify the correctness of their Data and request its updating or correction.
  • Obtain the restriction of processing. When one of the conditions set forth in art. 18 of the GDPR applies, the Data Subject may request the limitation of the processing of their Data. In this case, the Data Controller will not process the Data for any other purpose other than their storage.
  • Obtain the cancellation or removal of their Personal Data. When one of the conditions set forth in art. 17 applies, the Data Subject may request the deletion of their Data by the Data Controller.
  • Receive their Data or have it transferred to another Data Controller (portability). The Data Subject has the right to receive their Data in a structured format, commonly used and readable by an automatic device and, where technically feasible, to obtain their transfer without hindrance to another data controller. This provision is applicable when the Data are processed with automated tools and the processing is based on the consent of the data subject, on a contract of which the data subject is a party or on contractual measures connected to it.
  • Revoke consent at any time. The Data Subject may revoke the previously expressed consent to the processing of their Personal Data.
  • Lodge a complaint. The data subject may lodge a complaint with the competent personal data protection supervisory authority or take legal action.

How to exercise your rights

To exercise these rights, you can write to the following email address: dpo@eni.com.

Cookie Policy

This Website uses Cookies. To learn more and to read the detailed disclosure, the User can consult the Cookie Policy.

Definitions and legal references

Personal Data (or Data)
Personal data is any information that, directly or indirectly, even in connection with any other information, including a personal identification number, identifies a natural person or makes them identifiable.

Usage Data
This is information collected automatically through this Website (also by third-party applications integrated into this Website), including: the IP addresses or domain names of the computers used by the User who connects with this Website, the addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used to forward the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), the country of origin, the characteristics of the browser and the operating system used by the visitor, the various temporal aspects of the visit (for example the time spent on each page) and the details relating to the path followed within the Website, with particular reference to the sequence of pages consulted, the metrics relating to the operating system and the User’s IT environment.

User
The individual who uses this Website who, unless otherwise specified, coincides with the Data Subject.

Data Subject
The natural person to whom the Personal Data refers.

Data Processor (or Processor)
The natural person, legal entity, public administration and any other entity that processes personal data on behalf of the Data Controller, as set out in this privacy policy.

Data Controller (or Controller)
The natural or legal person, public authority, service or other body which, individually or together with others, establishes the purposes and means of processing personal data and the tools adopted, including security measures relating to the operation and use of this Website.

Website
The website to which this Privacy Policy refers (www.finproject.com).

Service
The Service provided by this Website.

European Union (or EU)
Unless otherwise specified, any reference to the European Union contained in this document is understood to be extended to all current member states of the European Union and the European Economic Area.

Cookies
Small text files that sites visited by users send to the devices used for viewing (computers, smartphones, tablets, smart TVs, etc.) to be stored and then re-transmitted to the same sites on the next visit.