Privacy Policy

Privacy Notice pursuant to Article 13 of EU Regulation No. 2016/679 (GDPR)

This privacy notice has been drafted to inform interested parties about the principles governing the confidentiality and processing of data provided to B-HSE, including data collected via the website: https://www.b-hse.it/.
This document describes the methods of managing the site in relation to the processing of personal data of users who consult it. It constitutes an information notice also pursuant to Article 13 of EU Regulation No. 2016/679 (GDPR 2016/679), which contains provisions for the protection of individuals and other entities with regard to the processing of personal data.

This privacy notice is valid solely for this website and not for other websites that may be accessed via links present on this site. By visiting this website, you implicitly declare that you have understood and accepted the data processing methods described in this privacy policy.

B-HSE informs you that the processing of your personal data will adhere to the principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, integrity, confidentiality, and storage limitation.
Your data will thus be processed in accordance with the applicable legal provisions and confidentiality obligations therein.

Data Controller

The Data Controller is B-HSE, with registered office at Corso d’Italia, 29 – 00187 Rome, Italy.
Any inquiries may be addressed to this physical address or via email at: info@b-hse.law.

Types of Data Processed

Personal Data refers to any information relating to an identified or identifiable natural person, such as a name, identification number, location data, online identifier, or other characteristics that identify a person’s physical, physiological, genetic, mental, economic, cultural, or social identity.

The Personal Data collected when browsing the website https://www.b-hse.it/ includes:

a) Browsing Data
The IT systems and software used for the operation of this website collect, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. This data is not collected to be associated with identified individuals, but by its very nature could allow users to be identified through processing and association with data held by third parties.

This category includes, among others: IP addresses or domain names of computers used by users, URI (Uniform Resource Identifier) addresses, request time, method used to submit the request to the server, file size of the response, numerical status codes (success, error, etc.), country of origin, browser characteristics, operating system used, time spent on each page, navigation path details, and technical parameters of the user’s operating system.
Such data is used solely for anonymous statistical purposes, to ensure proper functioning of the website, and to provide the functionalities requested by the user. They may be used to ascertain responsibility in case of potential cybercrimes against the site.

b) Data Voluntarily Provided by the User
By using the “Contacts” form or by directly contacting B-HSE through the contact details on the site, you may voluntarily provide personal information (such as name, surname, mobile number, email address, and request description).
B-HSE processes this data assuming it relates to you or third parties who have authorized you to provide it, with a suitable legal basis for processing. You act as an independent data controller for any third-party data, and by providing it, you fully indemnify B-HSE against any disputes or claims.

c) Cookies and Similar Technologies
B-HSE collects personal data through cookies. For more information, please refer to the cookie policy section.

Purpose of Data Processing

The personal data you provide through the website will be processed for the following purposes:

  • a) To fulfill contractual or pre-contractual obligations (e.g., information requests, quotes, service inquiries related to B-HSE’s activities).
  • b) To perform statistical research or analysis on aggregated or anonymized data, aimed at measuring site performance and usability, without identifying users.
  • c) To comply with legal obligations or to establish, exercise, or defend legal claims.

Legal Basis for Data Processing

  • For purpose a), the legal basis is the execution of a service you requested; therefore, consent is not required.
  • Purpose b) does not involve personal data processing.
  • For purpose c), processing is legitimate as it is necessary to fulfill a legal obligation.

Provision of Data

Providing personal data is optional, but failure to do so may prevent B-HSE from responding to your requests.

Parties with Access to Data

Personal data may be accessed by:

  • Entities necessary for providing website services (such as site analysis), as data processors;
  • Individuals authorized by B-HSE who are committed to confidentiality (e.g., employees, collaborators);
  • Third-party companies providing outsourced services (e.g., web providers, IT support, professional firms, couriers);
  • Judicial authorities if required by law.

Data will not be publicly disseminated.

Data Processing Methods

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of personal data.
Processing is carried out via electronic and telematic tools, following organizational methods strictly related to the stated purposes.

Automated Decision-Making

There are no automated decision-making processes, including profiling.

Data Retention Period

Personal data collected during website navigation will be stored as long as necessary for the purposes outlined. Data will be retained for the periods required by law and in any case no longer than 10 years after the termination of the relationship.

Data Processing Location

Data is processed at the Controller’s operational offices and any other locations of the parties involved in the processing. No data is transferred outside the European Union.

Data Subject Rights

You may exercise the following rights at any time under Articles 15 to 22 of GDPR 2016/679:

  • Confirm whether personal data concerning you exists;
  • Access information on processing purposes, data categories, and recipients;
  • Request rectification or deletion of data;
  • Request restriction of processing;
  • Obtain data portability;
  • Object to processing at any time, including for direct marketing purposes;
  • Withdraw consent without affecting prior lawful processing;
  • Lodge a complaint with a supervisory authority.

Requests should be sent to: info@b-hse.law

Minors

This site and its services are not intended for individuals under 18 years of age, and B-HSE does not knowingly collect personal data from minors. If such data is unintentionally collected, it will be promptly deleted.

Privacy and Cookie Policy Updates

Users are encouraged to regularly check this privacy and cookie policy for any updates or minor changes, as the policy is always available on the website.