GKSD S.r.l. (hereinafter, “GKSD”), is an investment company whose main focus is the field of healthcare provision, hospital support, construction, monitoring, advisory, insurance assessment and legal & fiscal services.
GKSD considers the protection of the personal data of its and/or customers to be of fundamental importance, ensuring that the processing of personal data, carried out in any manner, whether automated or manual, takes place in full compliance with the safeguards and rights recognized by the EU Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016, relating to the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data (hereinafter the "Regulation").
GKSD - with registered office in Via Senato 12 – Milan, 20121 – Italy in the person of the actual legal representative, assumes the role of Data Controller (hereinafter "Data Controller") according to the relevant definition in article 4 at point 7 of the Regulation, " ‘controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law”.
For the purposes of compliance with the aforementioned legislation on privacy, the Data Controller indicates the following e-mail address for the appropriate communications: email@example.com.
Your data may be shared with:
Type of data processed and purposes of the processing relating to navigation on the Website
The website http://www.gksdholding.com offers informative and, sometimes, interactive contents. While browsing the WebSite, information about the user can then be acquired in the following ways:
The computer systems and software procedures used to operate the Web Site may acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes: IP addresses, the type of browser used, the operating system, the domain name and the addresses of websites from which access or exit was made, information on the pages visited by users within the Web Site, the access time, the stay on the single page, the analysis of the internal path and other parameters relating to the operating system and the user's IT environment. These technical / IT data are collected and used exclusively in an aggregate and non-identifying manner and could be used to ascertain responsibility in the event of hypothetical computer crimes against the Web Site.
Data provided voluntarily by the user
The personal data expressly provided by the users will be communicated to third parties only if the communication is necessary to fulfil the users' requests.
Legal basis and Purposes of processing
The Data Controller processes personal data deriving from the navigation of the Web Site and those that the user has voluntarily provided in connection with the use of the Web Site itself.
In particular, personal data may be used for the following purposes and in accordance with the following legal bases:
Methods of data processing
The processing of personal data is carried out mainly using electronic procedures and media, without excluding manual processing, for the time strictly necessary, in accordance with article 5 of the Regulation.
Personal data will be processed by the Data Controller limited to what is necessary for the pursuit of the described purposes. In particular, personal data will be processed for a period of time equal to the minimum necessary, as indicated by Recital 39 of the Regulation.
Personal data is stored on servers located within the European Union. These servers are owned by GKSD [Nota: confermare o modificare come opportuno].
The Data Controller may transfer the personal data collected outside the EU. In this case, the Data Controller ensures from now on that the transfer of data outside the EU will take place after signing the standard contractual clauses adopted by the European Commission and, in any case, in accordance with the applicable data protection law.
GKSD uses your data to ensure an efficient response to the requests you have made. The provision of your data for this purpose is optional, but failure to provide them could make it impossible to provide the requested services.
Your personal data are processed by the indicated subjects, in accordance with the provisions of current legislation. In particular, to ensure the security of your data taking into account the state of the art and the implementation costs, as well as the nature, object, context and purposes of the processing, as well as the risk of varying probability and severity for rights and freedoms of our users, we have adopted appropriate technical and organizational measures to ensure a level of security appropriate to the risk.
The storage of personal data will take place in paper and / or electronic form and for the time strictly necessary to pursue the indicated purposes.
With reference to the processing of data relating to the provision of the requested services, we inform you that we will process your data for the time strictly necessary to process your request.
Redirect to external sites
The Website could use the so-called social plug-in. Social plug-ins are special tools that allows to incorporate the features of the social network directly within the website (eg the "like" function of Facebook).
All social plug-ins on the Web Site are marked with the respective logo owned by the social network platform.
When you visit a page of the Web Site and interact with the plug-in (eg by clicking the "like" button) or decide to leave a comment, the corresponding information is transmitted from the browser directly to the social network platform (in this case Facebook) and stored by it.
Link to / from third party sites
From the Web Site it is possible to connect through specific links to other third-party websites.
In this regard, in no way can the Data Controller be held responsible for any management of personal data by third party websites and for the management of authentication credentials provided by third parties.
Rights of the data subjects
As foreseen by article 15 of the Regulation, the data subject can access their personal data, request their correction and updating, if incomplete or incorrect, request their cancellation if the collection took place in violation of a law or regulation, as well as oppose to the processing for legitimate and specific reasons.
In particular, we list below all the rights that can be exercised, at any time, towards the Data Controller and / or the joint Data Controllers:
Right of access: the right, pursuant to article 15, paragraph 1 of the Regulation, to obtain from the Data Controller confirmation that personal data is being processed or not and, in this case, to obtain access to such personal data and the following information: