Privacy Policy

A&F S.r.l. Soci­età tra Pro­fes­sion­isti (A&F) accord­ing to art. 13 of EU Reg­u­la­tion 2016/679 (GDPR) pro­vides infor­ma­tion on the type and extent of the pro­cess­ing of per­son­al data car­ried out by the web­site https://www.advisoryandfinance.com/ (Web­site) to those who inter­act with the ser­vices of the Web­site by con­sult­ing or using any avail­able ser­vices. Users must con­sult this pol­i­cy before com­mu­ni­cat­ing data to A&F. This pol­i­cy is not pro­vid­ed for oth­er web­sites that may be con­sult­ed by the user via links. The ser­vices pro­vid­ed by this web­site are restrict­ed to indi­vid­u­als over the age of 18, so if A&F checks that the data has been sent by a minor, it will can­cel it.

Data Controller

A&F S.r.l. Soci­età tra Pro­fes­sion­isti based in Via Statu­to 10, 20121 Milan. Tel.: +390258459177 Fax: +390258459170, email: info@advisoryandfinance.com.

Browsing Data

IT sys­tems and soft­ware pro­ce­dures used to oper­ate the Web­site acquire, dur­ing their nor­mal oper­a­tion, some per­son­al data whose trans­mis­sion is implic­it in the use of Inter­net com­mu­ni­ca­tion pro­to­cols. This infor­ma­tion is not col­lect­ed in order to be asso­ci­at­ed with iden­ti­fied inter­est­ed par­ties, but by its nature it could allow to iden­ti­fy users, through pro­cess­ing and asso­ci­a­tion with data held by third par­ties. This cat­e­go­ry of data may include the IP address­es or domain names of the com­put­ers used by the users con­nect­ing to the Web­site, the URI (Uni­form Resource Iden­ti­fi­er) address­es of the request­ed resources, the time of the request, the method used to sub­mit the request to the serv­er, the size of the file obtained in response, the numer­ic code indi­cat­ing the sta­tus of the response giv­en by the serv­er (suc­cess, error, etc.) and oth­er para­me­ters relat­ing to the oper­at­ing sys­tem and the user’s IT envi­ron­ment. This data could be used to obtain anony­mous sta­tis­ti­cal infor­ma­tion on the use of the Web­site and to check its cor­rect func­tion­ing and are delet­ed imme­di­ate­ly after pro­cess­ing. The same data could be used to ascer­tain respon­si­bil­i­ty in the event of com­put­er crimes against the Web­site: except for this pos­si­bil­i­ty, data on web con­tacts are not kept for more than sev­en days.

Data voluntarily provided

When uti­liz­ing some ser­vices of the Web­site, the user could send data of third par­ties. In these cas­es the user acts as an inde­pen­dent data con­troller, assum­ing all the oblig­a­tions and respon­si­bil­i­ties pro­vid­ed for by law: he is there­fore required to: 1) guar­an­tee (assum­ing the rel­a­tive respon­si­bil­i­ties) that the treat­ment is based on one of the legal bases pro­vid­ed by art. 6 of the GDPR; 2) relieve A&F in case of dis­pute or request for com­pen­sa­tion of data pro­cess­ing dam­age by third par­ties whose data have been processed by the user using the func­tions of the Web­site in vio­la­tion of data pro­tec­tion reg­u­la­tions. The data (name, address, con­tact details etc.) shared vol­un­tar­i­ly, for exam­ple in a request sent by e-mail to the address­es indi­cat­ed on the Web­site, they are processed only to reply to users’ requests. The legal basis of the treat­ment is Arti­cle 6 par. 1 let. b) of the GDPR as the treat­ments are nec­es­sary to pro­vide ser­vices and / or respond to the user’s requests (exe­cu­tion of pre-con­trac­tu­al and / or con­trac­tu­al ser­vices). The user is oblig­ed to com­mu­ni­cate only the nec­es­sary data. The pro­vi­sion of data for these pur­pos­es is option­al and fail­ure to pro­vide it makes it impos­si­ble to acti­vate the ser­vices request­ed. If the user con­fers his data that fall under the “spe­cial cat­e­gories of data” (art. 9 of the GDPR: data suit­able to reveal the racial or eth­nic ori­gin, polit­i­cal opin­ions, reli­gious, philo­soph­i­cal beliefs, trade union mem­ber­ship, genet­ic data , bio­met­ric data, data relat­ing to health, sex­u­al life or sex­u­al ori­en­ta­tion), must com­mu­ni­cate such data only if strict­ly nec­es­sary. It should be not­ed that in case of dis­clo­sure of par­tic­u­lar cat­e­gories of data but in the absence of an explic­it con­sent to process such data (which in any case obvi­ous­ly allows them to send a cur­ricu­lum vitae), A&F can­not be held liable in any way, nor may receive any objec­tion, since in this case the treat­ment will be allowed as hav­ing as object the data made man­i­fest­ly pub­lic by the inter­est­ed par­ty (art. 9 para­graph 2) lett. e) of the GDPR). In any case, the impor­tance of the user express­ing his explic­it con­sent to the pro­cess­ing of par­tic­u­lar cat­e­gories of data in the event he decides to com­mu­ni­cate them is under­lined. Data is kept for n. 1 year. Please refer to what spec­i­fied in the sec­tions User rights and Data recip­i­ents.

Job Offers

Data col­lect­ed through A&F Job Offers is processed in order to eval­u­ate can­di­dates’ pro­fes­sion­al pro­file and to set job inter­views. Can­di­dates are required to com­mu­ni­cate only the nec­es­sary data. Data pro­cess­ing is based on the exe­cu­tion of pre-con­trac­tu­al mea­sures adopt­ed at the request of the can­di­dates (Arti­cle 6 n. 1 let­ter b) of the GDPR). In case of trans­mis­sion of spe­cial cat­e­gories of per­son­al data (art. 9 of the GDPR as described above) but in the absence of an explic­it con­sent to process such data, A&F can­not be held respon­si­ble nor can it receive any dis­pute since in the afore­men­tioned case the pro­cess­ing will be law­ful as hav­ing as object data made man­i­fest­ly pub­lic by the inter­est­ed par­ty (art. 9 n. 1 let­ter e) of the GDPR). In any case, we under­line the impor­tance of express­ing explic­it con­sent to the pro­cess­ing of par­tic­u­lar cat­e­gories of per­son­al data, if can­di­dates decide to share them. The com­mu­ni­ca­tion of data is a fac­ul­ty of the can­di­dates, the refusal to sup­ply it makes it impos­si­ble to eval­u­ate their pro­files. If A&F is not inter­est­ed in the pro­fes­sion­al pro­file, it deletes the data it has just received or at the end of the inter­view; if, instead, it is inter­est­ed in the pro­fes­sion­al pro­file but no type of employ­ment rela­tion­ship is estab­lished, it keeps the data for n. 1 year in order to be able to con­tact the can­di­date in the future for oth­er pos­si­ble job inter­views. In the event of the estab­lish­ment of an employ­ment rela­tion­ship, a spe­cif­ic pri­va­cy state­ment will be pro­vid­ed. Please refer to what is spec­i­fied in sec­tions User rights and Data Recip­i­ents.

Applications

Data con­tained in the cur­ric­u­la sent to the address­es indi­cat­ed on the Web­site is treat­ed to eval­u­ate the pro­fes­sion­al pro­file of the can­di­date and set any job inter­views. The user is oblig­ed to com­mu­ni­cate only data con­sid­ered nec­es­sary. Data pro­cess­ing is based on the exe­cu­tion of pre-con­trac­tu­al mea­sures adopt­ed at the request of the user (Arti­cle 6 n. 1 let­ter b) of the GDPR). In case of trans­mis­sion of spe­cial cat­e­gories of per­son­al data (art. 9 of the GDPR as described above) but in the absence of an explic­it con­sent to process such data, A&F can­not be held respon­si­ble nor can it receive any dis­pute since in the afore­men­tioned case the pro­cess­ing will be law­ful as hav­ing as object data made man­i­fest­ly pub­lic by the inter­est­ed par­ty (art. 9 n. 1 let­ter e) of the GDPR). In any case, we under­line the impor­tance of express­ing explic­it con­sent to the pro­cess­ing of par­tic­u­lar cat­e­gories of per­son­al data, if the user decides to share them. The com­mu­ni­ca­tion of data is a fac­ul­ty of the users: the refusal to sup­ply it implies the impos­si­bil­i­ty to send one’s own cur­ricu­lum. If A&F is not inter­est­ed in the pro­fes­sion­al pro­file, it deletes the data it has just received imme­di­ate­ly or at the end of the inter­view; if, instead, it is inter­est­ed in the pro­fes­sion­al pro­file but no type of employ­ment rela­tion­ship is estab­lished, it keeps the data for n. 1 year in order to be able to con­tact the can­di­date in the future for oth­er pos­si­ble job inter­views. In the event of the estab­lish­ment of an employ­ment rela­tion­ship, a spe­cif­ic pri­va­cy state­ment will be pro­vid­ed. Please refer to what is spec­i­fied in sec­tions User rights and Data recip­i­ents. Data is col­lect­ed through the web por­tal on which the A&F job offer is pub­lished. Can­di­dates are required to envi­sion the pri­va­cy state­ment pro­vid­ed by the inde­pen­dent data con­troller of this web por­tal.

Data Recipients

Users’ data can be shared with: 1) sub­jects with whom it is nec­es­sary to inter­act for the pro­vi­sion of ser­vices (ex: host­ing providers, sub­jects that man­age the con­tents of the Web­site) that act as man­agers of the treat­ment pur­suant to art. 28 of the GDPR (the list of data proces­sors may be request­ed from A&F); 2) sub­jects, bod­ies or author­i­ties, autonomous data con­trollers, to whom it is manda­to­ry to com­mu­ni­cate user data in accor­dance with legal pro­vi­sions or orders from the author­i­ties; 3) per­sons autho­rized to process data pur­suant to art. 29 of the GDPR nec­es­sary to car­ry out activ­i­ties relat­ed to the pro­vi­sion of the ser­vices pro­vid­ed (ex. the A&F staff).

Storage of Data

Data is processed for the time nec­es­sary to ful­fill con­trac­tu­al and legal oblig­a­tions, in the spec­i­fied stor­age peri­ods. Addi­tion­al infor­ma­tion can be request­ed by writ­ing to A&F.

Users’ Rights

Pur­suant to arti­cles 15 (and fol­low­ing) of the GDPR, users have the right to request, at any time, access to their per­son­al data, rec­ti­fi­ca­tion or can­cel­la­tion of the same, lim­i­ta­tion of pro­cess­ing in the cas­es pro­vid­ed for by art. 18 of the GDPR, to obtain their data in a struc­tured for­mat, com­mon­ly used and read­able by an auto­mat­ic device, in the cas­es pro­vid­ed for by art. 20 of the GDPR, to lodge a com­plaint with the com­pe­tent con­trol author­i­ty pur­suant to Arti­cle 77 of the GDPR (Guar­an­tor for the Pro­tec­tion of Per­son­al Data) pur­suant to art. 77 of the GDPR, if they believe that the pro­cess­ing of data is con­trary to the law, for­mu­late a rea­soned request in oppo­si­tion to the pro­cess­ing of data pur­suant to Arti­cle 21 of the GDPR. A&F has the right to eval­u­ate requests which would not be accept­ed in the event of the exis­tence of legit­i­mate and bind­ing rea­sons for pro­ceed­ing with the pro­cess­ing that pre­vail over the inter­ests, rights and free­doms of the users. Requests should be made in writ­ing to A&F.

Cookies

Cook­ies are data-files that web­sites send to users’ inter­net devices, usu­al­ly to browsers, where they are stored and retrans­mit­ted to the same web­sites at the next user vis­it. Cook­ies can be: 1) tech­ni­cal (they guar­an­tee the usabil­i­ty of the web­sites, allow you to select para­me­ters in brows­ing and to log in); 2) pro­fil­ing (uti­lized for send­ing pro­mo­tion­al mes­sages based on the pref­er­ences shown by users on brows­ing choic­es); 3) of third par­ties (not installed by the web­sites that users vis­it but by third-par­ty web­sites that install them on the first ones). Cook­ies can dis­ap­pear when the brows­er is closed (ses­sion cook­ies) or can remain in users’ devices for a cer­tain peri­od of time until their set expiry (per­sis­tent cook­ies). Users can always choose which cook­ies to allow on their devices through brows­er con­fig­u­ra­tions:

If tech­ni­cal cook­ies are dis­abled, users may encounter dif­fi­cul­ty con­sult­ing the web­site or some of the website’s ser­vices may not be avail­able. For the uti­liza­tion of tech­ni­cal cook­ies, users’ con­sent is not nec­es­sary as these cook­ies are used to trans­mit a com­mu­ni­ca­tion over an elec­tron­ic net­work or to pro­vide a ser­vice request­ed by the user. A&F Web­site uti­lizes a tech­ni­cal cook­ie that stores the lan­guage cho­sen by users and expires after n. 1 year. No pro­fil­ing cook­ies or third-par­ty cook­ies are used (ex. Google Ana­lyt­ics or oth­er domain cook­ies). Please refer to what spec­i­fied in sec­tions User rights and Data recip­i­ents.

Copyright

The con­tent of the Web­site, includ­ing A&F logo, data, infor­ma­tion, com­mu­ni­ca­tions, edi­to­r­i­al con­tent, soft­ware, pho­tos, videos, graph­ics, music, draw­ings, sounds and in gen­er­al any mate­r­i­al and ser­vice there­in, unless oth­er­wise indi­cat­ed, is owned by A&F and is pro­tect­ed under the laws on copy­right and indus­tri­al prop­er­ty rights. Any trade­marks men­tioned on the Web­site for infor­ma­tion­al, edu­ca­tion­al or didac­tic pur­pos­es belong to their respec­tive own­ers.

Amendments

A&F reserves the right to change the con­tent of this pol­i­cy also due to changes in the law and invites users to view them peri­od­i­cal­ly to keep up to date with the data col­lect­ed and the relat­ed use made by A&F.