INFORMATION NOTICE REGARDING THE PROCESSING OF USERS’ PERSONAL DATA ACCORDING TO EU REGULATION 2016/679 (“GDPR”) – “CONTACT US”
- DATA CONTROLLER
Via Saliceto 15, 40010 Bentivoglio (BO)
- DATA PROCESSING PURPOSE
The data provided by completing the form will be processed by the Company to deal with request for information on the same Company and/or its products/services
Legal basis for data processing
Performance of the contract involving the data subject
Data retention period
Such data will be retained for 90 days to meet requests for information.
After the above retention terms have expired, the Data will be destroyed, erased or anonymized, consistent with the technical procedures of erasure and backup.
- DATA PROVISION COMPULSORINESS
The provision of the data requested in the data collection form is required to provide the information requested, therefore failing to provide such data will not allow the Company to fulfill the request.
- DATA RECIPIENTS
Personal data may be communicated to parties acting as data controllers (such as supervisory bodies and authorities and public organisations authorised to request data) or processed on behalf of the Company by parties appointed as data processors, who are provided with suitable operating instructions. These parties include the following categories:
a) companies providing management and/or maintenance services for the Company’s website;
b) companies offering mailing services.
- PARTIES AUTHORISED TO PROCESS DATA
Data may be processed by employees in company departments who are responsible for carrying out the activities outlined above and have been authorised to process the data and have received suitable operating instructions
- PERSONAL DATA TRANSFERS OUTSIDE THE EU
The data may be transferred to non-EU Countries, in particular to:
a) Extra UE Countries whose data protection level is deemed adequate by the European Commission in accordance with article 45 of the GDPR;
b) Extra UE Countries other than those referred to in the preceding paragraph a), after signing Standard Contractual Clauses adopted/approved by the European Commission in accordance with article 46, 2, letters c) and d) of the GDPR.
A copy of the above mentioned safeguards can be obtained sending a specific request to the Controller, according to the modalities specified in the following paragraph “Data Subject’s rights – Complaint to the Supervisory Authority”.
- DATA SUBJECTS’ RIGHTS – COMPLAINT TO THE SUPERVISORY AUTHORITY
By contacting the Company via e-mail sent to firstname.lastname@example.org, data subjects can require the Controller to access personal data, as well as the correction or deletion of personal data, and are also entitled to restrict processing of such data in the cases set out in article 18 GDPR, and object the processing in case of legitimate interests of the Controller
Furthermore, in the case where processing is based on consent or a contract and carried out with automated tools, data subjects have the right to receive the personal data in a structured, commonly used and machine-readable format, and to transmit the data to another data Controller without obstruction.
Data subjects have the right to lodge a complaint to the competent Supervisory Authority in the member state where they are resident or where they work, or the member state where the alleged breach took place.