INFORMATION NOTICE PURSUANT TO ARTICLES 13-14 OF THE GDPR (GENERAL DATA PROTECTION REGULATION) 2016/679

[Company Name], VAT No. [VAT Number], in its capacity as Data Controller, informs you that your personal data will be processed in the manner and for the purposes outlined below.

The Data Controller is committed to protecting the privacy and confidentiality of your personal data in accordance with the principles of fairness, lawfulness, transparency, and the protection of your rights.

1) TYPES OF DATA PROCESSED

We process personal data provided by you (name, email, company name, phone number, etc.) when submitting spontaneous inquiries and data collected automatically via our website.

Data you provide:
Personal, identifying, and non-sensitive data you provide when making inquiries via email, contact form, or by phone regarding our products/services.

Data we collect automatically:
Anonymous data collected using cookies or similar technologies. For more information, please refer to the Cookie Policy below.

Note: Users under the age of 16 are not allowed to provide any personal data without the consent of their parents or legal guardians.

2) PURPOSES AND LEGAL BASES FOR PROCESSING

We process your personal data for the following purposes:

A) To fulfill our contractual obligations; respond to your requests for information; provide a quote you requested; execute sales or service agreements; and provide support regarding purchased products and services.

B) To carry out aggregated and anonymous statistical analyses to improve our services.

C) For administrative purposes and to comply with legal obligations (e.g., accounting, tax, or judiciary requirements).

D) In case of curriculum vitae submissions, exclusively for recruitment and selection purposes.

3) IS PROVIDING DATA MANDATORY?

Providing your data is always optional. However, failure to do so may make it impossible to carry out certain operations, such as fulfilling a contract or providing the services you requested.

4) LOCATION, PROCESSING METHODS, AND DATA RETENTION

The processing of your personal data involves operations as defined by Art. 4 of the Privacy Code and Art. 4 no. 2 of the GDPR, such as collection, recording, organization, storage, consultation, processing, modification, selection, retrieval, comparison, use, interconnection, restriction, communication, erasure, and destruction.

Your personal data is stored at the Data Controller’s premises and processed both on paper and electronically/automatically, using methods strictly related to the purposes mentioned and in a way that ensures data security and confidentiality. Data submitted by you is not stored on our website.

The Data Controller will retain your data for the time necessary to achieve the purposes listed above, and in any case:

  • No longer than 10 years after the end of the relationship (purpose C),

  • No longer than 38 months from collection (purpose B).

5) ACCESS TO DATA

Your data may be made accessible, for the purposes outlined in section 2:

  • To employees and collaborators of the Data Controller, in their capacity as internal data processors and/or system administrators;

  • To third-party companies or individuals (website providers, cloud providers, e-payment providers, suppliers, IT technicians, couriers, banks, professional firms, etc.) performing outsourced services on behalf of the Data Controller, as designated data processors.

6) DATA TRANSFER

Your data will not be disclosed, sold, or exchanged with subjects other than the Data Controller, its designated processors, or authorized personnel without your explicit and informed consent.

7) YOUR RIGHTS

You have the right to know what personal data we hold and how we process it. Specifically, you have the right to access, rectify, delete, and transfer your data, as well as to limit or object to processing under certain conditions.

Here is a brief overview of your rights:

  • Right of access: Know whether your data is being processed and access related information.

  • Right of rectification: Correct inaccurate data and complete incomplete data without undue delay.

  • Right to erasure (“right to be forgotten”): Delete your data when no longer necessary, unless legally required to retain it.

  • Right to data portability: Receive your data in a structured, commonly used, machine-readable format and transfer it to another controller, where applicable.

  • Right to restriction of processing: Limit processing under specific circumstances (e.g., when data accuracy is contested).

  • Right to object: Object to processing on legitimate grounds, unless the Controller has overriding reasons to continue.

To learn more or exercise your rights, feel free to contact us.

8) CHANGES TO THIS PRIVACY NOTICE

This privacy notice may be subject to changes. You are advised to check it regularly and refer to the most recent version.

Last update: October 2024

Back To Top