INFORMATION ON PRIVACY
In accordance with European Regulation 2016/679
Rev. 0 of May 25, 2018
Dear Data Subject, We wish to inform you that European Regulation 2016/679 relating to the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as the General Data Protection Regulation, or “GDPR”) provides for the protection of persons and others with regard to the processing of personal data. Our organization, in its capacity as the controller of the processing in accordance with Article 13 of the GDPR, hereby provides you with the following information:
CONTROLLER OF THE PROCESSING: The controller of the processing is Essepi srl – Viale Degasperi, 1/a – I-38073 Cavedine TN Italy, Italian tax ID no. and VAT no. 01572950226, reachable by telephone at +39 0461569199, e-mail address info@essepi.it.
CATEGORIES OF DATA: The controller of the processing shall process the personal data and/or details that are strictly necessary for carrying out the activities that are related to the work that is requested and to the obligations of a physical nature and of other mandatory laws.
SOURCES OF PERSONAL DATA: The personal data of which the controller shall be in possession are collected at the time of the execution of the work/service/sale that is requested.
PURPOSE OF THE PROCESSING OF THE DATA AND LEGAL BASIS: The legal basis of the processing of your data, collected information, and files is your consent and is carried out for the following purposes: management of customers and suppliers, internal control and analysis services, management of technical consultation, assistance, and support services, the sending of communications of an informational, business, accounting, or tax nature, recovery of credits, management of activities relating to service requests, and contractual obligations.
RECIPIENTS OF THE DATA: Within the limits that are pertinent to the purposes of the indicated processing, your data may be communicated to partners, consulting companies, consultants, attorneys, companies or public agencies, banks, insurance companies, and processors who have been appointed by the controller of the processing. Your data shall not be the subject of circulation in any way. The processors and those appointed for the processing are identified in detail in the document for the management of company data which is updated at least at the end of every year.
TRANSFER OF THE DATA ABROAD: The data that are collected may be the subject of transfer beyond the European Union solely in countries in which a provision of suitability is in force in accordance with the standards in force in that regard.
STORAGE PERIOD: The data that are collected shall be stored for a period of time for no longer than is necessary for the purposes for which the personal data are processed (“principle of storage limitation”, Art. 5 of the GDPR) and/or on the basis of the expirations that are provided by the provisions in force and/or on the basis of specific requests. The examination of the obsolescence of the data that is stored with regard to the purposes for which they were collected shall be carried out at least at the end of every year.
RIGHTS OF THE DATA SUBJECT: The data subject shall always have the right to request from the controller access to his or her data, the correction or deletion of it, the limitation of the processing or the possibility to oppose the processing, the portability of the data, and to revoke the consent to the processing by asserting this and other rights that are provided by the GDPR by means of a simple communication to the controller. The data subject may also lodge a complaint to a controlling authority.
COMPULSORY PROVIDING OF THE DATA: You are hereby informed that providing the data that are requested/acquired is indispensable for carrying out the obligations as indicated above, and that the absence of the consent to process them may lead to the inability to fulfill the contract.
AUTOMATED PROCESSES: The data that are collected shall not be the subject of automated processes such as profiling.
METHOD OF TRANSFERRING THE DATA: The personal data provided by you form the subject of processing operations with regard to the provisions as indicated above and of obligations for confidentiality that are prompted by the activities of the controller. The data shall be processed both with computer tools and on paper support or on any other suitable type of support with respect to suitable technical measures and organizational security measures as provided by the GDPR.
Privacy disclosure – acquiring data on the web
In accordance with European Regulation 2016/679
Rev. 0 of May 25, 2018
Dear Data Subject, We wish to inform you that European Regulation 2016/679 relating to the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as the General Data Protection Regulation, or “GDPR”) provides for the protection of persons and others with regard to the processing of personal data. Our organization, in its capacity as the controller of the processing in accordance with Article 13 of the GDPR, hereby provides you with the following information:
CONTROLLER OF THE PROCESSING: The controller of the processing is Essepi srl – Viale Degasperi, 1/a – I-38073 Cavedine TN Italy, Italian tax ID no. and VAT no. 01572950226, reachable by telephone at +39 0461569199, e-mail address info@essepi.it.
CATEGORIES OF DATA: The controller of the processing shall process the personal data and/or details that you have entered in the relevant web space exclusively in order to respond to/fulfill the request that was made.
SOURCES OF PERSONAL DATA: The personal data of which the controller is in possession have been provided independently by the data subject with the act of filling in the dedicated web space.
PURPOSE OF THE PROCESSING OF THE DATA AND LEGAL BASIS: The legal basis of the processing of your data, collected information, and files is your consent and is carried out for the following purposes: providing information and/or support services that are strictly tied to the request that was made.
RECIPIENT OF THE DATA: The data that are provided shall be processed exclusively by the controller of the processing and its appointees that are identified in detail.
TRANSFER OF THE DATA ABROAD: The data that are collected may be the subject of transfer beyond the European Union solely in countries in which a provision of suitability is in force in accordance with the standards in force in that regard.
STORAGE PERIOD: The data that are collected shall be stored for a period of time for no longer than is necessary for the purposes for which the personal data are processed and up to the notice of termination for the newsletter service (“principle of storage limitation”, Art. 5 of the GDPR). The examination of the obsolescence of the data that is stored with regard to the purposes for which they were collected shall be carried out periodically.
RIGHTS OF THE DATA SUBJECT: The data subject shall always have the right to request from the controller access to his or her data, the correction or deletion of it, the limitation of the processing or the possibility to oppose the processing, the portability of the data, and to revoke the consent to the processing by asserting this and other rights that are provided by the GDPR by means of a simple communication to the controller. The data subject may also lodge a complaint to a controlling authority.
COMPULSORY PROVIDING OF THE DATA: You are hereby informed that providing the data is optional for some fields, while for others (denoted with an asterisk) it is mandatory, and that the absence of the provision of the mandatory data may lead to the request NOT being sent.
COMPULSORY CONSENT: The presentation of the consent for the processing of data by means of checking the relevant box is optional, but it is indispensable in order to proceed with the sending of the request.
METHOD OF TRANSFERRING THE DATA: The personal data provided by you form the subject of processing operations with regard to the provisions as indicated above and of obligations for confidentiality that are prompted by the activities of the controller. The data shall be processed both with computer tools and on paper support or on any other suitable type of support with respect to suitable technical measures and organizational security measures as provided by the GDPR.
