INFORMATION ON THE PROCESSING OF PERSONAL DATA

Pursuant to art. 13 of EU Regulation 679/2016 containing provisions for the protection of individuals and regarding the processing of personal data, we wish to inform you that the personal data provided by you will be processed in compliance with the aforementioned legislation

DATA CONTROLLER

The data controller is CSZ srl Via Dante Alighieri, 1/B 36013 Piovene Rocchette VI – Italy, hereinafter “Data Controller”

PURPOSE OF THE TREATMENT

Your personal data is processed for the following purposes:

  1. manage relationships and commercial contacts, exchange of information and documents
  2. fulfill pre-contractual, contractual and tax obligations deriving from existing relationships
  3. fulfill the obligations established by law, by a regulation, by community legislation or by an order of the Authority
  4. exercise the rights of the Owner, for example the right of defense in court

OBJECT OF THE TREATMENT

The Data Controller processes personal, identifying and non-sensitive data (by way of example but not limited to: name, surname, company name, address, telephone, e-mail, social network account, etc.) communicated by you during meetings, work and professional relationships, receipt of mail, emails, telephone calls, faxes, public documents, invitations, website, etc.

TREATMENT METHODS

The processing of your personal data is carried out by means of the operations indicated in the art. 4 p. 2 of the GDPR and precisely: collection, recording, organisation, conservation, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data.
Your personal data is subjected to both paper and electronic and/or automated processing in compliance with EU regulation 679/2016 with logic that guarantees data confidentiality and security also understood in the sense of integrity and availability

RECIPIENTS OF PERSONAL DATA

Your data may be made accessible to employees and collaborators of the Data Controller, in their capacity as internal data processors and/or managers and to third-party associations or third-party companies or other subjects (for example: credit institutions, professional firms, tax consultants , law firms, labor consultants, IT consultants, etc.) who carry out outsourced activities on behalf of the Data Controller, in their capacity as external data controllers. The list of recipients of personal data is available from the data controller.

TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES

The management and storage of personal data will take place within the territory of the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the data also to non-EU countries. In this case, the Data Controller hereby ensures that the transfer of non-EU data will take place in compliance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses envisaged by the European Commission.

PERIOD OF CONSERVATION OF PERSONAL DATA

The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes and in any case for no longer than 10 years from the termination of the relationship (if required by tax or legal obligations) unless otherwise requested by the interested party.

RIGHTS OF THE INTERESTED PARTY

In your capacity as an interested party, you have the right referred to in the art. 15 of the GDPR and precisely the rights of:

  • obtain confirmation of the existence or otherwise of personal data concerning you, even if not yet registered, and their communication in an intelligible form;
  • get the indication:
  1. the origin of the personal data;
  2. of the purposes and methods of processing;
  3. of the logic applied in case of processing carried out with the aid of electronic instruments;
  4. of the identification details of the owner, managers and the representative designated pursuant to the art. 5, paragraph 2 Privacy Code and art. 3, paragraph 1, GDPR;
  5. of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them as designated representatives in the territory of the State, managers or agents;
  • obtain:
  1. updating, rectification or integration of data;
  2. the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed;
  3. the certification that the operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible or involves the use of means that are manifestly disproportionate to the protected right;
  • object, in whole or in part for legitimate reasons, to the processing of personal data concerning you, even if pertinent to the purpose of the collection.

Where applicable, you also have the rights referred to in the articles. 16-21 GDPR (Right of rectification, right to be forgotten, right to limit processing, right to data portability, right to object), as well as the right to complain to the Guarantor Authority.

You may exercise the above rights at any time by sending a written communication

CSZ srl Via Dante Alighieri, 1/B 36013 Piovene Rocchette VI – Italy – Tel. 0445 550860 – 0445 559986 – email: info@cszsrl.com

NATURE OF THE PROVISION OF PERSONAL DATA

The provision of data is necessary to fulfill the contractual obligations signed and optional for the purposes referred to in point a). Failure to provide data leads to the impossibility of fulfilling the interested party’s requests, contractual obligations and the possibility of communications of any kind.