Privacy Policy

Information for the processing of personal data

The company PICCHI SRL, with registered office at (25065) Lumezzane (BS), Via Ruca, n. 318, registered in the Brescia Companies Register R.E.A. n. BS - 300690, C.F. 01492950173 and VAT No. 00632680989, in the person of the legal representative pro tempore, Mr. Damiano Bugatti, (hereinafter, Picchi), as data controller (hereinafter, the Data Controller), informs, pursuant to art. 13 EU Regulation n. 2016/679 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of that data (hereinafter, the GDPR) that your data will be processed as indicated below.

Subject of the processing

The Data Controller processes your personal and identification data (name, surname, address, company name, registered office, tax code, VAT number, registration in the Business Register, telephone, email) (hereinafter, the Personal Data) communicated in case of:

  • Access to its premises;

  • Request of information through the website;

  • Stipulation of contracts;

  • Professional contacts.

Purpose of the processing

The processing of your Personal Data is carried out for purposes connected or instrumental to the execution of activities of:

  • Access control to its premises;

  • Answers formulation to the requests for information through the website;

  • Stipulation of contracts;

  • Establishment of commercial relations.

The provision of your Personal Data is mandatory for the pursuit of the purposes, as per the previous article 2.1 of this information. Therefore, in case of your refusal to provide Personal Data, the Data Controller will not be able to proceed with you to your premises access or to the stipulation of contracts or to the establishment of commercial relations.

Processing modalities

The processing of Personal Data means any operation or set of operations carried out with or without the aid of automated processes, referred to in the Article 4, n. 2) GDPR, namely the collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction. Your Personal Data are subject to both paper and electronic processing.

In order to fulfill the purposes referred to the article 2 of this information, the Data Controller will process his Personal Data indefinitely, guaranteeing the rights referred to the article 8 of this information, including the cancellation. In case of a cancellation request, your Personal Data will be destroyed and made anonymous.

Access to data

Your Personal Data may be made accessible to employees and collaborators of the Data Controller, as appointees and / or internal processing managers and / or system administrators.

Data communication

Without the need of an expressed consent pursuant to Article 6, b) and c) GDPR), the Data Controller may communicate your Personal Data to those individuals, to whom the communication is mandatory pursuant to the law (for example, Judicial Authority). These individuals will process the Personal Data as independent data controllers. Outside of the aforementioned obligations, your Personal Data will not be communicated to third parties separate from the Data Controller or from individuals to whom the access is guaranteed pursuant to article 4 of this information.

Rights of the involved person

The Data Controller grants you the following rights, i.e.,

  1. the right to obtain confirmation of the existence or not of your Personal Data, even if not yet registered, and their communication in an intelligible form;
  2. the right to obtain the indication of the origin of your Personal Data, of the purposes and methods of the processing, of the logic applied in case of treatment carried out with the aid of electronic instruments, of the identification details of the Data Controller, of the data processors and of any representative appointed pursuant to article 3, paragraph 1, GDPR, of the individuals or categories of individuals to whom your Personal Data may be communicated or who may come to know of it as appointed representatives in the territory of the State , of managers or appointees;
  3. the right to obtain 1) the updating, rectification that is, when interested, the integration of your Personal Data, 2) the cancellation, anonymization or blocking of your Personal Data processed in violation of law, including those for which conservation is not necessary in relation to the purposes for which they were collected or subsequently processed, 3) the attestation that the operations, referred to in numbers 1) and 2), have been brought to the attention, also with regard to their content of those to whom your Personal Data have been communicated or disseminated, except the event in which such fulfillment becomes impossible or requires the use of means manifestly disproportionate with respect to the protected right;
  4. the right to oppose, in whole or in part, for legitimate reasons to the processing of your Personal Data, even if pertinent to the purpose of the collection.

Where applicable, he may also exercise his rights of oblivion, of the limitation of processing, of the portability of your Personal Data as well as the right to complain to the Guarantor Authority.

Modalities of exercising his rights

In order to exercise his rights, he may at any time send a communication through registered letter to PICCHI SRL, with registered office at (25065) Lumezzane (BS), Via Ruca, n. 318, or by PEC at the address picchisrl@legalmail.it.

Data controller, responsible and appointees

The Data Controller is Picchi Srl. The updated list of data managers and data appointees is preserved in the Data Controller's registered office.

Changes to this information

This information may be subject to changes. It is your responsibility to check regularly your possible updates.

 

Lumezzane, 24th May 2018


 

Customer Information

Information for the processing of personal data

The company PICCHI SRL, with registered office at (25065) Lumezzane (BS), Via Ruca, n. 318, registered in the Brescia Companies Register R.E.A. n. BS - 300690, C.F. 01492950173 and VAT No. 00632680989, in the person of the legal representative pro tempore, Mr. Damiano Bugatti, (hereinafter, Picchi), as data controller (hereinafter, the Data Controller), informs, pursuant to art. 13 EU Regulation n. 2016/679 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of that data (hereinafter, the GDPR) that your data will be processed as indicated below.

Subject of the processing

The Data Controller processes your personal, identification and not sensitive data (name, surname, address, company name, registered office, tax code, VAT number, registration in the Business Register, telephone, email) (hereinafter, the Personal Data) communicated during the registration on the website of the Data Controller or/and the stipulation of commercial contracts.

Purposes of the processing

Your Personal Data are processed by the Data Controller without the need of express consent (art. 6 letter b-e GDPR) for the following purposes:

  • registration on the website;

  • management and maintenance of the website;

  • fulfillment of pre-contractual, contractual and fiscal obligations deriving from existing relationships;

  • fulfillment of the obligations established by law, by a regulation, by EU legislation or by an order of the Authority;

  • prevention or detection of fraudulent activity or malicious abuse of the website;

  • exercise of rights pertaining the Data Controller, for example the right of defense in court.

Processing methods

The processing of your Personal Data is carried out through operations indicated in the art. 4, n. 2) GDPR i.e. collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data.

Your Personal Data are subject to electronic and / or automated processing.

In order to fulfill the purposes referred to in the previous article 2 of this information, the Data Controller will process your Personal Data, for an indefinite period, guaranteeing you your rights, as per in the article 8 of this information, including the cancellation. In case of cancellation request, your Personal Data will be destroyed or made anonymous.

Access to data

Your Personal Data may be made accessible to employees and collaborators of the Data Controller, as appointees and / or internal processing managers and / or system administrators.

Data comunication

Without the need of an expressed consent pursuant to Article 6, b) and c) GDPR), the Data Controller may communicate your Personal Data to those individuals, to whom the communication is mandatory pursuant to the law (for example, Judicial Authority). These individuals will process the Personal Data as independent data controllers. Outside of the aforementioned obligations, your Personal Data will not be communicated to third parties separate from the Data Controller or from individuals to whom the access is guaranteed pursuant to article 4 of this information.

Data transfer

The management and storage of your Personal Data will take place on servers located within the European Union of the Data Controller and / or third party companies duly appointed and nominated as data processors. Currently the servers are located in Lumezzane (BS), Via Ruca, n. 318. Your Personal Data will not be transferred outside the European Union. In any case, it is established that the Data Controller, if necessary, will have the right to move the location of the servers in Italy and / or in the European Union and / or in Extra-EU countries. In this case, the Data Controller assures from now ,that the transfer of your Personal Data to Extra-EU countries will take place in accordance with the provisions of the GDPR.

Nature of data provision and consequences of refusal

The provision of Personal Data for the purposes referred to in Article 2.1, lett. a) of this information is mandatory. Otherwise, the Data Controller cannot guarantee the registration on the website or the stipulation of commercial contracts.

Rights of the involved person

The Data Controller grants you the following rights, i.e.,

  1. the right to obtain confirmation of the existence or not of your Personal Data, even if not yet registered, and their communication in an intelligible form;
  2. the right to obtain the indication i) of the origin of your Personal Data, ii)of the purposes and methods of the processing, iii) of the logic applied in case of treatment carried out with the aid of electronic instruments, iv)of the identification details of the Data Controller, of the data processors and of any representative appointed pursuant to article 3, paragraph 1, GDPR, v) of the individuals or categories of individuals to whom your Personal Data may be communicated or who may come to know of it as appointed representatives in the territory of the State , of managers or appointees;
  3. the right to obtain i) the updating, rectification that is, when interested, the integration of your Personal Data, ii) the cancellation, anonymization or blocking of your Personal Data processed in violation of law, including those for which conservation is not necessary in relation to the purposes for which they were collected or subsequently processed, iii) the attestation that the operations, referred to in numbers i) and ii), have been brought to the attention, also with regard to their content of those to whom your Personal Data have been communicated or disseminated, except the event in which such fulfillment becomes impossible or requires the use of means manifestly disproportionate with respect to the protected right;
  4. the right to oppose, in whole or in part, i) for legitimate reasons to the processing of your Personal Data, even if pertinent to the purpose of the collection.

Where applicable, he may also exercise his rights of oblivion, of the limitation of processing, of the portability of your Personal Data as well as the right to complain to the Guarantor Authority.

Modalities of exercising his rights

In order to exercise his rights, he may at any time send a communication through registered letter to PICCHI SRL, with registered office at (25065) Lumezzane (BS), Via Ruca, n. 318, or by PEC at the address picchisrl@legalmail.it.

Minors

The website and the services of the Data Controller are not intended to people under the age of 18 and the Data Controller does not intentionally collect personal information referred to minors. If information on minors is unintentionally registered, the Data Controller will cancel them.

Data controller, responsible and appointees

The Data Controller is Picchi Srl. The updated list of data managers and data appointees is preserved in the Data Controller's registered office.

Changes to this information

This information may be subject to changes. It is your responsibility to check regularly your possible updates.

 

Lumezzane, 24th May 2018


 

Research & Selection information

Information for the processing of personal data

The company PICCHI SRL, with registered office at (25065) Lumezzane (BS), Via Ruca, n. 318, registered in the Brescia Companies Register R.E.A. n. BS - 300690, C.F. 01492950173 and VAT No. 00632680989, in the person of the legal representative pro tempore, Mr. Damiano Bugatti, (hereinafter, Picchi), as data controller (hereinafter, the Data Controller), informs, pursuant to art. 13 EU Regulation n. 2016/679 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of that data (hereinafter, the GDPR) that your data will be processed as indicated below.

Subject of the processing

The Data Controller processes your personal and identification data (name, surname, address, telephone, email, curriculum vitae) (hereinafter, Personal Data) communicated in the field of the selection processes for the working positions.

Purpose of the processing

The processing of the Personal Data is carried out for purposes connected or instrumental to the execution of activities of candidates research and selection for the working positions opened from the Data Controller.

The provision of the Personal Data is mandatory for the pursuit of the purposes, as per the previous article 2.1 of this information. Therefore, the possible refusal to provide your Personal Data, might impede the execution of the research activity and selection from the Data Controller and do not allow the candidacy to be taken into consideration.

The processing of special categories of personal data (e.g. health status, membership to protected categories) requires your written consent. Failure to provide written consent will not allow to evaluate your candidacy. The Data Controller requests candidates, who have Personal Data falling into special categories, to send their curriculum vitae by post to the address indicated in the article 8 or through the website, with their explicit declaration of consent to the processing by the Data Controller. The Personal Data belonging to particular categories will be kept by the Data Controller in accordance with the law.

Processing modalities

The processing of Personal Data means any operation or set of operations carried out with or without the aid of automated processes, referred to in the Article 4, n. 2) GDPR, namely the collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction. Your Personal Data are subject to paper, electronic and/or automated processing.

In order to fulfill the purposes referred to the article 2 of this information, the Data Controller will process his Personal Data indefinitely, guaranteeing the rights referred to the article 7 of this information, including the cancellation. In case of a cancellation request, your Personal Data will be destroyed and made anonymous.

Access to data

Your Personal Data may be made accessible

  1. to employees and collaborators of the Data Controller, as appointees and / or internal processing managers and / or system administrators;

  2. to third party companies or other individuals (for example, credit institutions, professional firms, consultants) which carry out activities on behalf of the Data Controller. These individuals will operate as independent data controllers or will be designated as external manager of the processing.

Data communication

Without the need of an expressed consent pursuant to Article 6, b) and c) GDPR), the Data Controller may communicate your Personal Data to those individuals, to whom the communication is mandatory pursuant to the law (for example, Judicial Authority). These individuals will process your Personal Data as independent data controllers. Outside of the aforementioned obligations, your Personal Data will not be communicated to third parties separate from the Data Controller or from individuals to whom the access is guaranteed pursuant to article 4 of this information.

Data transfer

Personal Data are stored on servers placed within the European Union. In any case, it is established that the Data Controller, if necessary, will have the right to move the servers even outside the European Union. In this case, the Data Controller will verify that the server supplier carries out the transfer of data outside the European Union and their processing in compliance with the GDPR.

Rights of the involved person

The Data Controller grants you the following rights, i.e.,

  1. the right to obtain confirmation of the existence or not of your Personal Data, even if not yet registered, and their communication in an intelligible form;
  2. the right to obtain the indication of the origin of your Personal Data, of the purposes and methods of the processing, of the logic applied in case of treatment carried out with the aid of electronic instruments, of the identification details of the Data Controller, of the data processors and of any representative appointed pursuant to article 3, paragraph 1, GDPR, of the individuals or categories of individuals to whom your Personal Data may be communicated or who may come to know of it as appointed representatives in the territory of the State , of managers or appointees;
  3. the right to obtain 1) the updating, rectification that is, when interested, the integration of your Personal Data, 2) the cancellation, anonymization or blocking of your Personal Data processed in violation of law, including those for which conservation is not necessary in relation to the purposes for which they were collected or subsequently processed, 3) the attestation that the operations, referred to in numbers 1) and 2), have been brought to the attention, also with regard to their content of those to whom your Personal Data have been communicated or disseminated, except the event in which such fulfillment becomes impossible or requires the use of means manifestly disproportionate with respect to the protected right;
  4. the right to oppose, in whole or in part, for legitimate reasons to the processing of your Personal Data, even if pertinent to the purpose of the collection.

Where applicable, he may also exercise his rights of oblivion, of the limitation of processing, of the portability of your Personal Data as well as the right to complain to the Guarantor Authority.

Modalities of exercising his rights

In order to exercise his rights, he may at any time send a communication through registered letter to PICCHI SRL, with registered office at (25065) Lumezzane (BS), Via Ruca, n. 318, or by PEC at the address picchisrl@legalmail.it.

Data controller, responsible and appointees

The Data Controller is Picchi Srl. The updated list of data managers and data appointees is preserved in the Data Controller's registered office.

Changes to this information

This information may be subject to changes. It is your responsibility to check regularly your possible updates.

 

Lumezzane, 24th May 2018


 

The Company uses cookies to offer a better and personalised web service. With this information, the Company informs about the methods and purposes for which it uses cookies on this website.

 

What are cookies, what are they for and who installs them?

Cookies are small text strings that the websites you visit send to your device (e.g., PC, tablet, smartphone) where they are stored and/or read by the browser and that allow the browser to send information to those who have installed cookies in order to offer you optimal browsing, produce statistics on visits, offer you personalised content and targeted advertising. Cookies are contained in various elements hosted on the page of the site itself (such as, for example, advertising banners, images, videos, etc.).

While browsing this site, the user can receive the following cookies on his/her device:

  • first party cookies: cookies sent by the website of the Data Controller;

  • third-party cookies: cookies sent by a site other than the one you are visiting, which installs its own cookies through the website of the Data Controller.

The Data Controller has the management and responsibility of first party cookies. The Data Controller has no control over third party cookies or the activity of the third party, or the possibility that the same modifies them over time.

In relation to third-party cookies, the Data Controller acts as an intermediary and, in this capacity, refers to the information of the third party, accessible through a specific link accessible from the banner.

Other tracking tools. In a similar way to cookies, other tracking tools are being developed that allow the same purposes to be pursued. These tracking tools can be classified according to a number of different criteria, however, the main criterion of grouping remains that of the purpose for which they are used: of a technical or commercial nature.

 

What is the purpose of this Cookie Policy?

In compliance with the provisions of current legislation on the protection of personal data (in particular Regulation (EU) 2016/679 on the protection of personal data "GDPR" and the legislation on European and Italian cookies), the Company informs about the processing of personal data collected through cookies (and possibly other tracking tools similar to them) also from third parties.

The processing will be based on the principles of fairness, lawfulness and transparency, as well as the protection of its confidentiality and the protection of its rights.

 

Who is the Data Controller? How can I contact the Data Controller?

The Data Controller of your personal data is PICCHI S.r.l., with registered office in Lumezzane (BS), Via Ruca, no. 318, registered in the Brescia Register of Companies REA n. 300690, Tax Code 01492950173 and VAT no. 00632680989, in the person of the pro tempore legal representative, Bugatti Stefano Giuseppe (hereinafter, the Data Controller). Its contact details are as follows: the postal address indicated above or the certified email address picchisrl@legalmail.it.

What cookies does this site use? For what purposes, on what legal basis? Is it mandatory to provide personal data? What happens if the user does not provide them?

The cookies used by this site can be classified according to the following categories: 1) Technical cookies, which are used to operate the site, and 2) Profiling cookies, which are used to track the user's behaviour to analyse it in order to offer services based on his/her preferences. Below are the related details:

1) Technical Cookies, which do not require consent

This category includes the cookies listed below, which pursue the purposes indicated, respectively:

  • navigation or session cookies, which are used to ensure the normal navigation and use of the website (allowing you, for example, to make a purchase or authenticate yourself to access reserved areas);

  • anonymised analytics cookies,which are cookies used to collect information, in aggregate form and therefore not attributable to the individual, relating to the number of users to the most visited pages, the places from which they connect, etc. to compile statistics on the service and use of the site. These cookies may also be from third parties. In this case, however, the Data Controller must have made them anonymous (e.g. by anonymising the IP or masking part of it) and must not allow the third party to cross-reference the information collected through the site with others already at its disposal or to transmit them to third parties;

  • functionality cookies, which allow the user to browse according to a series of selected criteria (for example, language, products selected for purchase) in order to improve the service rendered to the same.

 

Legal Basis

For navigation or functionality cookies, the legal basis lies in the execution of a contract or pre-contractual measures (art. 6, lett. b) GDPR) since they are necessary to make the site and the service requested by users usable. The use of these cookies does not require your consent. For anonymised analytics cookies, however, the legal basis lies in the legitimate interest of the Data Controller to constantly improve the site and the service requested by users (art. 6, lett. f) GDPR). Consent is not required but the user has the right to object to the use of such cookies if he/she believes that his/her interests or fundamental rights and freedoms prevail over the legitimate interests of the Data Controller. The Data Controller will refrain from further use of these cookies unless it proves the existence of compelling legitimate reasons that prevail over the user's right to object or for the establishment or defence of a right in court (art. 21 GDPR). To oppose the use of these cookies, the user must exercise the right that is recognised by the GDPR, by contacting the Data Controller at the address indicated above.

 

Need for the provision of the data and consequences

The provision of data collected through the cookies described above is not mandatory, however it is necessary for the connection to the site and the provision of the service. In the absence of partial or total of such provision, the user will not be able to use the site or there may be problems in the use. The user has the ability to allow or block the use of technical cookies used by this site through the Cookie preferences page accessible via the link in the footer of the site.

 

2) Profiling Cookies, which require the user's consent

Profiling cookies can be first party (installed directly by the Data Controller on its website) or third party (installed on the Data Controller's website by a third party). On third-party cookies, the Data Controller has no control over the activity and purpose of the third party, nor over the possibility that the same may modify them over time. In this sense, the Data Controller acts as an intermediary. The user has the ability to allow or block the use of technical cookies used by this site through the Cookie preferences page accessible via the link in the footer of the site.

Profiling cookies make it possible to follow and track, through automated tools, the behaviour of the user while browsing the Internet. They have the purpose of profiling the user and are used by the Owner or by the third party in order to send personalised advertising content in line with your preferences and interests, expressed in the context of your navigation on Internet.

Profiling cookies are also non-anonymised analytics cookies used by the third party, when the Data Controller has not made them anonymous (e.g., has not anonymised the IP) or when it allows the third party to cross the information collected with others already available or to transmit them to third parties, thus allowing the user to be identified through this information.

 

Legal Basis

The use of profiling cookies (including non-anonymised analytics) can only take place with your consent, which constitutes the legal basis for the processing of data collected through these cookies, in accordance with the provisions of art. 6, lett. a) GDPR. The consent can be provided by you or revoked at any time by operating directly in the appropriate cookie preferences page accessible via the link in the footer of the site.

 

Need for the provision of the data and consequences

Failure to provide data resulting from the lack of consent for such cookies has no consequence for the purposes of navigation on the site and its use, but implies the impossibility of proposing advertising messages on services and goods in line with the preferences and real interests expressed in the context of browsing the web by the user.

 

How can the user manage the consent of cookies?

The user can manage the consent relating to the individual categories of cookies by operating directly in the appropriate cookie area accessible from the cookie preferences page accessible via the link in the footer of the site.

 

How can the user disable all cookies with the browser?

Another possibility for limiting the use of cookies is to operate on the browser. Most browsers offer the user the opportunity to express their choices regarding the use of cookies by sites. Below are the procedures for changing the cookie settings and links to the relevant pages of the main browsers on the market to express your choices.

  • Google Chrome – Select the icon from the menu: Chrome > Select Settings > At the bottom of the page, select Show advanced settings > In the “Privacy” section, select Content settings > Select Allow local data to be saved > Select Finish. For more information: https://support.google.com/accounts/answer/61416?hl=en

  • Safari – iOS 8 - Tap Settings > Safari > Block cookies and choose “Always allow”, “Only allow from websites I visit”, “Only allow from current website” or “Always block”. In iOS 7 or earlier, choose “Never”, “Third-party and advertisers”, or “Always”. For more information: https://support.apple.com/en-us/HT201265

  • Firefox – Click the menu button and select Options > Select the Privacy panel > Under History Settings: select Use Custom Settings > To enable cookies, mark the Accept cookies from sites item; to disable them, unmark the item. For more information: https://support.mozilla.org/it/kb/Attivare%20e%20disactivare%20i%20cookie

  • Edge – Click the Tools button, and then click Internet Options > Click on the Privacy tab, and under Settings, move the slider up to block all cookies, or down to allow all cookies, and then click OK. For more information: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies

 

Is personal data transferred outside the European Union (EU)?

Some data collected by cookies may be transferred abroad to locations outside the European Union. This transfer will in any case be carried out in compliance with the guarantees prescribed by the GDPR for this type of activity (articles 45 - 49): for example, transfer to companies located in countries for which the existence of guarantees for the protection of personal data comparable to those of the GDPR (Countries on the White List) or to companies with which specific contractual clauses for the protection of personal data have been signed approved by the European Commission or by the Guarantor Authority, or which adopt binding company rules approved by the Guarantor Authority or when the transfer is necessary for the execution of the contract concluded with the interested party or to execute your request or takes place on the basis of specific exceptions provided for by the GDPR. It is possible to obtain more information, on request, from the Data Controller at the contacts indicated above.

 

How long is the data retained?

The data collected through the use of cookies are stored according to the specific terms and conditions of use established by each supplier of cookies installed on the site, with reference to which the Data Controller has no responsibility or authority. Retention terms, other than those established by each supplier of cookies installed on the site, may be provided for contractual needs and/or for requests from public authorities. The user can request information on the providers of cookies installed on the website of the Data Controller by sending a written request addressed to the Data Controller at the postal address or by certified email, as indicated above.

 

Who can know the user's data? To whom are they communicated?

The data collected through cookies may be used by collaborators authorised by the Data Controller, such as those involved in the maintenance and management of the site, marketing and administration. They may also be used by any third parties (providers of services, infrastructure and IT involved in the management and supervision of the site and the like) who operate on behalf of the Data Controller and have been duly appointed data processors in accordance with the provisions of article 28 of the GDPR. With the consent of the user, they may also be used by third parties who install their cookies on the website of the Data Controller.

 

What are the user’s rights as a data subject?

The GDPR recognises the following rights in relation to your personal data that you may exercise within the limits and in accordance with the provisions of the legislation:

Right of access to your personal data (article 15);

Right of rectification (article 16);

Right to deletion (right to cancellation) (article 17);

Right to restriction of processing (article 18);

Right to portability of the data (article 20);

Right to object (art. 21): the data subject has the right to object at any time, for reasons related to the particular situation, to the processing of personal data concerning him/her or based on legitimate interest, including profiling on the basis thereof. The Data Controller refrains from processing unless it proves the existence of compelling legitimate grounds for processing that prevail over the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of a right in court;

Right to object to a decision based solely on automated processing (article 22);

Right to revoke, at any time, the consent given, without prejudice to the lawfulness of the processing based on the consent given before the revocation, by sending a written request addressed to the Data Controller at the postal address or by certified e-mail, as indicated above;

Right to lodge a complaint with the Data Protection Authority (www.garanteprivacy.it) if the user considers that the processing of his/her data is contrary to the legislation in force (art. 77) or to take legal action (art. 79).

 

Data Protection Officer (DPO)

The Data Controller has appointed a Data Protection Officer (also known as a DPO) whom you can contact for all matters relating to the processing of personal data and the exercise of rights deriving from the GDPR. The contact details of the DPO are as follows: marco.depaolis@studiolegaledepaolis.it.

 

 

How is personal data protected?

Personal data will be processed using technical and organisational security measures appropriate to the nature of the data to ensure their integrity and confidentiality and protect them against the risks of unlawful intrusion, loss, alteration, or disclosure to third parties not authorised to process them.

 

Updates

The Data Controller reserves the right to modify and update this information at any time. Changes will apply from their communication or publication. It is therefore necessary for you to regularly review the Information policy in force.

 

Further information

For more information regarding the processing of personal data, the Company also invites you to consult the privacy policy on this site. For more details on the cookies used, the Company also invites you to consult the appropriate cookie area accessible from the Cookie preferences page accessible via the link in the footer of the site.