Information pursuant to art. 13 of the European Union Regulation 2016/679 (GDPR)
HOLDER OF THE TREATMENT
The Data Controller is GIAPACK SRL, based in Via Giuseppe Lazzati 11, 70032 Bitonto (BA), ITALY, email firstname.lastname@example.org which guarantees compliance with the regulations on the protection of personal data by providing the following information about the processing of data communicated or otherwise collected.
PURPOSE AND LEGAL BASIS OF THE PROCESSING. LEGITIMATE INTERESTS PURSUED
The data provided by the user through the forms are collected, processed and stored for the following purposes:
a) fulfill the legal and tax obligations to which the Data Controller is subject;
b) as part of the execution of the contracts of which the Customer is a party or for the adoption of pre-contractual measures adopted at the request of the same;
c) in the event that it is necessary to ascertain, exercise or defend a right in court, for the pursuit of the legitimate interest that the Data Controller has found to exist on the basis of the balancing of interests carried out;
d) for sending commercial communications on products and services similar to those already purchased;
e) in the presence of specific consent, for sending commercial communications on products and services, training courses, webinars, special promotions or telephone calls with an operator.
f) for the statistical analysis of the use of the website without personal information.
g) in the case of sending a curriculum vitae, exclusively for selection purposes.
The processing of data for the purposes under a) and b) does not require the consent of the Customer as it is necessary to fulfill legal obligations or for the execution of the contracts of which the Customer is a party or for the adoption of pre-contractual measures adopted on request of the same, pursuant to art. 6, c. 1, lett. b) c) of the GDPR. The processing of data for the purposes under c) does not require the consent of the customer as it is necessary for the pursuit of the legitimate interest of the owner, pursuant to art. 6, c. 1, lett. f) of the GDPR. The processing of data for the purpose under d) does not require the consent of the Customer, pursuant to art. 130, paragraph 4, of the Code.
For sub f) some generic data are collected whose transmission is implicit in the use of Internet protocols. These data (for example domain names, IP addresses, operating system used, type of device, browser used) are not accompanied by any additional personal information and are used to obtain anonymous statistical information on the use of the site or to ascertain responsibility in case of hypothetical computer crimes.
The legal basis that legitimizes the processing of such data is the need to make the site's features usable following user access.
PROVISION OF DATA AND CONSEQUENCES IN CASE OF FAILURE TO PROVIDE
The provision of data for the purposes under a) and b) constitutes, respectively, a legal and contractual obligation. The provision of data for the purposes under c), on the other hand, is optional but necessary for the pursuit of the legitimate interests of the Data Controller indicated above. In all these cases, failure to provide the Data will make it impossible for the Owner to establish or continue business relations with the Customer.
The provision of data for the purpose under e) is optional and failure to provide or consent to their processing will make it impossible for the Data Controllers to carry out the functional activities to achieve the purpose in question.
RECIPIENTS OR CATEGORIES OF RECIPIENTS
The Data may be made accessible, brought to the attention of or communicated to the following subjects, who may be appointed by the Data Controller, as appropriate, as managers or agents:
- companies of the group to which the Data Controller belongs (parent companies, subsidiaries, associates), employees or collaborators in any capacity of the Data Controller or companies of the group to which the Data Controller belongs;
- public or private subjects, natural or legal persons, which the Data Controller uses for the performance of activities instrumental to the pursuit of the aforementioned purpose or to which the Data Controller is required to communicate the Data, by virtue of legal or contractual obligations.
PERIOD OF CONSERVATION
The Data will be kept for a maximum period of time equal to the limitation period of the rights that can be activated by or against the Data Controller, as applicable from time to time.
RIGHTS OF ACCESS, CANCELLATION, LIMITATION AND PORTABILITY
The rights referred to in art. from 15 to 20 of the GDPR. By way of example, each interested party may therefore:
a) obtain confirmation as to whether or not personal data concerning him is being processed;
b) if a processing is in progress, obtain access to personal data and information relating to the processing and request a copy of the personal data;
c) obtain the correction of inaccurate personal data and the integration of incomplete personal data;
d) obtain, if one of the conditions provided for by art. 17 of the GDPR, the deletion of personal data concerning him;
e) obtain, in the cases provided for by art. 18 of the GDPR, the limitation of processing;
f) receive personal data concerning him in a structured format, commonly used and readable by an automatic device and request their transmission to another owner, if technically feasible.
RIGHT OF OBJECTION AND RIGHT OF WITHDRAWAL OF CONSENT
Each interested party has the right to object at any time to the processing of his personal data carried out for the pursuit of a legitimate interest of the Data Controllers. In case of opposition, your personal data will no longer be processed, provided that there are no legitimate reasons to proceed with the processing that prevail over the interests, rights and freedoms of the data subject or for the assessment, exercise or defense of a right in court. In the event that consent is required for the processing of personal data, each interested party may also revoke the consent already given at any time, without prejudice to the lawfulness of the processing based on the consent given before the revocation. Consent can be revoked by writing an email to email@example.com.
RESPONSIBLE FOR DATA PROTECTION
The owner has appointed the data protection officer who can be found at the following e-mail address firstname.lastname@example.org or by ordinary mail sent to the following address: GIAPACK S.R.L. based in Via Giuseppe Lazzati 11, 70032 Bitonto (BA), ITALY, to the attention of the Data Protection Officer.
Last updated January 1, 2021