Privacy Policy

PRIVACY POLICY FOR THE PROCESSING OF PERSONAL DATA

IN ACCORDANCE WITH EU REGULATION 679/2016 – D.LGS 196/2003

 

 

We would like to inform you that, in accordance with article 13 of EU Regulation n.2016/679 (subsequently, “GDPR”) under D. Lgs. n.101/2018 – integrating D. Lgs. 196/2003, any personal data will be processed in the following ways with the following consequences:

 

1. Subject of Personal Data Processing

The Owner of the personal data, identifiers (e.g. name, surname, company name, address, telephone number, email address, bank account and payment details) – henceforth known as “personal data” or “data” – shared at the moment of confirmation of the professional assignment.

2. Use of Personal Data

Personal data will be used for the following reasons:- carrying out the professional assignment agreed within the contract – fulfilling pre-contractual, contractual, and tax obligations deriving from existing relationships and those established by professional collaboration; – fulfilling any obligations outlined by law, by regulation, by communal norms, or by an order issued by the relevant Authority (such as, for example, those against money laundering); – exercising the rights of the Owner, for example the right to defend in court.

For the reasons outlined above, personal data will be used even without express consent, in accordance with art. 6, paragraph 1, lett. b), c), e) and f) GDPR.

3. Means of Personal Data Processing

The processing of personal data is carried out for the reasons indicated in art.4 n.2) GDPR, i.e.: collection, recording, organisation, conservation, consultation, processing, modification, selection, extraction, comparison, use, sharing, shutdown, communication, cancellation, and destruction of data. Personal data is subjected to both printed and electronic and/or automated processing.

4. Duration of Personal Data Processing

Personal data will be kept for a strictly necessary period of time in order to carry out the means outlined above, and in order to fulfil any legal obligations. It will not, in any case, be kept for more than ten years following the termination of the professional relationship in order to fulfil any obligations outlined by law and/or in the legitimate interest of the Owner.

5. Access to Data

Data can be accessed for the reasons outlined in art.2.

– by the employees and/or collaborators of the Associated Company or by the single associate to whom the professional assignment has been allocated, in their capacity as the individual in charge of and/or the internal manager for data usage and/or system administration;

– by third-party companies or other users (for information purposes, financial lenders, professional studies, consultations, insurance companies for the provision of insurance services, etc.) who carry out outsourcing activities on behalf of the Owner, as external managers of personal data usage.

6. Recipients of Personal Data

Any personal data, moreover, may be communicated with third parties for technical and operational needs which are strictly linked to the reasons listed above, particularly within the following categories:

1. a) institutions, professionals, societies, and other companies assigned by us to data usage connected to the fulfilment of administrative, accountancy, and managerial obligations linked to the ordinary execution of our financial activity, including for debt collection; b) public authority and administration for reasons connected to the fulfilment of any legal obligations, or to any legitimate persons with access to said information due to law, regulation, or EU legislation; c) banks, financial institutions, or other persons for whom the sharing of aforementioned data is necessary in order for us to fulfil our collaboration as outlined by the previously-agreed contractual obligations.
2. Transfer of Data

Personal data will be kept: by the data processor, or within servers situated within the European Union. It is, however, understood that the Owner, where he/she deems necessary, will have the ability to move data onto servers outside the European Union. In this case, the Owner assures that any data transferred outside the European Union will take place in accordance with applicable law, subject to stipulation of the standard contractual clauses outlined by the European Commission.

8. Nature of Data Provision and the Consequences of Refusal to Respond

The provision of data for the reasons outlined in art. 2 is obligatory. In the absence of such data, we cannot guarantee the Services of art. 2.

9. Client Rights

According to articles 13, comma 2, and from 15 to 21 of the Regulations, we inform you that the subject is entitled to the following rights in terms of the processing of their personal data:

1. a) The right to obtain access to personal data;
2. b) The right to the correction and addition of personal data;
3. c) The right to cancellation of data (“right to erasure”);
4. d) The right to limitation of data usage;
5. e) The right to propose a complaint with the Guarantor for the protection of personal data;
6. f) The right to transferability of data;
7. g) The right to refuse;
8. h) The right not to be subjected to any decision based solely on automated data processing, including profiling;
9. i) The right to revoke consent at any moment, if data usage is based upon this factor, without judgment of the lawfulness of any data processing based upon consent determined prior to the withdrawal of said consent.

 

Ways to exercise the rights outlined within this article

The subject may at any moment exercise their rights by sending:

– a registered letter (“raccomandata”) to: __________

– an email to: _____________

 

10. Owner of data usage

The Owner of data usage is: ______________

The list of any potential employees with access to the data can be found within the legal address of the Owner.

 

CONSENT TO THE USAGE OF PERSONAL DATA IN ACCORDANCE WITH THIS POLICY

Having read the above policy __________ declares to have read the document thoroughly and, where necessary, I consent to the processing of my personal data.