CUSTOMER INFORMATION

Information document pursuant to art. 13 EU Reg. 2016/679- GDPR Information on the processing of personal data collected from the interested party
In compliance with the provisions of art. 13 of EU Reg. 2016/679 (European Regulation for the protection of personal data), the Supplier informs the Customer about the processing of personal data voluntarily provided during the signing of the supply request.

1. SUBJECTS OF THE TREATMENT

HOLDER OF THE TREATMENT, pursuant to art. 4 and 24 of EU Reg. Reg. 2016/679 is iSMA CONTROLLI S.p.A., with registered office in Carlo Levi 52 Sant’Olcese Genoa, in person of the legal representative pro-tempore.

2. FINALITY AND LICENSE OF TREATMENT

The personal data provided will be processed in compliance with the provisions of the Privacy Code and in compliance with the conditions of lawfulness pursuant to art. 6 EU Reg. 2016/679 for the following purposes: A) fulfillment of contractual obligations, of the law and related administrative-accounting purposes, as an example and not exhaustive for activation / deactivation of the supply, for the performance of organizational, administrative, financial and accounting activities, in particular those functional to fulfillment of contractual and pre-contractual obligations, complaint management, possible start-up of credit recovery, information and direct marketing via e-mail pursuant to art. 6 lett. f) recital 47, for the purpose of direct sale of products and services similar to those purchased by you (Article 6 letters b) and f);

3. ADDRESSES OR CATEGORIES OF DATA ADDRESSES

Personal data provided by the Customer may be communicated to recipients, who will process the data as Data Processors and / or as natural persons acting under the authority of the Data Controller and the Data Controller or who operate in complete autonomy as separate Data Controllers of the treatment, in order to comply with the contracts or related purposes. The list of designated data processors is constantly updated and available at iSMA CONTROLLI S.p.A. The data may be communicated to recipients belonging to the following categories: – Parent companies / subsidiaries and / or affiliated to iSMA CONTROLLI S.p.A.; – Subjects that provide services for the management of the information system and of the communication networks of the Data Controller (including e-mail); – Studies or Companies in the field of assistance and consultancy in the marketing sector; – Financial and insurance institutions; – Consultants; – Competent authorities for compliance with legal obligations and / or provisions of public bodies, upon request; The data may eventually be sent to commercial information companies for the assessment of solvency and payment habits and / or subjects for the purposes of debt collection.

4. DATA TRANSFER TO A THIRD COUNTRY AND / OR AN INTERNATIONAL ORGANIZATION

The personal data provided, may be transferred abroad within or outside the European Union, within the limits and conditions of the articles. 44 and ss. of the 2016/679 EU Regulation, in order to comply with the purposes related to the treatments. The interested party will be able to obtain more information about the terms and conditions of the transfer by writing an email to privacy@ismacontrolli.com.

5. PERIOD OF CONSERVATION OR CRITERIA

The processing will be carried out in an automated and / or manual manner, with methods and tools aimed at guaranteeing maximum security and confidentiality, by persons specifically appointed. In compliance with the provisions of art. 5 paragraph 1 letter e) of Reg. UE 2016/679 personal data collected for administrative and accounting purposes will be stored in a form that allows identification of data subjects for a period of ten years from the contract. For direct marketing purposes, data will be retained for two years from acquisition. More information about the criteria based on the conservation of your data can be requested by writing an email to privacy@ismacontrolli.com.

6. NATURE OF THE CONFERRALITY AND REFUSAL

The provision of personal data for the purpose A) is mandatory to complete the conclusion of the service supply contract. In case of non-conferment, the Holder can not establish a contractual relationship with the Customer. With regard to direct sale of similar products and services, the conferment is optional, but necessary for the pursuit of the legitimate interest of the Owner, which does not affect his fundamental rights and freedoms.

7. RIGHTS OF THE INTERESTED

You can assert your rights as expressed in articles 15, 16, 17, 18, 19, 20, 21, 22 of EU Regulation 2016/679, by contacting the Data Controller, or the designated Data Processor, by writing to privacy@ismacontrolli.com. You have the right, at any time, to ask the Data Controller to access your personal data, to rectify it, to cancel it or limit its processing. Furthermore, you have the right to object, at any time, to the processing of your data (including automated processing, eg profiling) and to the portability of your data. Without prejudice to any other administrative and judicial appeal, if you believe that the processing of data concerning you, violates the provisions of EU Reg. 2016/679, pursuant to art. 15 letter f) of the aforementioned EU Reg. 2016/679, you have the right to lodge a complaint with the Guarantor for the protection of personal data and, with reference to art. 6 paragraph 1, letter a) and art. 9, paragraph 2, letter a), has the right to revoke the consent given at any time. In the case of requesting data portability, the Data Controller will provide you in a structured format, in common and legible, by automatic device, the personal data concerning you, without prejudice to paragraphs 3 and 4 of the art. 20 of the EU Reg. 2016/679.

Update Date: July 26, 2021