with this document we intend to provide you with the information pursuant to article 13 of Regulation (EU) no. 2016/679, for the Protection of Personal Data (“General Data Protection Regulation”, hereinafter “GDPR”).
Identity of the Owner
The Data Controller is Cecilia Maria Romani, in the person of its legal representative on a temporary basis, with registered office law and treatment in Corso Cavour 94, Fermo (FM) Italia. You can contact the Data Controller to the email address firstname.lastname@example.org or by writing to registered office listed above.
The Data Controller guarantees the security, confidentiality and protection of the personal data of in its possession, at any stage of the process of treatment of the same. Personal data collected are used in compliance with the principles of lawfulness, correctness, transparency and relevance and in GDPR compliance.
Purpose of the treatment
Your personal data will be processed for the following purposes:
execution of obligations deriving from a contract which you are party to or to fulfill, before or after the execution of the contract, at your specific requests
organizational, administrative, accounting and commercial management of the contract
fulfillment of obligations established by law, by a regulation, by Community legislation or by an order from the Authority
internal statistical analyses
management of credit assignment practices for compensation for damages deriving from road accidents Your data will not be used for purposes other than those described in the this information, unless informing you in advance and, where necessary, obtaining your consent.
Legal basis of the treatment
The legal basis of the data processing for the purposes indicated above is to implement to a contract of which you are a part or to the pre-contractual measures taken at your request or in giving following a legal obligation or in protecting one of our legitimate interests (e.g. prosecution of statutory purposes or, if necessary, to exercise and/or defend the rights of the company on site judicial). The provision of data for the fulfillments required and sanctioned by law is obligatory; for the rest, the provision of data is optional but necessary; therefore, your eventual refusal makes it impossible for the Data Controller to follow up on the relationship being established, to his
timely execution and support services.
Methods of treatment
The processing of your personal data is carried out both with paper tools / supports electronic / information technology / telematics by means of the operations indicated in art. 4 n.2) GDPR e precisely: collection, registration, organization, storage, consultation, processing,
modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion and destruction of data.
Addressee of the data
Your personal data will not be disclosed and disseminated and will not be given knowledge to indeterminate subjects, in any possible form, including that of making them available or simple consultation.
Such data may instead be processed by subjects placed under the authority of the Data Controller and/or collaborators expressly authorized and who have received adequate operating instructions, always for the purposes indicated above.
Without prejudice to communications made in fulfillment of legal and contractual obligations, yours data may be communicated to subjects entitled to access it by virtue of the provisions of the law, regulations, community regulations as well as, where necessary for the pursuit of the aforementioned purposes specifications and within the limits strictly necessary, to subjects who have to supply goods or services e services to the Data Controller, such as, by way of example: credit institutions, companies and insurance companies; legal, administrative, tax or marketing consultants who assist the company in carrying it out activities; IT or cloud service providers; agents, subcontractors and/or subcontractors engaged in activities connected to the execution of the Contract with the Owner; subsidiaries, investee or associated companies; and this, always in compliance with the GDPR and for the pursuit of the purposes indicated above.
The Data Controller does not transfer your personal data to third countries or international organizations. However, it reserves the right to use cloud services; in which case, the suppliers of the services will be selected among those who provide adequate guarantees, as expected from the art. 46 GDPR 679/16.
Your collected data will be kept, starting from their receipt/update, for the purposes indicated above and on the basis of the provisions of current regulations and, in the event of a dispute judicial, for the entire duration of the same until the exhaustion of the terms of availability of the means of appeal. In case of treatment based on consent, your data will be processed, until you will not revoke the consent given as well as, subsequently, for the time strictly necessary to fulfill the applicable legal or regulatory obligations and in any case for the time necessary to guarantee the exercise of the company’s rights, also in court.
The retention period will be determined on the basis of the evaluation of the single transaction and however, it will take place in compliance with the principles of necessity, purpose, relevance, minimization and otherwise excess of the GDPR.
Rights of the interested party
You may exercise the following rights towards Cecilia Maria Romani at any time pursuant to articles 15 and 22 of the GDPR:
right of access to your personal data;
right of rectification or cancellation;
right to limitation of treatment;
right to portability;
right of opposition;
You also have the right to freely revoke the consent given at any time. The treatments carried out in accordance with the consent given and the related legal effects will remain still valid even after the possible withdrawal of consent.
To exercise these rights, report problems or ask for clarifications on the processing of your personal data can send an email to the email address email@example.com specifying the subject of the request.
In any case, you have the right to lodge a complaint with the competent supervisory authority, which in Italy is identified with the Guarantor for the Protection of Personal Data, if it believes that the processing of your personal data is contrary to applicable law.
Changes and Updates
This information may be subject to changes and/or additions, even which consequence of updating the applicable legislation.
The updated information will be available on the website www.palazzoromaniadami.it in the privacy section.