Privacy for contact form

INFORMATION

ARTICLES. 13 AND 14 OF REGULATION (EU) 2016/679

Data Subjects: browsing users, services users.

iVision S.R.L.”,

in its capacity as Data Controller of your personal data, pursuant to and for the purposes of Regulation (EU) 2016/679 hereinafter ‘GDPR’, hereby informs you that the aforementioned legislation provides for the protection of those concerned with regard to the processing of personal data and that such processing will be based on principles of correctness, lawfulness, transparency and protection of your privacy and your rights.

In order to achieve its purposes, relating to the management of the relationship, the Owner needs to acquire personal data, such as, for example, name and surname, telephone or mobile phone number, email address, tax code.

Your personal data will be processed in accordance with the legislative provisions of the aforementioned legislation and the confidentiality obligations therein.

Purposes of processing: Service supply: Your data will be processed in order to respond to any requests that may be received from the forms available on the website, or to requests received by email.

Legal basis: The processing legal basis is contractual in the terms in which data processing is envisaged in response to a request for information followed by a reply.

Consequences of non-communication: the processing of functional data for the fulfilment of these obligations is necessary for the correct management of the relationship and their conferment is compulsory to implement the above-mentioned purposes. The Data Controller also informs you that failure to communicate, or incorrect communication of any of the mandatory information, may make it impossible for the Data Controller to guarantee the adequacy of the processing itself.

Processing method: Processing is carried out using manual and/or computerised and telematic tools, in such a way as to guarantee the security, integrity and confidentiality of the data in compliance with the physical and logical organisational measures laid down by the provisions in force, so as to minimise the risks of destruction or loss, unauthorised access, modification and unauthorised disclosure in compliance with the methods laid down in Articles 6 and 32 of the GDPR.

Recipients: To carry out certain activities, or to provide support for the operation and organisation of the activity, some data may be brought to the attention of or communicated to recipients. These subjects are distinguished in:

Third parties: (communication to: natural or legal persons, public authorities, service or other body other than the data subject, the data controller, the data processor and authorised persons responsible for processing) including:

  • Companies managing traditional or computerised postal services.
  • Any other subjects whose communication of the data is necessary to achieve the above-mentioned purposes.

Data Processors: (the natural or legal person, public authority, service or other body that processes personal data on behalf of the data controller)

  • Suppliers of computer, web, or other services necessary to achieve the purposes necessary for the management of the relationship.

Within the company structure, your data will only be processed by personnel expressly authorised by the Data Controller, with assurance of the adoption of a confidentiality agreement and, in particular, by the following categories of employees:

  • Administration;
  • Other employees whose processing is necessary for the correct execution of the relationship;

Disclosure: Your personal data will not be disclosed in any way.

Data transfer to non-EU countries: The data controller does not transfer personal data to non-EU countries. If there is a need to do so, the interested parties will be informed in advance, and guarantee measures will be adopted for the transfer to the recipients, which depending on the case may be: verification of the existence of adequacy decisions for the recipient country by the Commission, signing of standard contractual clauses, in the case of the U.S.A. verification of adherence to international agreements in force; as an exception to these guarantees (in ref. of art. 49 of the GDPR) the existence of a contract or pre-contractual measures in favour of the interested party or consent to the transfer will be verified.

Retention period: We highlight that, in accordance with the principles of lawfulness, purpose limitation, data minimization, pursuant to Art. 5 of the GDPR, the retention period of your personal data is established for a period of time not exceeding the achievement of the purposes for which they are collected and processed, in case a contract is signed this retention period may cease with the forfeiture or termination of the contract, the same dsti may be retained, where applicable, for a further period of time for the purpose of managing any litigation, the legal basis for such conservation is the legitimate interest of the data controller. The storage period for data processing relating to marketing is functional to the purposes pursued by the data controller, and in any case not longer than 3 years from the last contact or feedback received.

Data Controller: the Data Controller, pursuant to the regulations, is “iVision S.R.L.“, with registered office and headquarters in Via Pozze, 4, 47837 Montegridolfo (RN), VAT no.: 03860600406 in the person of its legal representative pro tempore. By sending an e-mail to the following address [email protected] you may request further information regarding the data provided.

EU Reg. 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22, 23 – Rights of the interested party

  1. The data subject has the right to obtain confirmation as to whether or not personal data concerning him exist, regardless of their being already recorded, and communication of such data in intelligible form.
  2. The data subject has the right to be informed about:
    A. 
    the origin of the personal data;
    B. the purposes and methods of processing;
    C. the logic applied in the event of processing carried out with the aid of electronic instruments;
    D. the identity of the data controller, data processors and the representative designated pursuant to article 5, paragraph 2;
    E. The subjects or categories of subject to whom the personal data may be communicated and or to those who may get to know such data in their capacity as designated representative(s) in the State’s territory, data processor(s) or person(s) in charge of the processing.
  3. The interested party has the right to obtain:
    A. the updating, rectification or, where interested therein, the integration of the data;
    B. the cancellation, transformation into anonymous form or blocking of data processed in breach of the law, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
    C. certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the subjects to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
    D. the portability of the data.
  4. The interested party has the right to object, in whole or in part:
    A. for legitimate reasons, to the processing of personal data concerning him/her, even if pertinent to the purpose of collection;
    B. to the processing of personal data concerning him/her, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys.

Complaint: Interested parties, where applicable, also have the right to file a complaint with the Guarantor as supervisory authority in accordance with the procedures provided. For any further information, and to assert the rights recognised to you by the European Regulation, you may contact the data controller at the above references.