NOTICE REGARDING THE PROCESSING OF PERSONAL DATA
https://www.dalin.it/ Dalin Di Silvino Quaranta & C. – S.A.S., with registered office in Via Macello Vecchio, 26 70013 Castellana Grotte (BA), C.F. and P.IVA IT00440400729 (later, “ owner ”), as data controller, informs you pursuant to art. 13 D.Lgs. 30.6.2003 n. 196 (later, “Privacy Code“) and art. 13 EU Regulation No. 2016/679 (hereinafter, “GDPR“) that your data will be processed in the following purposes:
1. OBJECT OF PROCESSING
The Data Controller processes personal data, for example, first name, surname, company name, address, telephone, e-mail, VAT number, tax code, bank and payment references, information on purchases and information on cookies (hereinafter, “personal data” or even “data“) communicated by you on the occasion of the conclusion of contracts for the services of the Data Controller, by filling in contact forms/ registration or by
1.1 COOKIE: If you leave a comment on our site, you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you have an account and you log in to this site, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
1.2 EMBEDDED CONTENT FROM OTHER WEBSITES: Articles on this site may include embedded content (such as videos, images, articles, etc.). Content embedded by other websites behaves in exactly the same way as if the visitor had visited the other website. These websites may collect data about you, use cookies, integrate additional third-party tracking, and monitor interaction with that embedded content, including tracking your interaction with embedded content if you have an account and are logged into that website.
1.3 STATISTICS (ANALITYCS): The services contained in this section allow the Data Controller to monitor and analyze traffic data and serve to keep track of the User’s behavior. Our website uses Google Analytics (Google Inc). Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Application, compiling reports and sharing them with other services developed by Google. Google may use Personal Data to contextualize and personalize ads on its advertising network. DPersonal data collected: Cookies and Usage Data. Place of processing: United States – Privacy Policy – Opt Out . Subject adhering to the Privacy Shield.
2.PURPOSE OF THE PROCESSING
Your personal data is processed:
A) without your express consent (art. 24 lett. a), b), c) Privacy Code and art. 6 lett. b), e) GDPR), for the following Service Purposes:
- conclude contracts for the Data Controller’s services;
- fulfil pre-contractual, contractual and fiscal obligations arising from existing relationships with you;
- fulfilling the obligations laid down by law, regulation, Community legislation or an order of the Authority (such as in the field of anti-money laundering);
- exercise the rights of the Data Controller, for example the right of defence in court;
The Data Controller may keep the data sent exclusively for the purpose of guaranteeing the service requested by the visitor; such data will not be used for commercial, marketing or profiling purposes by the Data Controller.
The visitor using these services is aware that the data will be sent to third parties. In the absence of methods relating to the use of data by third parties for the provision of the service, the visitor has the right to ask the Data Controller for the destination and the methods of sending the data. The Data Controller is exempt from any liability regarding the misuse of data by third parties.
B) Only with your specific and distinct consent (art. 23 and 130 Privacy Code and art. 7 GDPR), for the following Marketing Purposes:
– send them by e-mail, post and/or sms and/or telephone contacts, newsletters, commercial communications and/or advertising material on products or services offered by the Data Controller and measurement of the degree of satisfaction on the quality of services;
– send them by e-mail, post and/or SMS and/or telephone contacts commercial and/or promotional communications of third parties (for example, business partners, insurance companies)
Please note that if you are already a customer of ours, we may send you commercial communications relating to services and products of the Data Controller similar to those you have already used, unless you disagree (art. 130 c. 4 Privacy Code).
3. METHODS OF PROCESSING
The processing of your personal data is carried out through the operations indicated in art. 4 Privacy Code and art. 4 n. 2) GDPR and precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion and destruction of data. Your personal data are subject to both paper and electronic and/or automated processing.
The Data Controller will process personal data for the time necessary to fulfill the above purposes and in any case for no more than 10 years from the termination of the relationship for the Service Purposes and for no more than 2 years from the collection of data for the Marketing Purposes except for automatic cancellations made by third-party software and referred to in point 1.
4. ACCESS TO DATA
Your data may be made accessible for the purposes referred to in art. 2.A) and 2.B):
– a dipendenti e collaboratori del Titolare Dalin Di Silvino Quaranta & C. – S.A.S. in Italia e all’estero, nella loro qualità di incaricati e/o responsabili interni del trattamento e/o amministratori di sistema;
– to third-party companies or other entities (as an indication, credit institutions, professional firms, consultants, insurance companies for the provision of insurance services, etc.) that carry out outsourcing activities on behalf of the Data Controller, as external data controllers.
5. DATA COMMUNICATION
Without the need of an express consent (ex art. 24 lett. a), b), d) Privacy Code and art. 6 lett. b) and c) GDPR), the Data Controller may communicate your data for the purposes referred to in art. 2.A) to Supervisory Bodies (such as IVASS), Judicial Authorities, insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the fulfilment of the aforementioned purposes. These parties will process the data as independent data controllers.
Your data will not be disclosed.
6. DATA TRANSFER
Personal data are stored on servers located in Roubaix (France) and Strasbourg (France), within the European Union. It is in any case understood that the Data Controller, should it become necessary, will be able to move the servers also outside the EU. In this case, the Data Controller ensures that the transfer of data outside the EU will take place in accordance with the applicable legal provisions, after stipulating the standard contractual clauses provided by the European Commission.
7. NATURE OF DATA PROVISION AND CONSEQUENCES OF REFUSAL TO REPLY
The provision of data for the purposes referred to in art. 2.A) is mandatory. In their absence, we will not guarantee the Services.
The provision of data for the purposes referred to in art. 2.B) is optional. You may therefore decide not to provide any data or to subsequently deny the possibility of processing data already provided: in this case, you may not receive newsletters, commercial communications and advertising related to the Services offered by the Owner. You will still be entitled to the Services referred to in art. 2.A).
8. RIGHTS OF THE DATA SUBJECT
In your capacity as data subject, you have the rights under art. 7 Privacy Code and art. 15 GDPR and precisely the rights to:
i. obtain confirmation of the existence or otherwise of personal data concerning you, even if not yet recorded, and their communication in an intelligible form;
ii. obtain the indication: a) of the origin of the personal data; b) of the purposes and methods of processing; c) of the logic applied in the case of processing carried out with the help of electronic tools; d) of the data controller’s identification details, the responsible persons and the appointed representative pursuant to art. 5, paragraph 2 Privacy Code and art. 3, paragraph 1, GDPR; e) of the subjects or categories of subjects to whom personal data may be disclosed or who may become aware of it as a designated representative in the territory of the State, of managers or agents;
iii. obtain: a) the updating, rectification or, where it is of interest to you, the integration of data; b) the deletion, the transformation into anonymous form or the blocking of data processed in violation of the law, including those for which storage is not necessary in relation to the purposes for which the data were collected or subsequently processed; c) proof that the operations referred to in paragraphs a) and b) have been brought to the attention of the person concerned, including as regards their content, of those to whom the data have been communicated or disseminated, except where such compliance proves impossible or involves the use of means manifestly disproportionate to the protected right;
iv. oppose, in whole or in part: a) for legitimate reasons to the processing of personal data concerning you, even if relevant to the purpose of the collection; b) the processing of personal data concerning you for the purpose of sending advertising material or direct sales or for the performance of market research or commercial communication, by the use of automated call systems without the intervention of an operator by e-mail and/or by traditional marketing methods by telephone and/or paper mail. Please note that the data subject’s right of objection, set out in point b), for purposes of direct marketing by automated means extends to traditional ones and that however remains subject to the possibility for the data subject to exercise the right of opposition even partially. Therefore, the data subject may decide to receive communications only through traditional means or only automated communications or neither of the two types of communication.
Where applicable, it also has the rights referred to in Articles. 16-21 GDPR (Right to rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object), as well as the right to complain to the Data Protection Authority.
9. PROCEDURES FOR EXERCISING RIGHTS
You may at any time exercise your rights by sending:
– a registered letter a.r. a Dalin Di Silvino Quaranta & C. – S.A.S., con sede legale in Via Macello Vecchio, 26 70013 Castellana Grotte (BA) Italy
– a PEC e-mail to dalin@pec.it
10. DATA CONTROLLER, DATA PROCESSOR AND AGENTS
the data controller is Dalin Di Silvino Quaranta & C. – S.A.S., with registered office in Via Macello Vecchio, 26 70013 Castellana Grotte (BA) Italy, C.F. and P.IVA IT00440400729.
The updated list of data processors and processors is kept at the registered office of the Data Controller.