Privacy Policy

Information art. 13 of the new European Regulation 2016/679

We hereby inform you that Regulation (EU) 2016/679 of the Parliament and of the Council provides for the protection of persons and other subjects with regard to the processing of personal data.

In accordance with the aforementioned regulations, the processing of personal data will be based on the principles of fairness, lawfulness and transparency and the protection of confidentiality and the rights provided.

Pursuant to Art. 13 of the G.D.P.R., we provide you with the following information:

  1. Legal basis, purposes and methods of data processing

The legal basis of the processing for the purpose referred to in (a) is Article 6(1)(b) of the Regulation (“the processing is necessary for the performance of a contract to which the data subject is party or for the performance of pre-contractual measures taken at the request of the data subject”).

Personal data will be processed only for purposes strictly related and instrumental to the fulfillment of obligations under the existing relationship. Specifically:

– For entering master records into the company’s computer databases;

– For bookkeeping;

– For the management of collections and payments;

– for fiscal management

– To fulfill obligations under civil and tax laws, regulations, and EU legislation;

The processing of personal data will be carried out by means of paper and computer media by the owner, the person in charge and the persons in charge with the observance of all precautionary measures, which guarantee their security and confidentiality.

  1. Nature of data collection and consequences of failure to provide data

The provision of personal data is mandatory in order to fulfill obligations under the contract and, in general, legal obligations.

Failure to provide them may result in our inability to fulfill contractual obligations or activities required by current regulations.

  1. Communication and dissemination of data

Personal data for the purpose of contract execution and for the above purposes may be disclosed:

– to all natural and legal persons (legal, administrative, tax consulting firms, auditing firms, couriers and forwarding agents, data processing center etc.) in cases where the communication is necessary for the above purposes;

– to banking institutions for handling collections and payments and for any credit/credit applications;

– To factoring or debt collection companies;

– To our specially assigned contractors and employees and within the scope of their duties;

– other natural or legal persons that it should become necessary to involve for the fulfillment of the purposes outlined above.

  1. Spatial scope

Your personal data will not be transferred to Recipients outside the European Economic Area. Should they be in the future, the Data Controller assures you that the processing of your Personal Data will be done in compliance with the Applicable Legislation. In fact, transfers will be based alternately on an adequacy decision or the “Standard Model Clauses” approved by the European Commission.

  1. Duration of treatment

The data referred to you shall be kept in a form that permits the identification of the person concerned for a period of time not exceeding that necessary for the purposes, listed in point 1, for which they were collected or subsequently processed and in accordance with the requirements provided for by the regulations in force.

  1. Rights of the data subject Articles 12 to 22 of 2016/679 (G.D.P.R.).

At any time you may exercise the rights provided to the data controller under Articles 12 to 22 of the New European Regulation 2016/679, which we reproduce for your convenience.

  1. The data controller shall take appropriate measures to provide the data subject with all the information referred to in Articles 13 and 14 and the notices referred to in Articles 15 to 22 and Article 34 relating to the processing in a concise, transparent, intelligible and easily accessible form, using simple and clear language, particularly in the case of information specifically intended for minors. Information shall be provided in writing or by other means, including, where appropriate, by electronic means. If requested by the person concerned, the information may be provided orally, provided the identity of the person concerned is proven by other means.
  2. The data subject has the right to obtain the indication:
  3. (a) of the origin of personal data;
  4. (b) of the purposes and methods of processing;
  5. (c) of the logic applied in the case of processing carried out with the aid of electronic instruments;
  6. (d) of the identification details of the owner, managers and designated representative under Article 5(2);
  7. e) of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them in their capacity as designated representative in the territory of the State, managers or appointees.
  8. The data subject has the right to obtain:
  9. (a) updating, rectification or, when interested, supplementation of data;
  10. (b) the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including data whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed;
  11. (c) certification that the transactions referred to in subparagraphs. (a) and (b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except where this proves impossible or involves the use of means manifestly disproportionate to the right protected.
  12. The data subject has the right to object, in whole or in part:
  13. (a) for legitimate reasons to process personal data concerning him/her, even if relevant to the purpose of collection;
  14. b) to the processing of personal data concerning him/her for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication.

The rights referred to in Article 12 shall be exercised by a request addressed without formality to the owner or the person in charge, including through an appointee, which shall be answered appropriately without delay.

  1. Data controller

The data controller is Graffer Law Firm, based in Trento, via G. Manci no. 67, Tel. 0461 525812, e-mail [email protected].

  1. Privacy Guarantor Complaint

Data subjects who believe that the processing of personal data relating to them carried out through this site is in violation of the provisions of the Regulations have the right to lodge a complaint with the Guarantor, as provided for in Art. 77 of the Regulations themselves, or to take appropriate legal action (Article 79 of the Regulations), the contact details of which are posted at http://www.garanteprivacy.it.

The data controller

Graffer Law Firm