GDPR INFORMATION
POLICY
Pursuant to Article 13 of EU Regulation 2016/679 (hereinafter “GDPR 2016/679”), laying down provisions for the protection of individuals and other subjects with regard to the processing of personal data, we wish to inform you that the personal data you provide to the company SCABEC S.p.A. will be processed in compliance with the above-mentioned legislation and the confidentiality obligations due.
We also inform you that:
Data controller:
the Data Controller is SCABEC S.p.A. – Via Generale Giordano Orsini, 30 – 80132 Naples – P.IVA 04476151214 – Tel. 081 562 45 61 / 081 562 46 72 – Fax 081 562 85 69 – info@scabec.it ;
Sbacec SpA has appointed a Data Protection Officer (DPO), in the person of Dr. Maurizio D’Amico, who can be contacted at the following numbers: tel. 0815624561 – e-mail: mdamico@scabec.it
Purpose of processing:
Your data are collected to enable the Data Controller to provide the Service, comply with legal obligations, respond to requests or enforcement actions, protect its own rights and interests (or those of Users or third parties), detect any malicious or fraudulent activities, as well as for the following purposes: Viewing content from external platforms, Contacting the User, Statistics, Hosting and backend infrastructure, Payment management, Tag management and Collection of privacy preferences.
To obtain detailed information on the purposes of the processing and the Personal Data processed for each purpose, the User may refer to the “Personal Data Processing Details” section.
types of data collected
Among the Personal Data collected by this Web Site, either independently or through third parties, are: Usage Data; Cookies; first name; last name; phone number; email; Data disclosed during the use of the service; various types of Data.
Personal Data may be freely provided by the User or, in the case of Usage Data, automatically collected during the use of this Web Site.
Unless otherwise specified, all Data requested by this Web Site is mandatory. If the User refuses to provide it, it may be impossible for this Web Site to provide the Service. In cases where this Web Site indicates certain Data as optional, Users are free to refrain from communicating such Data, without having any consequence on the availability of the Service or its operation.
Should the Users have any doubt about which Data are mandatory may freely contact the Data Controller.
The possible use of Cookies – or other tracking tools – by this Website or the owners of third party services used by this Website, where not otherwise specified, has the purpose of providing the Service requested by the User, in addition to the further purposes described in this document and in the Cookie Policy, if available.
The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Web Site and warrants that he or she has the right to communicate or disseminate it, releasing the Owner from any liability to third parties.
Legal basis for processing
The Controller processes Personal Data related to the User if one of the following conditions exists:
– the User has given consent for one or more specific purposes; in some jurisdictions, the Controller may be authorized to process Personal Data without the need of the User’s consent or another of the legal bases specified below, as long as the User does not object (“opt-out”) to such processing. However, this does not apply if the processing of Personal Data is governed by European legislation on the protection of Personal Data;
– the processing is necessary for the performance of a contract with the User and/or the performance of pre-contractual measures;
– the processing is necessary for the performance of a legal obligation to which the Controller is subject;
– processing is necessary for the performance of a task of public interest or the exercise of public authority vested in the Controller;
– the processing is necessary for the pursuit of the legitimate interest of the Controller or third parties.
However, it is always possible to ask the Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on law, required by a contract or necessary to conclude a contract.
Location
The Data are processed at the operating offices of the Data Controller and in any other place where the parties involved in the processing are located. For further information, the user may contact the Data Controller.
data provision, refusal and revocation:
the provision of your personal data is necessary for the purpose of carrying out the activities referred to in the preceding point and any manifestation of refusal (or revocation of consent) to the processing entails the impossibility of carrying out the same activities;
methods of processing and storage:
the processing will be carried out in analogue (hard copy) and digital form (by means of IT tools), in compliance with the provisions of art. 32 GDPR 2016/679 on security measures, by the Data Controller and/or specially appointed individuals and in compliance with the provisions of art. 29 GDPR 2016/679; in compliance with the principles of lawfulness, purpose limitation and data minimization, in accordance with Art. 5 GDPR 2016/679, subject to the free and explicit consent expressed at the foot of this notice, your personal data will be processed and stored for the time necessary for the achievement of the purposes for which they are conferred and, in any case, for the period of time required by law;
In addition to the Data Controller, in some cases, other subjects involved in the organization of this Web Site (administrative, sales, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, Data Processors by the Data Controller may have access to the Data. The updated list of Data Processors can always be requested from the Data Controller.
Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until the performance of such contract is completed.
Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is satisfied. The User may obtain further information regarding the legitimate interest pursued by the Controller in the relevant sections of this document or by contacting the Controller.
When processing is based on the User’s consent, the Data Controller may keep the Personal Data longer until such consent is revoked. In addition, the Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period, the Personal Data will be deleted. Therefore, at the expiration of this period the right of access, deletion, rectification and the right to Data portability can no longer be exercised.
scope of communication and dissemination:
the data collected will not be disseminated and will not be subject to communication without your explicit consent, except for necessary communications that may involve the transfer of data to public entities (e.g. judicial offices, Bar Association, etc.) or to private parties (other lawyers, consultants, counterparties, etc.), for the fulfillment of obligations arising from the assignment given and the law;
transfer of personal data:
Your data will not be transferred to member states of the European Union or to third countries outside the European Union; should the need arise, the Data Controller will ask you to give explicit consent;
existence of an automated decision-making process, including profiling:
the writer does not adopt any automated decision-making process, including profiling, as referred to in Article 22(1) and (4) of EU Regulation 679/2016;
rights of the interested party:
at any time, you may exercise, pursuant to Articles 15 to 22 of EU Regulation 2016/679, the right to:
a. a) request confirmation of the existence or non-existence of their personal data;
b. b) obtain information about the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated and, when possible, the storage period;
c. c) obtain rectification and erasure of data;
d. d) obtain restriction of processing;
e. e) obtain portability of the data, i.e. receive them from a data controller, in a structured, commonly used and machine-readable format, and transmit them to another data controller without hindrance;
f. f) object to processing at any time and also in the case of processing for direct marketing purposes;
g. g) object to automated decision-making regarding individuals, including profiling;
h. h) to request from the data controller access to and rectification or erasure of personal data or restriction of processing concerning him or her or to object to its processing, as well as the right to data portability;
i. i) revoke consent at any time (even though revocation will make it impossible to continue the professional relationship), without prejudice to the lawfulness of the processing based on the consent given before revocation;
j. l) file a complaint with a supervisory authority.
The rights referred to in letters a) to i) are exercisable through a written request sent to the Owner.
The user, therefore, in light of the information received, of which he/she expressly declares that he/she has fully understood its contents following its reading:
I give my consent
I do not give my consent
to the processing of my personal data
I give my consent
I do not give my consent
to the communication of my personal data to public bodies and private entities for the purposes indicated in the above information notice
I give my consent
I do not give my consent
to the processing of the special categories of my personal data as outlined in the preceding statement
