Information on the processing of personal data

    PURSUANT TO ART 13 OF REGULATION EU 679/2016 General Data Protection Regulation (GDPR)

    Pursuant to and in compliance with the provisions of Article 13 of EU Regulation no. 679/2016 (hereafter “Regulations”), Uniesse SRL Group (VAT N. IT01818740167), with registered office in Bergamo in Via Monte Sabotino no. 2 (hereinafter the “Company”), provides the following information on the processing of personal data of its customers / suppliers – natural persons – (hereafter the “Data”) made by the Company, as the data controller.

    Data treatment holder and contact details

    Pursuant to art. 4 of the Regulations, The Company is the holder of the data treatment relating to its customers and suppliers. For communications or requests, the Company can be reached by e-mail at privacy@gruppouniesse.it

    Categories and types of Data collected and processed

    The Data processed by the Company may include common data collected for the purpose of concluding the contract with the Customer / Supplier and / or in the context of execution and / or stipulation of the same.

    Purpose and legal basis of the processing and nature of data assignment

    In compliance with current legislation regarding the protection of personal data and without the need for specific consent from the data subject, the Data will be stored, collected and processed by the Company for the following purposes:

    • Compliance with contractual obligations, execution and / or conclusion of the contract with the Customer / Supplier and / or management of any pre-contractual measures;
    • Fulfillment of any legal obligations, tax and fiscal provisions deriving from the performance of the business activity and obligations related to administrative and accounting activities.
    • Sending newsletters and communications for direct marketing purposes.

    Methods of data processing

    In relation to the aforementioned purposes, the data are processed using manual, computerized and telematic tools with logic strictly related to the purposes themselves and, in any case, in such a way as to guarantee the security and confidentiality of the Data, in addition to compliance with the specific obligations established by the legislation. The Data will be processed in compliance with the principle of lawfulness, correctness, relevance and non-excess, in accordance with the provisions on the protection of personal data. The treatment will be carried out by staff who are formally appointed and adequately trained.

    Scope of communication and diffusion of data, recipients and transfer of data and data treatment responsible

    The Data may have access, as the external data controller or as system administrator, companies responsible for the maintenance of IT systems. Finally, the Data may be shared with the authorities, data and / or subjects to whom the Data must be communicated pursuant to the provisions of law or orders of authority. These authorities, bodies and / or subjects will act as independent data controllers. Data will not be disclosed. The updated periodically and complete list of data processors appointed for data processing may be requested by sending an email to the Data Controller at the addresses indicated above.

    Data conservation

    The Data will be stored on paper and / or computer for only the time necessary for the purposes for which it was collected. The Data will be kept to comply with regulatory obligations and to pursue the above-mentioned purposes, in compliance with the principles of indispensability, non-excess and relevance. The Company may retain data after termination of the contractual relationship to fulfill regulatory and / or post-contractual obligations; subsequently, after the aforementioned reasons for the processing have been lost, the Data will be deleted, destroyed or simply stored anonymously.

    Rights of the interested party

    In relation to the aforementioned processing, each interested party can exercise the rights referred to in articles 15 and 22 of the Regulation. The interested party may also lodge a complaint with the Guarantor Authority for the protection of personal data pursuant to article 77 of the Regulation,if you believe that the processing of your data is contrary to the legislation in force. Requests should be sent in writing to the Company at the above addresses.

    Bergamo, 25 May 2018