We inform the partners / customers / suppliers (interested in the processing) and their contact persons (hereinafter "interested", ex Art.4, c.1 of the GDPR UE 2016/679) that the professional relationships established with the undersigned Holder may involve the treatment of personal data, respecting the following general principles:
OBJECT OF THE TREATMENT
The Holder treats personal identification data of the partner / customer / supplier (for example, name, surname, company name, personal / fiscal data, address, telephone, e-mail, bank and payment details) and its operational contact persons (name surname and contact data) acquired and used to provide the requested services.
PURPOSE AND LEGAL BASIS OF TREATMENT
Data are processed to:
METHOD OF TREATMENT
The processing of personal data is carried out by operations indicated in Art. 4 n. 2) GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. Personal data are subjected to both paper and electronic and / or automated processing. The Data Controller will process personal data only for the time needed to fulfill the purposes for which they were collected and related legal obligations.
The data are processed by regularly authorized and instructed internal subjects according to Article 29 of the GDPR. It is also possible to request the scope of communication of personal data, obtaining precise indications on any external subjects operating as managers or independent data controllers (consultants, technicians, banks, transporters, etc.). The data are not object of diffusion or transfer to countries outside the EU. When necessary, in the context of tenders / contracts or to fulfill legal obligations, we could acquire personal data of their employees from customers / suppliers. It is agreed between the parties that the undersigned company will be entitled to the processing as external manager (Art.28 GDPR) or authorized subject (Art.29 GDPR). As part of this report, the undersigned company undertakes to process such data in compliance with the requirements established by the GDPR, guaranteeing any communication to other parties exclusively within the scope of specific legal obligations