The Data Controller is AUTOSERVIZI PELLEGRINI S.R.L. (hereinafter “Data Controller”), in the person of its pro tempore legal representative, with headquarters in Via Privata del Fontanone, 19 – 25083 - Gardone Riviera.
The Data Controller collects and processes personal data during the registration and filing process in our paper archives and electronic databases.
Data processing is based on the principles of fairness, lawfulness, transparency, purpose and conservation limitation, data minimization, correctness, integrity, privacy and assumption of responsibility.
Purpose and Lawfulness of Data Processing
All data will be processed only for the following purposes:
a) Data breach management and communication to the guarantor authority
b) Collection/management and storage of data by request form
c) Communication to customers of any dangerous access to the site
All data – included any sensitive data ("special categories of data") and data referring to criminal records or "judicial data" which can only be processed with your consent expressed at the end of this policy – are processed for the operational purposes mentioned above.
Therefore, all data are processed only for purposes connected to the Data Controller's activity, and the lawfulness of the processing is based on consent (e.g. for “special categories of data” or for marketing/profiling purposes), the necessity to perform a contract to which you are party or in order to take steps at your request prior to entering into a contract, the necessity to comply with legal obligations the Data Controller is subject to>>, vital interests.
The provision of personal data and its processing by the Data Controller for the purposes mentioned above are necessary to establish, maintain and adequately manage the relationship between the Data Controller and the Data Subject and is mandatory based on laws, regulations or European legislation. If the personal data requested are not provided, this may make it impossible to perform and manage all or part of the ongoing or future dealings. The provision of personal data and its processing by the Data Controller for the purposes mentioned in point a/b/c is optional. If data are not provided, or only partially provided, this will not have any further consequence.
Data Processing Method
Personal data will be processed – by Data Processors – electronic and telematic methods within the scope and for the purposes specified and, in any case, respecting the security and privacy of the Data Subjects, and in accordance with the law and the Data Protection Authority regulations.
Categories of subjects to whom data may be disclosed
Personal data will be processed by subjects expressly and specifically appointed and trained as data processors; these subjects will process the data in accordance with the instructions provided by the Data Controller, based on their specific roles.
Data may also be processed by third parties – outsourced by the Data controller to provide services in connection with the purposes of the data collection – who are assesses individually, to guarantee maximum protection, before being appointed external Data Processors. In any case, these subjects will process the data in accordance with the instructions provided by the Data Controller, based on their specific roles and within the limits and the scope of the specific operations required by the nature of the services requested and only for the purposes mentioned in this policy.
Data will not be disclosed.
Duration of Processing and Retention
All data will be stored for the time necessary to obtain the purposes for which they were collected and to comply with contractual, pre-contractual and legal obligations (without prejudice to the limits imposed by the law, respecting the rights and complying with the relevant obligations).
The criteria used to determine the data retention period are set by specific laws that govern the Data Controller's activity (e.g. tax laws in the case of administrative and accounting data, or by regulation issued by the Data Protection Authority to govern the data processing and the Data Processor's purposes; additionally, your data may be retained also for the period of time allowed by Italian laws.
Data Subject Rights:
Data Subjects have the right to:
• obtain the deletion or transformation of the data into anonymous format, or block any illegal processing;
• update, correct and add information to their personal details;
• obtain confirmation that said operations have been notified to any subjects to whom there personal data are disclosed;
• object, for legitimate reasons, to the processing or to any automated decision-making process (including profiling);
• obtain the limitation of the purposes for which their data can be processed and transfer the data to another data controller.
To this end, Data Subjects must make a specific request in writing and send it via email to firstname.lastname@example.org (with “Privacy” as the subject of the email) or via letter with acknowledgement of receipt to Via Privata del Fontanone, 19 – 25083 - Gardone Riviera.
NOTE: Data Subjects have the right, at any time, to complain to the Data Protection Authority if they believe their rights have been violated or for any matters concerning the processing of their personal data.
Data Subjects have the right, at any time, to revoke their consent for the purposes mentioned above, at any time and without prejudice to the processing based on the consent previously provided.
Having read the policy, I agree to the processing of my personal data <<and especially to the processing of any sensitive data (“special category of data”) for the purposes mentioned above a/b/c.
The Provision of the Guarantor for the protection of personal data n. 229 of 8 May 2014, published on the G.U. n. 126 of 3 June 2014, has categorized cookies into two macro-categories: "technical" cookies and "profiling" cookies.
Technical cookies are those used for the sole purpose of "transmitting a communication over an electronic communications network, or to the extent strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide this service "(see Article 122, paragraph 1, of the Code).
They are not used for other purposes and are normally installed directly by the owner or operator of the website. They can be divided into navigation or session cookies, which guarantee the normal navigation and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas); analytics cookies, similar to technical cookies when used directly by the site operator to collect information, in aggregate form, on the number of users and how they visit the site; functional cookies, which allow the user to browse according to a series of selected criteria (for example, the language, the products selected for purchase) in order to improve the service rendered to the same.
For the installation of these cookies the prior consent of users is not required.
They are cookies managed by the site owner. For these cookies, the obligation of the information is up to the owner of the site. It is also up to the latter to specify the methods for blocking the cookie.
Cookies are managed by a third party other than the owner of the site. For these cookies, the obligation of the information and the indication of how to block the cookie is up to the third party, while the site owner is obliged to include on the site the link to the third party site where such elements are available.
In both types of cookies (first-party or third-party) the collection of consent, necessary if the cookie is a profiling cookie, is done through a special banner on the home page of the site.
LINKS TO OTHER WEBSITES