Information document Article 13 EU Reg. 2016/679 - GDPR
Information on the processing of personal data collected from the person concerned
In accordance with the provisions of EU Regulation 2016/679 (European Regulation for the Protection of Personal Data) we provide you with the necessary information regarding the processing of personal data provided.
The information is not to be considered valid for other websites that may be consulted through links on the websites in the domain of the owner, who is not to be considered in any way responsible for the websites of third parties.
This notice is given pursuant to art. 13 of EU Regulation 2016/679 (European Regulation for the Protection of Personal Data) to all those who visit the website https://www.synco.it; (the “Website”) with reference to the processing of personal data of surfers (“Users") who use it and is also inspired by the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, on Cookies and the provisions of the Provision of the Guarantor Authority for the protection of personal data of 08.05.2014 on cookies.
1. Subjects of the treatments
Pursuant to Articles 4 and 24 of EU Regulation 2016/679, the data controller is “Synco S.r.l.” with registered office in Malnate (Va) via G. Pastore n. 30 P.IVA 01207730126 and Tax Code 03045040379, in the name and on behalf of the Legal Representative Monterisi, domiciled for the office at the registered office available at the following e-mail address: email@example.com.
2. Type of data processed purposes and lawfulness of treatment
The personal data provided will be processed in compliance with the conditions of lawfulness ex art. 6 Reg. UE 2016/679 without the need for express consent for the following purposes referred to in point a):
3. Recipients or categories of recipients of the data
The personal data provided may be communicated to recipients, appointed pursuant to art. 28 of EU Regulation 2016/679, who will process the data in their capacity as managers and/or natural persons acting under the authority of the owner and manager, in order to comply with contracts or related purposes. Precisely, the data may be communicated to recipients belonging to the following categories:
– Subjects that provide services for the management of the information system and the communication networks of the Owner (such as third party technical service providers, hosting providers, IT companies, communication agencies, including e-mail)
The subjects belonging to the above categories are responsible for data processing, or operate in total autonomy as separate data controllers. The list of designated data processors is constantly updated and available at the Data Controller's offices. This is without prejudice, in any case, to the communication of data requested, in accordance with the law, by police forces, judicial authorities, information and security bodies or other public bodies for purposes of defence or state security or for the prevention, detection or repression of offences. Please note that the database may be provided to the Public Administration upon simple request made to the person who is legally entitled to have judicial and extrajudicial relations with the Public Administration.
4. Data Transfer to a third Country and/or an international organisations
The personal and particular data provided, may be transferred abroad within or outside the European Union (United States subject to the Privacy Shield) only with your express consent and only if this is necessary for the achievement of the purposes referred to in paragraph a) and b). The data processing takes place at the registered office of the Data Controller and in any other place where the parties legitimately involved in the processing are located.
5. Storage period and criteria
The Owner shall process the personal data of the Users adopting appropriate security measures aimed at preventing unauthorised access, disclosure, modification or destruction of the personal data.
The processing is carried out by means of computerised and/or telematic instruments with organisational methods and with logic strictly related to the purposes indicated, guaranteeing an adequate level of protection of personal data. In compliance with the provisions of art. 5, paragraph 1, letter e) of EU Regulation 2016/679, the personal data collected will be kept in a form that allows the identification of those concerned for a period of time not exceeding the achievement of the purposes for which the personal data are processed. To know the criteria underlying the period of data retention write to the address given in point 1 of this information notice.
6. Nature of the conferment and refusal
Apart from that specified for navigation data, the user is free to provide personal data in dedicated areas on the site. The provision of personal data for the purposes referred to in point a) of this information document is necessary to improve the specific functions and use the services offered to the Data Controller, for example to receive feedback on your request for information. Failure to provide personal data may make it impossible to obtain the service requested or to use the services offered by the site. In the event that the data is used for direct marketing purposes, the refusal of consent for the purposes referred to in point b) does not in any way preclude the experience of navigation on the site.
7. The rights of the persons concerned
You may exercise your rights as expressed in Articles 15, 16, 17, 18, 19, 20, 21, 22 of EU Regulation 2016/679 by contacting the Data Controller at the address given in point 1 of this notice.
You have the right, at any time, to ask the Data Controller for access to your personal data, rectification, deletion of the same, limitation of the treatment.
Furthermore, you have the right to object at any time to the processing of your data (including automated processing, e. g. profiling) and to the portability of your data.
Without prejudice to any other administrative and jurisdictional appeal, if you believe that the processing of your data violates the provisions of EU Regulation 2016/679, pursuant to art. 15 letter f) of the aforementioned EU Regulation 2016/679 you have the right to lodge a complaint with the Guarantor for the protection of personal data and, with reference to art. 6 paragraph 1, letter a) and art. 9, paragraph 2, letter a), you have the right to revoke at any time the consent given.
In the event of a request for data portability, the Data Controller will provide you with your personal data in a structured format, commonly used and readable by automatic means, without prejudice to paragraphs 3 and 4 of Article 20 of EU Regulation 2016/679.
The Owner may process the personal data of users in order to pursue his own legitimate interest, consisting in ensuring the security of the Site and the information exchanged on it, i. e. the ability of this Site to withstand, at a given level of security, unforeseen events or unlawful or malicious acts that compromise the availability, authenticity, integrity and confidentiality of personal data stored or transmitted and the security of the related services offered or made accessible.
If the User believes that his rights have been violated, he has the right to lodge a complaint with the Guarantor for the protection of personal data and/or other competent supervisory authority under the law. More information can be found at the following link https://www.garanteprivacy.it/home/diritti/come-agire-per-tutelare-i-tuoi-dati-personali.