PRIVACY
policy
INFORMATION ON THE PROCESSING OF PERSONAL DATA
Regulations on the protection of natural persons with regard to the processing of personal data
GDPR (General Data Protection Regulation – EU Regulation 679/2016)
Privacy Code Legislative Decree 196/2003 (amended by Legislative Decree 101/2018).
Information provided in accordance with Article 13 of the EU Regulation 2016/679 (General Data Protection Regulation – “GDPR 2016/679”), laying down provisions for the protection of persons and other subjects regarding the processing of personal data; personal and special data processed by TRANSUISSE SRL.
TRANSUISSE SRL provides the following information relating to the processing of personal data – common – as it relates to the services provided by the Company itself and referring to customers or referring to those who browse the web pages and send, if necessary, requests for information through the accounts indicated on the “Contact” page.
1. Purpose of processing.
Personal data are used TRANSUISSE SRL:
a) for activities related to the internal organizational management of the services provided.
b) for the issuance of payment titles (invoices, receipts) to users and for any fiscal and administrative fulfillment;
c) to communicate the data, even partial, if necessary upon specific request, to competent authorities;
Personal data will be used by TRANSUISSE SRL, only following specific consent:
d) for the performance of the requested services, if necessary in cooperation with appropriately appointed external parties;
In addition, personal data are processed as a result of the contractual and commercial relationships that the Company has with its suppliers or external collaborators.
The personal data that the interested party provides through the methods indicated on the “Contact” page of the website www.transuisse.it are acquired and processed mainly:
• For sending replies to the requests of the interested parties;
• For the possible sending of material of an informative nature to the indicated e-mail address;
• For the processing of statistical reports.
It should also be noted that by consulting our website, the system may acquire technical navigation data related to IP address, identification codes of the devices used by the user to use the pages or services, data referring to the characteristics of the browser and access times, other anonymized navigation data.
No personal data of users using the website is acquired through software systems. No use is made of cookies for the transmission of information of a personal nature, nor are persistent cookies of any kind, i.e. systems for tracking users, used. The use of session cookies (which are not permanently stored on the user’s computer and vanish when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable the safe and efficient exploration of the site.Within the scope of the purpose for which personal data are collected, TRANSUISSE SRL carries out the processing of such data in accordance with the principles of correctness, lawfulness, transparency and protection of the confidentiality of the rights of the data subject.
2. Nature of conferment
The provision of personal data necessary for the purposes referred to in point 1 a), b), c) d) of this is indispensable for the performance of the services requested by the user.
Failure to provide the requested data will result in the impossibility of proceeding with the full provision of services offered or the hindrance / impediment to the continuation of ongoing relationships.
3.Methods of data processing
Personal Data are processed – according to the principles of fairness, lawfulness and transparency both in paper and electronic form. The availability, management, access, storage and usability of data is guaranteed by the adoption of technical and organizational measures to ensure appropriate levels of security in accordance with Articles 25 and 32 of the GDPR. Data, both in paper and electronic form, are protected and accessible only to authorized personnel.
4. Retention of Personal Data
Personal Data will be retained only for as long as necessary for the purposes for which it is collected, respecting the principle of minimization in Article 5(1)(c) of the GDPR as well as the legal obligations to which the Data Controller is bound. More information on the timing of storage and processing is available from the Controller.
5. Categories of data recipients
In the performance of its activities and in pursuit of the purposes set out in paragraph 1 above, the Data Controller may disclose Personal Data, including, where appropriate, concerning health status, to:
– individuals authorized by the Data Controller to process Personal Data pursuant to Article 29 GDPR by reason of the performance of their work duties;
– third parties in a contractual or conventional relationship with the Controller;
– bodies of the public administration, public security authorities, judicial authorities and insurance entities and other individuals, entities or authorities acting in their capacity as autonomous data controllers, to whom it is mandatory to communicate Personal Data by virtue of legal provisions or orders of the authorities;
– service providers (such as consultants, credit institutions, certifying bodies, etc.) who typically act in their capacity as data controllers under Article 28 of the Regulations – closely related and functional to the Controller’s activity.
The data will not be transferred to third countries and will be stored at the Data Controller’s offices or, in the case of data reported in paper form (documents) in facilities recognized and appointed by the Data Controller.
6. Rights of the data subject
The data subject has the right to access his/her data at any time, pursuant to Articles 15-22 GDPR. In particular, the data subject may request the rectification, deletion, and restriction of the processing of the data itself in the cases provided for in Article 18 GDPR, the revocation of the consent given under Article 7 GDPR, to obtain the portability of the data concerning him/her in the cases provided for in Article 20 GDPR, as well as to lodge a complaint with the competent supervisory authority under Article 77 GDPR (Data Protection Authority). The data subject may make a request to object to the processing of his or her data ex Article 21 of the GDPR in which to give evidence of the reasons justifying the objection: the Data Controller reserves the right to evaluate the request, which would not be accepted in the event of the existence of compelling legitimate reasons to proceed with the processing that prevail over the data subject’s interests, rights and freedoms. Requests should be addressed in writing to the Data Controller.
7. Data Controller.
The data controller is TRANSUISSE SRL, whose details are indicated in this policy, in the person of its Legal Representative.
You can contact the owner at amm@transuisse.com.
