Disclosure under Articles. 13 and 14 of the Regulation (EU) 2016/679 of the European Parliament and council of 27 April 2016.

The Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016 provides for the protection of individuals and others with respect to the processing of personal data.
According to the legislation indicated, this treatment will be based on the principles of fairness, legality and transparency and the protection of privacy and privacy.
In order to allow to INOX-PA S.p.A. to be able to carry out its business fully, you must provide the personal information necessary to be able to fulfil the contractual relationship established/established.
Under Articles. 13 and 14 of the Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016, therefore, regarding the treatment of the data that will be carried out by us, we are preparing to provide you with the following information:

  1. Purpose of treatment
    The personal data, which you freely provide and acquired by us, will be treated lawfully and correctly for the delivery of services and the supply of the products that ours Company offers to its customers.
    The data will be processed for the purposes related to the management of ordinary contractual and commercial relationships and, precisely, for the maintenance of accounting, invoicing, the management of the creditor, as well as for the satisfaction of all obligations required by applicable regulations.
  2. How it is treated
    The data will be mainly processed with manual, electronic, computer and telematics tools with logics closely related to the above purposes and will be stored on both computer media and on paper media and on any other type of suitable support, in accordance with the security measures provided by the Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016.
  3. Mandatory or optional nature of the data delivery and the consequences of a possible refusal to answer
    Under Articles. 13 and 14 of the Regulation (EU) 2016/679 of the European Parliament and council of 27 April 2016, We also point out that any refusal to provide the data, at the time of the collection of information, may result in the objective inability of our Company to observe in part or in full the legal and/or contractual obligations related to the contractual obligations to be established/in existence and that therefore the relationship may not be validly established and/or continued.
  4. Communicating data to third parties
    1. The data may be known and processed by the controller, the designated treatment managers as well as the specially designated internal treatment officers, who will still be kept secret confidentiality on them.
    2. The data may be communicated to third parties, solely for technical and operational needs closely linked to the purposes stated above and in particular to the following categories of subjects:
    3. from/to entities, professionals, companies or other structures that we in charge of the treatments related to the fulfillment of administrative, accounting and management obligations related to the ordinary conduct of our economic activity, also for the purpose of recovery credit;
    4. From/to Companies, Entities or Consortia, Professionals who provide our Company with advice and/or processing services or who carry out instrumental activities to that of our Company and in particular by our lawyers and consultants in general;
    5. from/to Public Authorities and Administrations for the purposes related to the fulfillment of legal obligations;
    6. from/to public and private pension funds to which the transfer of data is necessary for the conduct of the activity of our Company in relation to the fulfillment, on our part, of the contractual/commercial obligations in comparisons;
    7. From Banks, Financial Institutions or other entities to which the transfer of data is necessary for the conduct of the activity of our Company in relation to the fulfillment, on our part, of the contractual/commercial obligations in the vs. comparisons.
    8. from/to Subjects to whom the ability to access personal data is recognised by statutory or secondary or EU legislation, as well as by specific contracts and agreements duly signed;
    9. from/to Subjects to whom the communication of personal data is necessary or is otherwise functional to the fulfillment of existing contractual obligations.
  5. Data
    dissemination
    Personal data is not subject to dissemination.
  6. Data transfers abroad
    The data, if necessary, may possibly be exported, under current law, to countries belonging to the European Union, if the transfer becomes necessary for the execution of obligations arising from the existing relationships.

    In addition, if necessary, the data may be exported, under current law, to a third country. In this case, however, the third country will be a country for which there is a decision on the adequacy of the Commission.
  7. Duration of data retention
    The data will be processed for the duration of the contractual relationship and in any case until the termination of the procedure in which they were acquired and will still be kept for a five-year period (years 5) from the last treatment for purposes related or instrumental to the activity carried out by the Agency, and in particular for accounting reasons, that is, for a decade (years 10) for the need for proof and documentation for tax/tax purposes, excluded any possible use for personal reasons and any possible use for personal reasons and any possible use for personal reasons. conflicting use with the Customer, and no other applicable legal provision is safeguarded.
  8. Right of access to personal data and other rights [Art. 15 – 22 of the Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016] The person concerned has the right to obtain confirmation of whether or not there is personal data concerning him, even if not yet recorded, and their communication in an intelligible form.
    You have the right to obtain an indication of the origin of personal data, the purpose and manner of the treatment; logic applied when treated with electronic instruments; the identification details of the controller, the manager and the representative, if any, are appointed; persons or categories of persons to whom personal data may be disclosed or who may become aware of it as a designated representative in the territory of the State, of managers or appointees.
    The person has the right to obtain: the update; correction, that is, when there is interest, the integration of the data, the deletion, the anonymous transformation or the blocking of the data processed in violation of the law, including those that are not necessary to be retained in relation to the purposes for which the data has been collected or subsequently processed; the claim that the requested transactions have been made aware, including with regard to their content, of those to whom the data has been disclosed or disseminated, except in the event that such fulfillment is found impossible or involves the use of means manifestly disproportionate to the law protected.
    The person concerned has the right to oppose in whole or in part, for legitimate reasons: the processing of personal data concerning him, although relevant to the purpose of the collection; personal data relating to it for the purpose of sending advertising material or direct sales or carrying out market or commercial research.
  9. Disclosure, consent, modification or revocation
    of consents and their effects
    If more than one legal negotiation is concluded, this information and the possible provision of consent are also considered valid for subsequent legal negotiations.

    It is always possible for the person to change or revoke at any time in the same manner in which any consent and/or consent has been issued once it has been expressed.
    The withdrawal of consent and/or consent does not affect the legality of the treatment based on consent(s) before revocation.
  10. Ability to report and/or complain to the Data Protection Authority
    If you believe that there has been a breach of the personal data protection rules, you may at any time be able to report and/or complain to the Data Protection Authority using the following methods:
    (a) recommended A/R addressed to Data Protection Guarantor, Piazza di Monte Citorio, 121 00186 Rome;
    b) e-mail at: urp@gpdp.it or urp@pec.gpdp.it;
    c) fax to: 06/69677.3785.
    For details of how the report is forwarded and/or complaint and the payment of the relevant secretarial rights, the person should consult the www.garanteprivacy.itwebsite.
  11. Owner and Responsible
    for Treatment
    The Owner of the Treatment is: INOX-PA S.p.A. – legal headquarters in Via Val Saviore 39/41/43/45 – 25132 Brescia (Italy) – Tel. Mail info@inox-pa.it / amministrazione@inox-pa.it in the person of its Pro-Temporary Legal Representative.

    The names of the designated treatment managers can be verified by contacting the Company at the contact details above.