EU Regulation 2016/679

Gianluca Cisana, VAT IT04210240166 (hereinafter “the Data Controller”), as data controller, informs you pursuant to art. 13 D.Lgs. 30.6.2003 n. 196 (hereinafter, “Privacy Code”) and art. 13 EU Regulation n. 2016/679 (hereinafter, “GDPR”) that your data will be processed in the manner and for the following purposes:

THE HOLDER OF THE TREATMENT

The data controller is Gianluca Cisana, VAT IT04210240166 Italy.

DATA SOURCE

The personal data processed are the data provided by the interested party on the occasion of: Execution of the contractual services detailed in the contract signed between the parties. Implementation of administrative and accounting obligations including regulatory obligations. Execution of regulatory updating activities by sending communications (newsletter) upon consent. Visits or phone calls. Contractual proposals and / or offers.

PURPOSE OF THE TREATMENT

Your personal data are processed: A) without your express consent (Article 24 letter a), b), c) Privacy Code and art. 6 lett. b), e) GDPR), for the following Service Purposes: Formulate or process requests and proposals received. Management and execution of contractual relationships. Management of administrative, accounting and tax activities. Management of any litigation. Fulfill the obligations established by law, by a regulation, by the community legislation or by an order of the Authority (such as for anti-money laundering). Management of any litigation. B) Only subject to your specific and distinct consent (articles 23 and 130 of the Privacy Code and article 7 of the GDPR), for the following Marketing Purposes: Sending by e-mail, post, sms, telephone contacts, newsletters, commercial communications and / o advertising material on products or services offered by the Owner. Sending by e-mail, mail, sms, telephone contacts, newsletters, commercial or promotional communications of third parties (for example, business partners).

LEGAL BASIS OF TREATMENT

In case A in the previous point: the processing is carried out on the basis of the existence of legitimate interest by virtue of the existence of a relevant and appropriate relationship (contractual relationship) between the data subject and the data controller. In the case B in the previous point: only upon your specific and distinct consent.

METHOD OF TREATMENT

Data processing is carried out both with automated methods, on digital and magnetic electronic support, and on paper, in compliance with the rules of security and confidentiality provided for by the law and by the consequent regulations and internal provisions.

DATA CONFERENCE

The provision of data is optional but necessary to achieve the purposes of the processing and the unavailability of the same does not allow the fulfillment of the above obligations and the administrative and accounting management of the relationship.

COMMUNICATION OF DATA AND DIFFUSION

The data may be communicated to the following categories of subjects for the performance of activities functional to the provision of its services: Company representatives subject to instructions on the processing methods.
Payments banks.
Insurance companies with which R.C. company.
Law firm in case of litigation.
Public Administrations for mandatory communications by law.

PLACE OF TREATMENT

The data are currently processed and stored at the headquarters of Gianluca Cisana in Bergamo – Italy, and on servers located in Italy.

DATA TRANSFER

Gianluca Cisana does not transfer personal data abroad or to international organizations.

DATA STORAGE TIMES

The Data Controller will process the personal data for the time necessary to fulfill the aforementioned purposes and in any case for no more than 10 years from the termination of the Service Finality relationship and no later than 2 years from the collection of data for the Marketing Purposes. Subsequently personal data will be stored, but will no longer be processed, for the time established by the current provisions of law on tax and civil law.

RIGHTS OF THE INTERESTED PARTY

The interested party can exercise the rights foreseen in the GDPR 679/16 in particular:
Art. 15 Right of access to own data.
Art. 16 Right of rectification.
Art. 17 Right to cancel.
Art. 18 Right to limit the processing.
Art. 20 Right to portability.
Art. 21 Right of opposition.
Art. 22 Right to oppose the automated decision-making process.
The interested party exercises these rights by writing to Gianluca Cisana specifying the subject of the request, the right that he intends to exercise and attaching a photocopy of an identity document attesting the legitimacy of the request.

REVOCATION OF CONSENT

According to the Art. 6 of the GDPR 679/16 the interested party can revoke the consent to the processing of personal data provided, remembering that the lack of availability of the same does not allow the fulfillment of the above obligations and the administrative and accounting management of the relationship.

AUTOMATED DECISION MAKING PROCESSES

Gianluca Cisana does not perform treatments that consist of automated decision-making processes on the data provided.

COMPLAINTS TO THE CONTROL AUTHORITY

The interested party has the right to lodge a complaint with the Supervisory Authority of the state of residence.
The reference Authority is the Guarantor for the protection of personal data http://www.garanteprivacy.it