| Information to customersThisinformation is provided to customers, whether natural persons or natural persons acting on behalf of customers legal persons, of 2CR SNC DI CAPPA CLAUDIO E C. SNC, in accordance with art. 13 d. lgs. 30 June 2003 n°196 – “Code for the protection of personal data” and art. 13 GDPR 679/2016 – “European Regulation on the Protection of Personal Data”.Identity of the OwnerTheOwner of the processing of data of customers natural persons, or natural persons acting on behalf of customers legal persons, is CAPPA CLAUDIO of 2CR SNC DI CAPPA CLAUDIO E C. SNC with registered office inREGION ZIONDINO-STRADA PROV. No. 430, 12070 – PRIERO (CN).No DPO has been designated . |
| Source of dataPersonal data processed are those provided by the data subject during: – visits to the premises; – interactions through the website; – requests for information, including by e-mail; – previous transactions.Purposes of data processingFiscal obligations, organizational management and bureaucratic fulfillment of requested services. Management of negotiations and pre-contractual relations. Management of post-contractual and commercial activities that are the subject of the business activity.Finally, all personal data of the aforementioned interested parties, will be included in the archives of the Owner and used (given art. 130 paragraph 4 d.lgs. 196/2003 and also given the General Measure of the Guarantor G.U. July 1, 2008 No. 188/C, formulation 6, points a, b, c) for sending communications concerning products, services, news and promotions.Legal basisThe legal basis is the execution of a contract to which the data subject is a party or to the execution of pre-contractual measures taken at the request of the same. Some processing is carried out for the legitimate interest of the Data Controller (promotion of its business activities and pursuit of statutory purposes).Recipients of the dataPersonaldata processed by the Data Controller will not be disseminated, i.e., it will not be disclosed to unspecified parties, in any possible form, including that of their provision or simple consultation. They may, on the other hand, be communicated to workers working in the employ of the Owner and to some external subjects who collaborate with them. They may also be communicated, to the extent strictly necessary, to subjects who, for the purpose of processing purchases or other requests or performance of services related to the transaction or contractual relationship with the Owner, must provide goods and/or perform services or services. Finally, they may be communicated to subjects entitled to access them by virtue of provisions of the law, regulations, EU regulations. In particular, on the basis of the roles and work duties performed, some workers have been legitimized to process personal data, within the limits of their competence and in accordance with the instructions given to them by theData Controller.Transfer of dataThe DataController does not transfer personal data to third countries or to international organizations. However, it reserves the possibility of using cloud services; in which case, the service providers will be selected among those who provide adequate guarantees, as provided for in Article 46 GDPR 679/16. |
| Data retentionTheData Controller shall retain and process personal data for the time necessary to fulfill the stated purposes. Thereafter, personal data will be retained, and not further processed, for the time established by the current civil and tax provisions.Rights of the data subjectWithreference to Art. 7 of Legislative Decree 196/2003 and Art. 15 – right of access, 16 – right to rectification, 17 – right to cancellation, 18 – right to restriction of processing, 20 – right to portability, 21 – right to object, 22right to object to automated decision making of the GDPR 679/16, the data subject shall exercise his/her rights by writing to the Data Controller at the above address, or by email, specifying the subject of his/her request, the right he/she intends to exercise and attaching a photocopy of an identity document attesting to the legitimacy of the request. |
| Revocation of consentWithreference to art. 23 of Legislative Decree 196/2003 and art. 6 of GDPR 679/16, the data subject may revoke at anysimomento any consent that may have been given. However, the processing that is the subject of this notice is lawful and permitted, even in the absence of consent, insofar as it is necessary for the performance of a contract to which the data subject is a party (the supply relationship) or for the fulfillment of his or her requests.Lodging of complaintsThedata subject has the right to lodge a complaint with the supervisory authority of the state of residence.Refusal to provide dataCustomerswho are natural persons may not refuse to provide the Data Controller with the personal data necessary to comply with the legal regulations governing commercial transactions and taxation. The provision of further of their personal data may be necessary to improve the quality and efficiency of the transaction. Therefore, refusal to provide the data required by law will prevent the fulfillment of orders; while failure to provide additional data maycompromise in whole or in part the fulfillment of other requests and the quality and efficiency of the transaction itself.Persons acting on behalf of legal entity customers may refuse to provide the Controller with their personal data. However, the provision of personal data is necessary for the proper and efficient management of the contractual relationship. Therefore, any refusal to provide it may jeopardize all or part of the contractual relationship itself.Automated decision-making processesThe Controller does not carry out processing that consists of automated decision-making processes on the data of natural person clients, or of natural persons acting on behalf of and for legal person clients. |
