The Company ZEC S.p.A. (VAT IDENTIFICATION NUMBER IT01720400348), with registered office at address Via Lungolorno, 11, 43052 Colorno (PR), Italy, contact details: e-mail firstname.lastname@example.org certified e-mail address (Italian acronym PEC) email@example.com phone +39 0521 816631, owner of the website https://www.zecspa.com (hereinafter the “Site”), in its capacity as the Controller of the personal data of the users of the Newsletter service (hereinafter the “Users”), through its legal representative in office, gives here below the information to data subjects pursuant to Article 13 of Regulation (EU) 2016/679 of 27 April 2016 (hereinafter the “Regulation”, or the “Applicable Legislation”).
This Newsletter service is reserved to persons that are at least eighteen years old. Therefore, the Data Controller does not collect any personal data of people under 18 years of age. At the users’ request, the Data Controller will erase without delay any and all personal data collected concerning people under 18 years old.
1 Purposes of the processing
The Users’ personal data will be processed lawfully by the Data Controller in accordance with Article 6 of the Regulation for the following purposes:
However, it is always possible to ask the Data Controller to clarify the specific legal basis for each processing activity and in particular to specify whether the processing activity is based on the law, set forth in a contract or needed to close a contract.
The provision of the personal data for the above-stated purposes is optional but necessary as any failure to provide them will entail the impossibility for the User to receive the newsletter from the Data Controller. In case he or she gives his or her consent, the User shall be entitled to withdraw it at any time, notifying said withdrawal to the Data Controller with one of the methods set out in paragraph 5 below.
Furthermore, the Users can easily opt out and stop further newsletters from being sent, also clicking on the specific link for consent withdrawal, which is given in every e-mail containing the newsletter. After consent is withdrawn, the Data Controller will send an e-mail message to the User in order to for the consent withdrawal to be confirmed.
2. Data processing method and storage period
The Data Controller will process the Users’ personal data with manual and IT means, in accordance with logics strictly connected to the purposes, in order to ensure the data security and confidentiality.
The personal data of the Users will be stored for the time strictly necessary to pursue the primary purposes stated in point 1) above or, however, for the time necessary in order to protect the interests both of the Users and of the Data Controller under the Italian civil law.
3. Scope of disclosure and dissemination of the data
Furthermore, third parties may come to know the Users’ personal data as said third parties may process personal data on behalf of the Data Controller in the capacity as “External Data Processors”, with said third parties being, by way of example, providers of IT and logistic services instrumental to the service operation, providers of outsourced or cloud computing services, advisors and consultants.
The Users have the right to obtain a list of any data processors appointed by the Data Controller, making the relevant request to the Data Controller with the methods set out in paragraph 5) below.
4. Transfers outside the EU
The data are not processed in extra-EU countries.
Nevertheless, the Data Controller reserves the right to use cloud services and, in this case, the providers of the services will be selected amongst those who ensure appropriate safeguards in accordance with Article 46 of Regulation (EU) 2016/679.
5. Rights of the data subjects
The Users will be able to exercise their rights under the Applicable Legislation by getting in touch with the Data Controller using the following methods:
Pursuant to the Applicable Legislation, the Data Controller informs the Users that they have the right to obtain information as to (i) the origin of their personal data; (ii) the purposes and methods of the processing; (iii) the logic applied in the case of processing carried out with the help of electronic tools; (iv) the identification of the data controller and data processors; (v) the entities or categories of entities to which the personal data may be disclosed or which may become aware of the personal data in the capacity of data processors or persons in charge of data processing..
Furthermore, the Site Users have the right to obtain:
Furthermore, the Site Users have:
The Italian supervisory authority is the Italian Data Protection Authority Garante per la protezione dei dati personali, with headquarters at Piazza Venezia 11, 00186 – Rome, Italy (http://www.garanteprivacy.it/).