Privacy Policy
SGQ Mod. 12 Rev. 4 del 03/01/2024
This information is provided to clients, whether they are natural persons or natural persons who operate in the name and on behalf of clients who are legal persons, of the company Safeaty s.r.l., pursuant to art. 13 of Legislative Decree no. 196 of 30 June 2003 – “Code regarding the protection of personal data” and art. 13 GDPR 679/2016 – “European Regulation on the protection of personal data”.
Identity of the Data Controller
The Data Controller of the data of clients who are natural persons, or of natural persons who operate in the name and on behalf of clients who are legal persons, the company Safeaty s.r.l. with registered office in Brindisi in Via Tor Pisana, 36, with VAT number and Tax Code 02643530740, in the person of its Legal Representative Stefania Bianco
The DPO has not been designated.
Data source
The personal data processed are those provided by the data subject on the occasion of:
– visits to administrative and/or operational offices;
– interactions through the website;
– requests for information,
– including by email; previous transactions.
Purpose of the processing
Tax compliance, organizational management of the services requested and stipulation of sales contracts, order processing, delivery and installation of systems, bureaucratic obligations relating to the services requested. Management of commercial activities subject to entrepreneurial activity. Finally, all the personal data of the aforementioned data subjects will be included in the Data Controller’s archives and used (having regard to Article 130, paragraph 4 of Legislative Decree 196/2003 and also having regard to the General Provision of the Guarantor of the Official Gazette No. 188/C of 1 July 2008, formulation 6, points a, b, c) for sending communications regarding products, services, news and promotions.
Legal basis
The legal basis is the performance of a contract to which the data subject is a party or the execution of pre-contractual measures taken at the request of the same. Some processing is carried out for the legitimate interest of the Data Controller (promotion of its commercial activities and pursuit of statutory purposes).
Recipients of the data
The personal data processed by the Data Controller will not be disseminated, i.e. they will not be disclosed to unspecified subjects, in any possible form, including that of making them available or simple consultation. Instead, they may be communicated to workers who work for the Data Controller and to some external parties who collaborate with them. They may also be communicated, within the limits strictly necessary, to subjects who, for the purpose of processing purchases or other requests or services relating to the transaction or contractual relationship with the Data Controller, must supply goods and/or perform services or services. Finally, they may be communicated to persons entitled to access them by virtue of legal provisions, regulations, EU legislation. In particular, on the basis of the roles and work tasks performed, some workers have been legitimized to process personal data, within the limits of their competences and in accordance with the instructions given to them by the Data Controller.
Data transfer
The Data Controller does not transfer personal data to third countries or to international organizations. However, it reserves the right to use cloud services; in which case, the service providers will be selected from among those who provide adequate guarantees, as provided for by art. 46 GDPR 679/16.
Data retention
The Data Controller retains and processes personal data for the time necessary to fulfil the purposes indicated. Subsequently, the personal data will be stored, and not further processed, for the time established by the current provisions on civil and tax matters.
Rights of the data subject
With reference to art. 7 of Legislative Decree no. 196/2003 and art. 15 – right of access, 16 – right to rectification, 17 – right to erasure, 18 – right to restriction of processing, 20 – right to portability, 21 – right to object, 22 right to object to the automated decision-making process of GDPR 679/16, the data subject exercises his rights by writing to the Data Controller at the address above, or by email, specifying the subject of his request, the right he intends to exercise and attaching a photocopy of an identity document certifying the legitimacy of the request.
Revokes the consensus
With reference to art. 23 of Legislative Decree no. 196/2003 and art. 6 of GDPR 679/16, the data subject may revoke any consent given at any time. However, the processing covered by this policy is lawful and permitted, even in the absence of consent, as it is necessary for the performance of a contract to which the data subject is a party (the supply relationship) or to the processing of your requests.
Complaint
The data subject has the right to lodge a complaint with the supervisory authority of the country of residence.
Refusal to provide data
Clients who are natural persons may not refuse to provide the Data Controller with the personal data necessary to comply with the laws governing commercial transactions and taxation. The provision of additional personal data may be necessary to improve the quality and efficiency of the transaction. Therefore, refusal to provide the data required by law will prevent the processing of orders; while failure to provide additional data may compromise in whole or in part the processing of other requests and the quality and efficiency of the transaction itself.
Persons who operate in the name and on behalf of clients who are legal entities may refuse to provide their personal data to the Data Controller. However, the provision of personal data is necessary for the correct and efficient management of the contractual relationship. Therefore, any refusal to provide the data may compromise all or part of the contractual relationship itself.
Automated decision-making
The Data Controller does not carry out processing that consists of automated decision-making processes on the data of customers who are natural persons, or of natural persons who operate in the name and on behalf of customers who are legal persons.