PRIVACY POLICY
According to European Regulation UE 2016/679 and Italian Legislative Decree 196/2003, as amended by
Italian Legislative Decree 101/2018
According to art. 13 of Italian Legislative Decree 196/2003, as amended by Italian Legislative Decree 101/2018 (hereinafter “Privacy Code”) and to art. 13 of European Regulation UE 2016/679 (hereinafter “GDPR 2016/679”), providing rules to protect on protection of individuals and natural persons with regard to the processing of personal data and the free circulation of such data, the company EPAPOWER S.R.L. informs that personal data supplied during the interaction with its web site and*/or with web services supplied by EPAPOWER S.R.L. will be processed in compliance with the Personal Data Protection Law and the resulting rights and obligations.
TYPE OF DATA COLLECTED
Personal data collected, upon express consent, are exclusively:
- Identification data (name, surname, address, telephone, email, etc.)
- Fiscal data (if required according to laws – fiscal number, VAT identification number, etc.)
DATA CONTROLLER
The data controller (“Holder”) is EPAPOWER S.R.L. with registered office in Lungolago Gramsci 7 -28887 OMEGNA (VB) – ITALY, with VAT ID & F.C. 02182080032, in the person of its pro tempore legal representative addressed, for this purpose, at the Company resitered office.
DATA PROTECTION OFFICER (DPO)
The Data Protection officer (DPO) is EPAPOWER S.R.L., in the person of ing. Micaela Albertinazzi, contactable at any time at the following contact details:
address: Via Salvemini 23 – 28012 CRESSA (NO) - ITALY
tel.: 0322 098077
mail: epapower@epapower.com
PURPOSE OF PROCESSING
Personal data, communicated directly by the interested person upon request of a service supplied by the Data Controller and/or execution of a commercial and/or precontractual and contractual relationship, are necessary according to law obligations.
The communication of such data and the relative treatment are therefore obligatory for the purpose of carrying out the activities necessary for the provision of the required service and for the management of the related practice, as well as the fulfillment of the related obligations provided by the relevant legislation; therefore, the rejection to provide such data could determine the impossibility to provide the requested service by the “Holder”.
METHOD OF PROCESSING AND CONSERVATION
Data process will be performed by authomatic and/or manual means; Personal Data collected will be treated on paper and/or with IT and telematic tools and added to the relevant database,in compliance with art. 32 of GDPR 2016/679 and Annex B of Italian Legislation Decree 196/2003 (artt. 33-36 of Privacy Code) with regard to safety measures, by authorized subjects in compliance with art. 29 GDPR 2016/ 679.
Personal data collected by electronic means will be processed with all safety means to ensure rights of interested people, in compliance with art. 22 par. 3 GDPR 20016/679.
Data collected and processed will be stored with necessary means to ensure safety and minimize the risk of destruction and/or lost, even accidental, and/or not authorized access.
In compliance with art. 5 GDPR 2016/679, personal data collected will be stored for the duration of the commercial relationship and, after, according to law prescription. Data will not be transferred abroad.
DATA RECIPIENTS
According to the purpose of process above mentioned, they may have access to Personal Data concerning you, employees or collaborators of the Data Controller who need them for performing their duties, or by their position inside the comapny, or other service suppliers authorized to the treatment by the Data Controller.
The Data Controller is available at any time to provide the names and contacts of the treatment responsibles of Personal Data. Always within the limits relevant to the purpose of processing indicated and based on the type of consent given, your Personal Data may be disclosed to all those subjects whose knowledge is essential for the performance of service requested (social security bodies, qualified entities in execution of specific legal obligations, juridical and administrative aothorities, etc.). your Personal Data will not be shared in any way.
LEGAL FUNDATION OF THE PROCESSING
In compliance with art. 6, comma 1, letter b) of GDPR, the legal fundation of the processing is given by the LAWFULNESS OF PROCESSING as necessary for the above mentioned purpose for providing services requested by the interested person.
PROFILING
Data provided will not be used by any authomatic process of decision, neither the profiling, in compliance with art. 22, par. 1 and 4
of GDPR 679/2016.
RIGHTS OF THE INTERESTED PARTY
In compliance with art. 7 of Privacy Code 196/2003 and art. from 15 to 22 of GDPR 2016/679, the interested party is always entitled to:
1. Ask about the existence of Personal Data;
2. Obtain information about processing purpose, category of collected data, recipients to whom data have been communicated or will be in future and, when possible, conservation time;
3. Obtain the correction or cancellation of data, except for those necessary for legal and contractual obligations;
4. Obtain the limitation fo the processing, except for necessary legal and contractual obligations;
5. Obtain the data portability;
6. Oppose to the processing, except for necessary legal and contractual obligations;
7. Oppose to any authomatic decision process included the profiling;
8. Ask to the Data Controller access to data and the correction or cancellation of data or the limitation of the processing of personal data, further to the right to obtain the data portability, except for necessary legal and contractual obligations;
9. Revoke the consent to data process without prejudice of processing lawfulness based on consent given before, except for necessary legal and contractual obligations;
10. Propose a complaint to a supervisory authority, for the Italian territory the Guarantor for Protection of personal data to be contacted directly by website www.garanteprivacy.it.
The interested party is entitled to exercise his rights with written request to the Data protection Officer or directly to the Data
Controller through the above mentioned contact details or by legal email (pec) to epapower@pec.it.
MODIFICATION TO THIS POLICY
This policy may be subjected to revision. The Data Controller will published the most recent version. It is advised to check it regularly.
