The company informs data subjects (Art.4, c.1 del GDPR) of the following general profiles, valid for all areas of processing:
Data Controller and Data Protection Officer
The Data Controller is the undersigned company (in person of the legal representative), which can be contacted for any information regarding privacy or to exercise the rights listed below, at the following addresses:
Name: Sicom Italia Srl
DATA PROTECTION OFFICER
Name: Galli Data Service Srl
Rights of the data subjects
Object of the processing
The company processes personal identifying data of customers / suppliers (for example, name, surname, company name, personal / fiscal data, address, telephone, e-mail, bank and payment details) and its operative contacts (name surname and data contact information) acquired and used for managing the services provided by the company.
Purpose and legal basis of processing
Data are processed for:
Failure to provide the aforementioned data will make it impossible to establish the relationship with the Controller. The aforementioned purposes represent, pursuant to Article 6, commi b, c, f, suitable legal bases for the lawfulness of the processing. If it is intended to carry out treatments for different purposes, a specific consent will be required from the interested parties.
Methods of the processing and data retention
The processing of personal data is carried out by means of the operations indicated in Art. 4 n. 2) GDPR and exactly as: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion and destruction of data. Personal data are subjected to both paper and electronic processing. The Data Controller will process personal data for the time necessary to fulfill the purposes for which it was collected and related legal obligations.
Scope of processing
The data are processed by internal subjects regularly authorized and instructed pursuant to Article 29 of the GDPR. It is also possible to request the scope of communication of personal data, obtaining precise indications on any external subjects (consultants, technicians, banks, transporters, etc.). The data are not normally disclosed or transferred outside the EU (they may be transferred outside the EU only in compliance with the conditions set out in Chapter V of the GDPR, aimed at ensuring that the level of protection of the persons concerned is not affected “Art .45 Transfer on the basis of an adequacy decision, Art.46 Transfer subject to adequate guarantees, Art.47 Binding company rules, Art.49 Specific derogations “). The data are not subject to automated processes that produce significant consequences for the data subject.