Privacy Policy

Processing of personal data: information

AREA3D Srl with registered office: in via del Pallone, 10 57123 Livorno - PI: 01287900490

as the Data Controller, makes public the following information in connection with the provision of personal data.

1. Subject of processing
The Controller processes personal data, such as your first name, last name, company name, address, telephone number, e-mail address, bank and payment details) - hereinafter, "master data" or also "data") that you have provided when concluding contracts for the Controller's services.

2. Purpose of processing
Your personal data are processed:

without your express consent, art. 6 lett. b), e) GDPR), for the following Service Purposes: - to conclude contracts for the Owner's services; - to fulfill pre-contractual, contractual and tax obligations arising from existing relationships with you; - to fulfill obligations required by law, regulation, EU legislation or an order of the Authority (such as anti-money laundering); - to exercise the rights of the owner, for example the right to defense in court;
Only after your specific and separate consent (art.7 GDPR), for the following Marketing Purposes: - to send you by e-mail, mail and/or sms and/or telephone contact, newsletters, commercial communications and/or advertising material about the services offered by the owner.

3. Methods of processing
The processing of your personal data is carried out by means of the operations indicated in Art. 4 Privacy Code and Art. 4 No. 2) GDPR and namely: collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion and destruction of data. Your personal data is subject to both paper-based and electronic and/or automated processing. The Data Controller will process personal data for as long as necessary to fulfill the above purposes and in any case for no longer than 10 years from the termination of the relationship for Service Purposes and no longer than 2 years from the collection of data for Marketing Purposes .

4. Access to data
Your data may be made accessible for the purposes set out in Article 2.A) and 2.B): - to employees and collaborators of the Data Controller - to third party companies or other entities (by way of example, credit institutions, professional firms, consultants, insurance companies for the provision of insurance services, etc. ) that perform outsourcing activities on behalf of the Controller, in their capacity as external data processors.

5. Communication of data
Without the need for express consent (ex art. 6 lett. B) ec) GDPR), the Data Controller may communicate your data for the purposes referred to in art. 2.A) to Supervisory Bodies, Judicial Authorities, as well as to those subjects to whom the communication is compulsory by law for the fulfillment of the said purposes. These subjects will process the data in their capacity as autonomous data controllers. Your data will not be disseminated.

6. Data Transfer
Personal data are stored on servers located within the European Union. It is in any case understood that the Data Controller, should it become necessary, will be entitled to move the servers outside the EU as well. In this case, the Data Controller assures as of now that the transfer of data outside the EU will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided by the European Commission.

7. Nature of data provision and consequences of refusal to respond
The provision of data for the purposes of Article 2.A) is mandatory. In their absence, we will not be able to guarantee the services of art. 2.A). The provision of data for the purposes of Art. 2.B) is optional. You may therefore decide not to provide any data or to subsequently deny the possibility of processing data already provided: in this case, you will not be able to receive newsletters, commercial communications and advertising material pertaining to the Services offered by the Owner. You will, however, continue to be entitled to the Services referred to in Article 2.A).

8. Rights of the Data Subject
In your capacity as a data subject, you have the rights set forth in Article 15 GDPR, namely the rights to:

  • Obtain confirmation of the existence or non-existence of personal data concerning you, even if not yet registered, and their communication in intelligible form;
  • obtain the indication:
    of the origin of the personal data;
    of the purposes and methods of processing;
    of the logic applied in case of processing carried out with the aid of electronic instruments;
    of the identification details of the owner, managers and designated representative under Article 3(1) GDPR;
    the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them as designated representative in the territory of the State, managers or agents;
  • obtain:
    the updating, rectification or, when concerned, the integration of data;
    the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those that do not need to be kept for the purposes for which the data were collected or subsequently processed;
    certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
    object, in whole or in part
    for legitimate reasons, to the processing of personal data concerning you, even if pertinent to the purpose of collection;
    to the processing of personal data concerning you for the purpose of sending advertising material by electronic mail and / or by traditional marketing methods by telephone and / or paper mail.
    It should be noted that the data subject's right to object, set out in point b) above, for direct marketing purposes by automated means extends to traditional marketing methods and that, in any case, the data subject's right to exercise the right of object remains unaffected, even if only in 4 parts. Therefore, the data subject may decide to receive only communications by traditional means or only automated communications or neither type of communication. Where applicable, he/she also has the rights under Articles 16-21 GDPR (Right to rectification, right to be forgotten, right to restrict processing, right to data portability, right to object), as well as the right to complain to the Data Protection Authority.

 

9. Procedures for exercising rights
You may at any time exercise your rights by sending a registered letter with return receipt to AREA3D Srl with registered office: in via del Pallone, 10 - 57123 Livorno - PI: 01287900490 - or an email to: info @ area3d.it

10. Data controller
Data controller is AREA3D Srl with registered office: Via del Pallone, 10 - 57123 Livorno - PI: 01287900490 Access to data