Information provided pursuant to Art. 13 of Regulation (EU) 2016/679
(General Data Protection Regulation – GDPR)

The personal data collected are used for the sole purpose of responding to the requests sent, and communicating with the data subject in any subsequent phases. Some information (applicant’s area of employment and company headquarters) is collected in order to streamline the process of addressing it to the competent company structures territorially and by product area.

The communication of some data is mandatory and indicated through special asterisks.

• personal data (name, surname),
• contact details (e-mail address, telephone number),
• data relating to the professional sphere (area of employment),
• any other data/information entered in the request.

The processing is carried out in order to perform an activity requested by the data subject (art. 6, par. 1, lett. b), GDPR).

The data are processed exclusively by authorized personnel, instructed in the processing and adequately trained. They may also be processed by other subjects, involved by the Data Controller for purposes related to the processing itself (support for the management of the website; consulting firms): these subjects have the role of data processors and have signed specific agreements with the Data Controller pursuant to art. 28, par. 3, GDPR.

In any case, the personal data collected will not be disclosed to third parties, or disseminated or transferred outside the European Union/European Economic Area.

Personal data are processed lawfully, correctly and transparently, in compliance with the principles provided for by current legislation. The processing of personal data takes place through IT and automated tools. Taking into account the nature and characteristics of the processing, the Data Controller has adopted technical and organisational security measures aimed at limiting or excluding the risks of data loss, any unlawful or incorrect use, or unauthorised access.

Personal data is kept for the time necessary for the management of the relationship with the applicant.

The data are provided voluntarily by the data subjects. However, failure to provide them may affect the management of the request and the sending of feedback.

The data are processed in order to:

• conclude contractual/professional relationships,
• to fulfil pre-contractual, contractual and regulatory obligations related to existing or future relationships, as well as to manage the necessary communications related to them;
• exchange communications in relation to the contractual relationship established between the parties;
• to comply with the obligations provided for by laws, regulations, European standards or orders of the Authority;
• exercising the legitimate interests or rights of the Data Controller (for example: right of defence in court; protection of credit positions; ordinary internal operational, managerial and accounting needs).

• personal data (name, surname, tax code/VAT number);
• contact details (telephone number; e-mail/certified email address; domicile/registered office addresses);
• data relating to the professional sphere (data relating to the company
• for which the data subject works); bank and payment details.

The processing activities for these purposes are carried out on the basis of various conditions of lawfulness: for the fulfilment of contracts or pre- contractual measures (Article 6, paragraph 1, letter b) of the GDPR); for compliance with legal obligations (Art. 6(1)(c) GDPR); for the pursuit of the legitimate interests of the Data Controller (e.g.: exercise or defense of rights in or out of court) (Article 6, paragraph 1, letter f), of the GDPR).

The data are processed exclusively by authorized personnel who are instructed in the processing and adequately trained. They may also be processed by other subjects, involved by the Data Controller for purposes related to the processing itself (e.g.: tax/tax consultants; law firms; public bodies and competent authorities; etc.). In some cases, these subjects have the role of data processors and have signed specific agreements with the Data Controller pursuant to art. 28, par. 3, GDPR. In specific cases (e.g. investigations and assessments), personal data may be made available to the competent authorities.

In any case, personal data will not be disclosed to third parties, or disseminated or transferred outside the European Union/European Economic Area.

Personal data are processed lawfully, correctly and transparently, in compliance with the principles provided for by current legislation. The relevant processing is carried out through IT and paper tools.

Taking into account the nature and characteristics of the processing, the Data Controller has adopted technical and organisational security measures aimed at limiting or excluding the risks of data loss, any unlawful or incorrect use, or unauthorised access.

The data are kept for the time strictly necessary for the fulfilment of contractual or regulatory obligations.

The provision of data is mandatory for the fulfilment of the purposes described above

These data are used for the sole purpose of obtaining statistical information on the use of the site and to check its correct functioning. The data could also be used to ascertain responsibility in the event of hypothetical computer crimes against the site (legitimate interests of the owner).

The processing is necessary for the pursuit of the legitimate interests of the Data Controller in the security of its information system, and for the evaluation of the use of the website and its operation (Article 6, paragraph 1, letter f), of the GDPR).

The data are processed exclusively by authorized personnel who are instructed in the processing and adequately trained. They may also be processed by other subjects, involved by the Data Controller for purposes related to the processing itself (e.g. support for the management of information systems; of this website). In some cases, these subjects have the role of data processors and have signed specific agreements with the Data Controller pursuant to art. 28, par. 3, GDPR. The data may be communicated to the competent authorities in specific cases.

In any case, personal data will not be disclosed to third parties, or disseminated or transferred outside the European Union/European Economic Area.

Personal data are processed lawfully, correctly and transparently, in compliance with the principles provided for by current legislation. The processing is carried out using IT and automated tools.

Taking into account the nature and characteristics of the processing, the Data Controller has adopted technical and organisational security measures aimed at limiting or excluding the risks of data loss, any unlawful or incorrect use, or unauthorised access.

The data are normally stored for the fulfilment of the purposes indicated above, for short periods of time, with the exception of any extensions related to investigation activities.

The provision of data is implicit in accessing and browsing the website.