Information "Code regarding the protection of personal data"

The "Privacy Code" (Legislative Decree 196/2003, already updated in the past with Legislative Decree 101/2018) contains national provisions on personal data protection, within the limits set by the GDPR (General Data Protection Regulation – European Regulation 2016/679) and of DL 139/2021We provide you with the following information:

The personal data provided by you or acquired in the course of our activity will be processed based on the principles of fairness, lawfulness, transparency, and protection of your privacy and rights.

2. The processing of such personal data will be aimed at fulfilling legal, contractual obligations or those arising from a mandate given by the data subject.

3. Personal data may also be used for the following purposes: conducting statistical surveys and market research; verifying customer satisfaction; sending IT, promotional, and advertising material via mail, email, SMS, MMS, phone, or other means of communication using the data provided by the interested party in this form.

4. The processing can also be carried out using electronic tools in ways that ensure the security and confidentiality of the data.

5. The provision of data is optional for the purposes referred to in point 2. Any refusal to provide us, in whole or in part, with your personal data or authorization for processing may result in the non-performance or partial performance of the contract or the non-performance of the assignment.

6. The provision of data is optional for the purposes referred to in point 3, and any refusal to grant us authorization for such processing cannot result in the non-performance or partial performance of the contract or the non-performance of the assignment.

7. The data may be communicated, exclusively for the purposes indicated above, to specific entities such as legal or tax consultants, banking institutions, and transport companies, in order to fulfill the obligations mentioned above. The data may also occasionally be known to companies affiliated with us, parent or subsidiary companies, within the limits of the purposes indicated above or for reasons of internal organization. Other entities may become aware of the data as data processors or persons in charge of processing. In no case will the processed personal data be disseminated.

8. Even personal data classified as sensitive, meaning data suitable for revealing racial and ethnic origin, religious, philosophical or other beliefs, political opinions, membership in parties, unions, associations or organizations of a religious, philosophical, political, or union nature, as well as personal data suitable for revealing health status and sexual life, can be processed with the written consent of the data subject (where required) and with prior authorization from the Data Protection Authority (Article 26 of Legislative Decree No. 196/2003), according to the methods and purposes indicated above.

9. The data controller is Assoprovider with registered office C/O Antonio Ruggiero, via Casa Sasso n. 7 – 84014 Nocera Inferiore (SA) Telephone and Fax 081.9210678 info@assoprovider.it The data controller is Eng. Dino Bortolotto
It is possible to obtain an updated version of this document and the updated list of data processors by contacting the data controller directly, the person in charge indicated above, or on the website assoprovider.it

10. You/You may contact the data controller or processor to exercise your rights, as provided for by Article 7 of Legislative Decree No. 196/2003, which we reproduce in full for your convenience:

Art. 7  Right of access to personal data and other rights

1. The data subject has the right to obtain confirmation of the existence or non-existence of personal data concerning them, even if not yet recorded, and their communication in an intelligible form.
2. The data subject has the right to obtain the indication:
a) the origin of personal data;
b) the purposes and methods of processing;
c) the logic applied in the case of processing carried out with the aid of electronic tools;
d) the identifying details of the owner, the managers, and the designated representative pursuant to Article 5, paragraph 2;
e) the entities or categories of entities to whom personal data may be communicated or who may become aware of it as a designated representative within the territory of the State, as data processors or persons in charge.
3. The data subject has the right to obtain:
a) the updating, rectification or, when interested, the integration of the data;
b) the deletion, anonymization, or blocking of data processed in violation of the law, including data for which retention is not necessary in relation to the purposes for which the data were collected or subsequently processed;
c) the certification that the operations referred to in letters a) and b) have been brought to the attention of those to whom the data have been communicated or disseminated, including their content, except in cases where this fulfillment proves impossible or involves a manifestly disproportionate use of means compared to the protected right.
4. The data subject has the right to object, in whole or in part:
a) for legitimate reasons concerning the processing of personal data relating to him/her, even if pertinent to the purpose of the collection;
b) to the processing of personal data concerning him/her for the purpose of sending advertising material or direct sales or for carrying out market research or commercial communication.