Your acceptance to our Private Policy Statement
As of the May 25th, 2018, every company that deals with European customers has to comply with the new European General Data Protection Regulation, (EU Regulation n. 2016/679, hereinafter, "GDPR"), which will become applicable in all the Member States of the European Union and belonging to the European Economic Area.
Status Srl, located in Viale delle Industrie, 6/A - 31018 Gaiarine (TV) – VAT N. IT 02220170415, in quality of the data controller, informs you pursuant to the GDPR, that your personal data will be processed in the manner and for the following purposes:
Owner and Data Controller
Status S.r.l. - Viale delle Industrie, 6/A - 31018 Gaiarine (TV)
Owner contact email: firstname.lastname@example.org
The Data Controller processes personal, identifying and non-sensitive data (for example, but not limited to, name, surname, company name, address, telephone number, e-mail address, bank details - hereinafter, "personal data" or even "data") communicated by you or collected by us from a range of sources. The processing of data, freely given by you or otherwise collected, will be carried out in compliance with the privacy rules in force; based on the principles of correctness, lawfulness and transparency and carried out in compliance with the principles of relevance, completeness and non-excess.
The personal data as provided/furnished by you to us or collected by us from you or through such other sources are processed:
Also in this case it is reiterated, moreover, how the processing of data, freely given by you or otherwise collected, will be carried out in compliance with the privacy rules in force; based on the principles of correctness, lawfulness and transparency and carried out in compliance with the principles of relevance, completeness and non-excess. The data collected and recorded, will be kept, finally, for a period strictly necessary for the marketing purposes summarized above, and in any case not more than two years from the time of data collection.
Processing will be carried out in a non-automated, partially automated and in some cases fully automated manner.
The processing may consist of the following operations: collection, registration, organization, storage, consultation, use, processing, modification, selection, extraction, comparison, interconnection, transmission, communication, dissemination, cancellation, destruction, blocking and limitation.
The treatment will be carried out both with the use of paper supports and with the aid of electronic, computerized and telematic tools, suitable to guarantee the security and confidentiality of the data in compliance with the provisions of art. 32) of the GDPR.
In carrying out the processing operations, however, all technical, IT, organizational, logistic and procedural security measures will always be adopted, to guarantee the minimum level of data protection required by law. The methodologies mentioned above, applied for processing, will guarantee access to data only to persons indicated at point 5).
The data will be collected and recorded only for the purposes referred to in the point 2) and will be kept for a period strictly necessary for the above purposes and, in any case, not exceeding ten years from the time of collection of the same.
The provision of data is:
It should be noted that any refusal – albeit legitimate – to provide, in whole or in part, the personal data defined as “Mandatory” and “Essential” above, could compromise the regular carrying out of the relation with our Company and, particularly, may involve the impossibility to give execution to the regular performance of the company activity, of the operations related to the provision of products / services and the fulfillment of contractual obligations and / or law / regulation.
The subjects or the categories of subjects that will come to knowledge of the data or to which you / they can be communicated your personal data are the following ones:
If the processing could also concern personal data included in the category of “Particular Categories of Personal Data” (i.e. data suitable to reveal the racial and ethnic origin, religious beliefs, philosophical or otherwise, political opinions, the adhesion to parties, unions, associations or organizations of a religious, philosophical, political or trade union nature, as well as personal data capable of revealing the state of health and sex life) or “judicial” (that is, data capable of revealing measures in the matter of criminal records, the register of administrative sanctions depending on the offense and the related pending charges or the quality of defendant or suspect) the treatment will be carried out within the limits indicated by the Control Authority, according to the procedures set out in the GDPR and for the purposes strictly necessary for the regular performance of the company activity, of the operations related to the provision of products / services and the fulfillment of contractual obligations and / or law / regulation. In this case, the subjects or categories of subjects who may become aware of the sensitive data or to which the data may be disclosed are the same as those referred above.
The data processed may be processed and transferred, for the purposes referred to in points 2) and according to the methods referred to in point 3), also to entities established in the European Union or external to it on the basis of an Adequacy Decision of the European Commission, of Adequate Privacy or of a Authority of the Control Authority.
In any case, you can always ask the Legal Representative of the Data Controller and /or to the Data Protection Officer, to copy your personal data, information about the location where your personal data are processed and an updated list with the identification details of all the Data Processors and of the System Administrators authorized to process your data. At any time, you can freely revoke the consent given, without any charge and prejudice to the lawfulness of the treatments carried out up to that time and exercise the rights of the data subject to the Data Controller as provided by the GDPR, writing to email@example.com.
Further information and/or information on changes or updates can be requested/communicated to the following e-mail address: firstname.lastname@example.org.