GDPR (General Data protection Regulation)

Your acceptance to our Private Policy Statement

As of the May 25th, 2018, every company that deals with European customers has to comply with the new European General Data Protection Regulation, (EU Regulation n. 2016/679, hereinafter, "GDPR"), which will become applicable in all the Member States of the European Union and belonging to the European Economic Area.
Status Srl, located in Viale delle Industrie, 6/A - 31018 Gaiarine (TV) – VAT N. IT 02220170415, in quality of the data controller, informs you pursuant to the GDPR, that your personal data will be processed in the manner and for the following purposes:

Owner and Data Controller
Status S.r.l. - Viale delle Industrie, 6/A - 31018 Gaiarine (TV)
Owner contact email: info@statusitaly.it
Website: www.statusitaly.it

1) Types of Data Collected

The Data Controller processes personal, identifying and non-sensitive data (for example, but not limited to, name, surname, company name, address, telephone number, e-mail address, bank details - hereinafter, "personal data" or even "data") communicated by you or collected by us from a range of sources. The processing of data, freely given by you or otherwise collected, will be carried out in compliance with the privacy rules in force; based on the principles of correctness, lawfulness and transparency and carried out in compliance with the principles of relevance, completeness and non-excess.

2) Purpose of Data Processing

The personal data as provided/furnished by you to us or collected by us from you or through such other sources are processed:

  1. Without your express consent (Art. 6 lett. b), e) GDPR), for the following purposes:
    • Use, administration and management of the Website;
    • Regular delivery of the requested products and services;
    • Requirements relating to the stipulation of contracts and appointments, to their execution, to subsequent modifications or variations and for any obligation envisaged for the performance of the same;
    • Operational, organizational, managerial, fiscal, financial, insurance and accounting requirements related to the contractual and / or pre-contractual relationship established;
    • Compliance with any type of obligation provided for by laws, regulations or community legislation;
    • Registration, management and storage of logs for possible access to the Website;
    • Security purposes regarding the use of the Website and related products and services;
    • Statistical analysis, market surveys and monitoring of the use of the Website;
    • Needs for monitoring the methods of delivery of products/services, the progress of relations with customers and suppliers and the analysis and management of risks connected to the contractual relationship;
    • Potential promotion, sale and delivery of products and services through the Website;
  2. Upon your express consent for the following marketing purposes:
    • For direct marketing purposes via SMS, phone call, email, fax, mail, social media and/or any other appropriate communication channels.

Also in this case it is reiterated, moreover, how the processing of data, freely given by you or otherwise collected, will be carried out in compliance with the privacy rules in force; based on the principles of correctness, lawfulness and transparency and carried out in compliance with the principles of relevance, completeness and non-excess. The data collected and recorded, will be kept, finally, for a period strictly necessary for the marketing purposes summarized above, and in any case not more than two years from the time of data collection.

3) Processing methods

Processing will be carried out in a non-automated, partially automated and in some cases fully automated manner.
The processing may consist of the following operations: collection, registration, organization, storage, consultation, use, processing, modification, selection, extraction, comparison, interconnection, transmission, communication, dissemination, cancellation, destruction, blocking and limitation.
The treatment will be carried out both with the use of paper supports and with the aid of electronic, computerized and telematic tools, suitable to guarantee the security and confidentiality of the data in compliance with the provisions of art. 32) of the GDPR.
In carrying out the processing operations, however, all technical, IT, organizational, logistic and procedural security measures will always be adopted, to guarantee the minimum level of data protection required by law. The methodologies mentioned above, applied for processing, will guarantee access to data only to persons indicated at point 5).

4) Retention Time of the Processed data

The data will be collected and recorded only for the purposes referred to in the point 2) and will be kept for a period strictly necessary for the above purposes and, in any case, not exceeding ten years from the time of collection of the same.

5) Nature of the provision of data and consequences of refusal to respond

The provision of data is:

  • Mandatory and does not require your consent for the achievement of purposes related to obligations under the laws, regulations or community regulations;
  • Essential and does not require your consent for all personal data that are essential for the correct establishment, management and continuation of the commercial and / or contractual relationship and for the use of the Website;
  • Essential and does not require your consent for the pursuit of legitimate business interests or third parties;
  • Optional and requires your explicit consent for all personal data collected for purposes not directly and / or indirectly related to contractual obligations, pre-contractual, law, safeguarding vital interests, carrying out public tasks, exercising public powers or pursuing legitimate interests.

It should be noted that any refusal – albeit legitimate – to provide, in whole or in part, the personal data defined as “Mandatory” and “Essential” above, could compromise the regular carrying out of the relation with our Company and, particularly, may involve the impossibility to give execution to the regular performance of the company activity, of the operations related to the provision of products / services and the fulfillment of contractual obligations and / or law / regulation.

6) Access to Data

The subjects or the categories of subjects that will come to knowledge of the data or to which you / they can be communicated your personal data are the following ones:

  1. Legal Representative of the Data Controller;
  2. Management, Administration, Sales, Information Systems, Purchasing Department, Secretariat, Customer Assistance;
  3. Data Processors: Consultants and Consultancy Companies, Software House and ITC Businesses, Freelancers, Autonomous Workers, Technical and Engineering Studies, Marketing and Advertising Agencies, Banking and Insurance Institutions, Credit Recovery Companies, Chartered Accountants, Labor Consultancy Studies, Law Offices, Notary Studies, Doctors and Medical Studies and Subcontractors.

If the processing could also concern personal data included in the category of “Particular Categories of Personal Data” (i.e. data suitable to reveal the racial and ethnic origin, religious beliefs, philosophical or otherwise, political opinions, the adhesion to parties, unions, associations or organizations of a religious, philosophical, political or trade union nature, as well as personal data capable of revealing the state of health and sex life) or “judicial” (that is, data capable of revealing measures in the matter of criminal records, the register of administrative sanctions depending on the offense and the related pending charges or the quality of defendant or suspect) the treatment will be carried out within the limits indicated by the Control Authority, according to the procedures set out in the GDPR and for the purposes strictly necessary for the regular performance of the company activity, of the operations related to the provision of products / services and the fulfillment of contractual obligations and / or law / regulation. In this case, the subjects or categories of subjects who may become aware of the sensitive data or to which the data may be disclosed are the same as those referred above.

7) Data Communication

Personal data may also be disclosed to Public Authorities, Police Forces or other Public and Private Subjects, but exclusively for fulfilling legal obligations, regulations or Community legislation. The data in question will not be disclosed to other subjects other than those provided for in this privacy policy. The data suitable to disclose the state of health of the person concerned will not, in any case, be disseminated.

8) Data Transfer

The data processed may be processed and transferred, for the purposes referred to in points 2) and according to the methods referred to in point 3), also to entities established in the European Union or external to it on the basis of an Adequacy Decision of the European Commission, of Adequate Privacy or of a Authority of the Control Authority.

9) Rights of the interested party

In any case, you can always ask the Legal Representative of the Data Controller and /or to the Data Protection Officer, to copy your personal data, information about the location where your personal data are processed and an updated list with the identification details of all the Data Processors and of the System Administrators authorized to process your data. At any time, you can freely revoke the consent given, without any charge and prejudice to the lawfulness of the treatments carried out up to that time and exercise the rights of the data subject to the Data Controller as provided by the GDPR, writing to info@statusitaly.it.

Further information and/or information on changes or updates can be requested/communicated to the following e-mail address: info@statusitaly.it.

Gairaine, 25/05/2018
STATUS SRL