Privacy Policy

INFORMATIVE ISSUED IN ACCORDANCE WITH ARTT. 13 AND 14 OF THE GDPR

(GENERAL DATA PROTECTION REGULATION) 2016/679

The current legislation on the processing of personal data, defined in compliance with the EU Regulation 2016/679 of April 27th 2016 and concerning the security of natural persons with regard to the treatment of personal data, as well as the free movement of such data (General Data Protection Regulation, hereinafter referred to as GDPR),  lays down provisions designed to ensure that the processing of personal information is carried out with due regard to fundamental rights and freedoms of natural persons, with special regard to their right to data protection.

1. Identity and contact details of the Data Controller

The Data Controller for all the personal information collected, processed and used in respect of the implementation of the contract, in the person of its legal representative, is Sercom Italia di Bruno Pisano with registered office in Via Nazionale 18, n. 375 – 89013 Gioia Tauro – VAT 02794230801 – sercomitalia.com.

2. Data source, purpose and legal basis for data-processing

All the information processed by Sercom Italia as the Data Controller will be gathered in accordance with the art.14 of the GDPR.

The data gathered by Sercom Italia shall be, but not limited to: name, surname, birth date, social security number and/or VAT, e-mail, telephone number, etc.

The personal data will be treated by Sercom Italia, in view of the existing contract with the customer, for the purposes related to the Sales Contract.

The legal basis of such data processing is therefore detectable in the fulfilment of the obligation arising from the contract, as were referred to.

Please note that Sercom Italia will process personal data for purposes other than those identified above only in the case in which it will have to comply with legal obligations. Should the data be used for purposes other than those identified above, onus will be on the Controller to provide a further informative.

3. Recipients or categories of recipients

The personal data provided shall not be disseminated to indefinite subjects. They may however be disclosed to well-defined subjects, in full compliance with the legal provisions, for purposes which are closely related to those previously stated.  Any access to personal data is limited to persons authorised by the Controller.

4. Profiling

Personal data won’t be subject to profiling activities or to automated decision-making process.

5. Retention period

Personal data should not be retained longer than necessary in relation to the purpose for which such data is processed, in compliance with the conditions laid down by the GDPR. Especially, the data will be retained for the entire duration of the contract referred to here, and beyond, to a limited extent necessary to comply with legal and regulatory obligations to which Sercom Italia is subject.

Once this period has elapsed, the onus will be on Sercom Italia to proceed with the erasure of data from the system and/or registrations, namely to proceed with the anonymisation of data in order to avoid any further identification.

6. Mandatory Conferment

Taking into account the aforementioned purposes of processing, the provision of data is mandatory. A failure to provide data, partial or incorrect provision will make it impossible for Sercom Italia to deliver the required services and therefore to fulfil its obligations.

7. Data subject’s rights

The data subject is entitled to obtain confirmation on whether a data processing is ongoing or not, and in such case obtain:

• Access to personal data (art. 15);
• Rectification of inaccurate personal data (art.16);
• Erasure of personal data (art. 17);
• Restriction of processing (art.18);
• Objection to the processing of personal data (art. 21);
• Withdrawal of consent (when expressed).

The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where the processing is based on consent or on a contract and it is carried out by automated means.

Data subject shall have the right to lodge a complaint with the supervisory authority.

All the applications shall be notified according to the following modalities:

1. Recorded delivery letter sent to the data controller’s address Sercom Italia di Bruno Pisano – Via Nazionale 18, n. 375 (89013) Gioia Tauro – VAT 02794230801;

2. E-mail: [email protected].