DATA CONTROLLER:
The Data Controller is FENIX ITALIAN EXPERIENCE SRL with registered office in Via Francia, 21/C – 37135 VERONA (VR), VAT number 04507820233 and can be contacted by phone at +39 392 9236587 or by e-mail at info@fenixlive.it.
TYPE OF DATA PROCESSED:
The data processed by the Data Controller, collected directly from the data subject, are those necessary to achieve the purposes set out in the following point. By way of non-exhaustive example they are:
- Name, Surname, Company name and legal form
- Address and other telephone or telematic contacts (e-mail, website, etc.)
- Fiscal data such as tax code and/or VAT number
- IP address and navigation data
PURPOSE OF PROCESSING, LEGAL BASIS AND CONSEQUENCES OF FAILURE TO PROVIDE DATA:
PURPOSE
The performance of all tasks necessary for the provision of the requested services. Exercise the holder’s rights such as, for example, the right to defence in court.
LEGAL BASIS
Fulfilment of obligations arising from the existing contractual relationship. Legitimate interest of the data controller.
CONSEQUENCES OF NON-PROVISION
With regard to personal data relating to the performance of the contract to which you are a party or relating to the fulfilment of a legal obligation (e.g. the fulfilment of obligations relating to the keeping of accounting and tax records), failure to provide personal data prevents the completion of the contractual relationship itself. The provision of data is compulsory because it is necessary for the exercise of a legitimate right of the Controller.
The data held by the Controller will be processed in accordance with the principles set out in Article 5 of the GDPR, such as: lawfulness, correctness, transparency, limitation, minimisation, integrity and confidentiality.
RECIPIENTS OF THE DATA:
Within the scope of achieving the purposes described above, your data may be communicated to employees and collaborators within the Controller’s structure in their capacity as persons in charge of processing, who will process them in accordance with the instructions specifically given.
Outside the Data Controller’s structure, data may be communicated to external collaborators and companies involved in providing services to the Data Controller as specifically authorised Data Processors such as:
- Professionals and consultants;
- Companies providing technical support to the Controller;
- Banking, financial and insurance institutions;
- Judicial and administrative authorities for the fulfilment of legal obligations;
- Consultants and assistants for computer hardware and software maintenance;
- Third parties appointed by the Controller to develop the company’s commercial network;
- Conveyors
TRANSFER OF DATA TO COUNTRIES OUTSIDE THE EU:
The Data Controller does not transfer data outside the borders of the European Community.
PERIOD OF DATA RETENTION:
The data collected will be kept for the period of time strictly necessary to achieve the purposes described above and, in any case, for a period not shorter than that dictated by legal and/or fiscal obligations (currently 10 years).
PROFILING:
Your personal data are not subject to dissemination or to any fully automated decision-making process, including profiling.
RIGHTS OF THE DATA SUBJECT:
As a data subject, you always have the right to request from the Controller:
- Access to your data and information
- The rectification and erasure (“right to be forgotten”) of data
- The restriction of processing or the possibility to object to processing
- To request data portability
To exercise your rights, you may contact the Data Controller directly.
You also have the right to lodge a complaint with the supervisory authorities (Data Protection Authority – www.garanteprivacy.it).
METHOD OF TREATMENT:
The data you provide will be processed by manual, computerised or telematic means, in any case in compliance with the GDPR and the confidentiality obligations that govern the Controller’s activities. The data will be processed using IT tools, on paper and on any other suitable type of support, in compliance with the appropriate security measures pursuant to Article 5(1)(F) of the GDPR.