Privacy Policy

Article 1

Data Controller

The Data Controller for the processing of personal data is:

Article 2

Nature of personal data

The data processed includes personal information collected — identification, accounting, commercial, administrative, and tax data — as well as any judicial data directly related to the Customer (when a natural person), or, for essentially identification and possibly judicial data, to other Data Subjects (such as collaborators, employees, contacts, etc.) communicated in the execution and conduct of relations with the Data Controller.

Article 3

Purposes of processing

Personal data will be processed for the following purposes:

• Fulfillment of pre-contractual obligations (e.g., database consultation for solvency analysis and verification of reputational criteria) and/or contractual obligations (for the supply of IT products and/or related services) with related and/or consequent fulfillments
• Compliance with legal obligations
• Protection of legitimate interests where necessary

Article 4

Legal basis and processing methods

Personal data will be processed based on the following legal grounds:

• Contractual — for the fulfillment of pre-contractual and/or contractual obligations and the management of the contract with the Data Controller
• Legal obligations — for the requirements to which the Data Controller is subject
• Legitimate interest — for the potential defense of its rights

Personal data will be processed using paper-based and/or electronic means, in compliance with personal data protection regulations and, in particular, security measures.

Personal data will not be subject to automated processing or profiling. Personal data will not be disclosed to the public.

Article 5

Mandatory or optional nature of data provision

The provision of personal data is mandatory for the purpose of carrying out pre-contractual negotiations, entering into the contract and its management, and fulfilling legal requirements.

Refusal to provide personal data will result in the impossibility of entering into the contract.

Article 6

Recipients of personal data

Personal data may be disclosed, strictly in relation to the purposes indicated above, to the following recipients or categories of recipients:

• Public bodies and law enforcement and public security authorities
• Professionals and consultants in accounting, tax, and legal matters
• Companies for repair and/or installation of electronic/IT equipment
• Debt collection companies and contract consultancy services
• Banking institutions for payment of fees
• Employees and/or collaborators of the Data Controller specifically trained and authorized to process data pursuant to Art. 28 of EU Regulation 2016/679

Article 7

Retention period

The data processed will be retained for the time necessary to achieve the purposes for which it was collected. The criteria used to determine the retention period also include those established by Italian law on statutory limitations, including civil and tax regulations regarding the processing of administrative-accounting data.

Article 8

International data transfer

Personal data will not be transferred abroad to countries other than those belonging to the European Union that do not ensure adequate levels of protection for individuals.

Article 9

Data Subject Rights (Art. 15–22 GDPR)

You may ask the Data Controller at any time, subject to the existence of the necessary conditions:

You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante).

The rights mentioned can be exercised by submitting a request to the Data Controller via email, certified email (PEC), or registered mail at the contact details above, accompanied by a copy of a valid identity document: