Via E.Bugatti, 53-56022 Castelfranco di Sotto (PI)
Tel. 0571/367427 – Fax 0571/382829
e-mail: info@dangerandsafety.it – Pec: pec@pec.dangerandsafety.it
Capitale Sociale €  10400 i.v. - Registro Società Trib. Pisa n. 01512910504
REA n. 133371 - P.IVA e Codice Fiscale: 01512910504

Information on the processing of personal data of the customer

INTRODUCTION

Below are the information on the processing of personal data that inform you about the use of your data in contractual relations with DANGER AND SAFETY S.R.L. UNIPERSONALE.

Pursuant to article 13 of Reg. 679/2016 concerning the protection of personal data, we are responsible for providing you with some information regarding the processing of your personal data in the context of the services and activities carried out by DANGER & SAFETY S.R.L.UNIPERSONALE.

DANGER & SAFETY S.R.L. UNIPERSONALE, commits itself to transparency towards Users. For this reason it is published below the Privacy Policy that each User or whoever takes his place, is called to sign when he goes to one of the structures managed by DANGER & SAFETY S.R.L. UNIPERSONALE.

DATA CONTROLLER

DANGER & SAFETY S.R.L. UNIPERSONALE, with registered office Via Ettore Bugatti 53 - 56022 Castelfranco di Sotto (PI).

Contacts: info@dangerandsafety.it (email), 0571/367427 (telephone), 0571/382829 (fax)

Register Company Trib. Pisa n. 01512910504

REA n. 133371 – VAT number e Fiscal Code: 01512910504

 

DATA PROTECTION OFFICER (DPO)

The appointment of the DPO, if carried out, is made public through the institutional website of  the Data Controller. Alernatively, it can be requested,  without any formalities, to the secretariat or the Data Processor.

OBJECT OF THE TREATMENT

The Controller treats your personal data (as well as any contact details of the contact persona within your organization spontaneously communicating to you for the fulfillment of contractual or legal obligations) and the accounting/administrative/contractual data relating to the contractual relationship with we have established and/or established, and NOT belonging to the particular categories of personal data referred to in article 9 of the GDPR (also called “sensitive” data, that means personal data revealing the racial or ethnic origin, political opinions, religious or philosophical convinctions, or union membership, genetic data, biometric data, data related to health or sex life or sexual orientations) or data related to criminal convinctions and offenses referred to in Article 10 of GDPR.

PURPOSE OF THE TREATMENT

The foolowing are the purposes of the Treatment.

Purpose

Legal bases of the processing

1.     Allow the use of the services provided by the Controller and any additional services requested by you;

2.     Fulfill the pre-contractual, contractual and tax obligations arising from relationships with you;

3.     Fulfill the obligtions established by the law, by a regulation, by the community legislation or by an order of the Authority;

4.     Prevent or discover fraudulent activity or harmful abuse;

5.     Exercise the rights of the Controller, for example the right to defense in court.

6.     Keep the documentation in electronic format (also in digital preservation according to law) or paper as required by lawfor the purposes of verification and tax assessment  by the competent Authorities.

7.     Communicate data to third parties following the obtainment of voluntary certifications.

8.     Other purposes provided by current legislation, concerning the professional assignment conferred or obligations arising from contracts and future.

9.     Ensure your availability or person who take care of your interests.

10.  Provide you copies or extracts even after the conclusion of the contact.

Treatment necessary for the execution of a contract of which you are a part.

 

In the event that you are communicating to the Data Controller also data or documents related to other interested parties or third parties, for examples kin, members, etc., with the signature below you certify that you have obtained specific power of attorney to lend, on their behalf, the consent to the processing of the data contained in the document sent, for the same purposes indicated above, and the undertake to send a copy of this information.

Your personal data may be processed by any co-controller of the processing only for the purposes indicated above or by the other subjects or general categories of subjects different from the controller, such as:

Third parties or categories

Purpose

IT companies

Management, maintenance, updating of the systems and software used by the Data Controller to provide the requested services.

Network providers, electronic communications services and IT and data transmission services and data management.

Hosting, housing, Cloud, SaaS and other remote computer services essential for the provision of the activities of the controller.

Lw firms, arbitrators, insurance companies, experts, brokers.

Judicial, out-of-court, insurance activity management.

Business studies and labor consultants or similar.

Activity management related to tax and social security obligations.

Doctors, psychologists, or others belonging to the health professions.

Management of obligations deriving from contracts, agreements and binding legislation. Acquisition and/or management of information and documents necessary for the performance of the service provided.

Analysis laboratories and other health facilities.

Management of obligations deriving from contracts, agreements and binding legislation. Acquisition and/or management of information and documents necessary for the performance of the service provided.

Certification bodies and other management system consultants.

Management of obligations deriving from contracts, agreements and binding legislation. Acquisition and/or management of information and documents necessary for the performance of the service provided.

Other suppliers of goods and services.

Management of obligations deriving from contracts, agreements and binding legislation. Acquisition and/or management of information and documents necessary for the performance of the service provided.

 

Below we illustrate the retention period of personal data or, if this is not possible, the criteria used to determine this period:

Personal data and documents

Retention period or criteria for determining it

1.   Allow it to use the services provided by the Controller and any additional services requested by you;

2.   Fulfill the pre-contractual, contractual and tax obligations arising from relationships with you;

3.   Fulfill the obligations established by the law, by a regulation, by the community legislation or by an order of the Authority;

4.   Prevento or discover fraudulent activity or harmful abuse;

5.   Exercise the rights of the Controller, for example the right to defense in court.

6.   Keep the documentation in electronic format (also in digital preservation according to law) or paper as required by law for the purposes of verification and tax assessment by the competent authorities.

7.   Communicate data to third parties following the obtainment of voluntary certifications.

8.   Other purposes provided by current legislation, related to the professional role conferred or obligations arising from existing and future contracts.

9.   Ensure your availability or people who take care of your interests..

Personal data will be processed for the period necessary for the fulfillment of civil and fiscal obligations.

10.Provide you copies or sxtracts even after the conclusion of the contract.

 

Personal data will be processed for the period necessary for the fulfillment of civil and fiscal obligations.

At its dicretion, the terms established for the fulfillment of civil and fiscal obligations have expired.

 

We also wish to inform you that your personal data not be transferred to non-EU countries, unless there is a specific decision of the EU commission that guarantees, for these countries, the adequacy and the guarantee of treatment according to the provisions pf Reg. 679/16.

METHOD OF TREATMENT

The controller proceeds to the processing of data and documentation provided, after identification of the signatory and/or whoever takes his place, or through any other documentation relating to his person, also received by third parties and organizations.

Your data and documents may also be sent electronically from healthcare or judicial facilities or other partners of DANGER AND SAFETY S.R.L. UNIPERSONALE, as described in the appropriate list available at the headquarters of the data controller. All cited trasmissions are made through secure and/or encrypted channels, according stricht internal technical rules. The data may be processed during the activities provided by the contract and subsequently  for internal audits to verify and check the correctnessof the processes and the application of the law. If necessary, some dematerialized documents, which by law must be kept in time, may be subject to conservation pursuant to the DPCM 3/12/13 at an accredited conservator appointed as external responsible for the treatment.

The data collected will be processes in suitable premises with adequate security measures, may be encrypted, enclosed and sealed electronically or If paper will be stored at our facilities or by third parties duly appointed data controllers and required to take appropriate security measures on data retention.

The provision of datafor the purposes referred to in points 1, 2, 3, 4, 5, 6, 7, 8, 9, 10 and 11 is required and in default the contractual obligations can not be duly fulfilled.

In any case, the processing of the data will take place with logic strictly related to the aforementioned purposes and will be based on the principles of lawfulness, necessity and proportionality and will take place in ways that guarantee security and confidentiality.

DATA PROCESSORS

DANGER & SAFETY S.R.L. UNIPERSONALE has appointed external responsible for the processing of your data to the professionals and organizations which the controller has addressed to carry out the activities related to and consequent to the service requested and/or provided. In order to correctly fulfill theassigned task and to achieve the purposes described above, your data will in fact also be processed by the suppliers of the controller specifically appointed processor or, if there are the conditions, “joint controller of data processing”.

 

The complete list of data processors and authorized for treatmentis available at the office of the data controller in an updated version and can be requested extracted by asking the data processor.

RIGHTS OF THE DATA SUBJECT

We inform you of the existence of some rights on personal data and of the fact that you can exercise the same towards the controller, always in compliance with the regulations in force. The complete list is shown below:

-          The data subject’s right to request access to personal data (Art. 15 of the EU Regulation), their updating (Art. 7, par. 3, lett. a) of Legislative Decree 196/2003), the correction (Art. 16 of the EU Regulation), integration (Art. 7, par, 3, let. a) of the Legislative Decree 196/2003) or the limitation of processing that concerns it (Art. 18 of the EU Regulation) or to object, for legitimate reasons, to their processing (Art. 21 of the EU Regulation), in addition to the right to data portability 8Art. 20 of the EU Regulation);

-          The right to request cancellation (Art. 17 of the EU Regulation), the transformation into anonymous form or the blocking of data processed in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed (Art. 7, par 3, lett. b) of Legislative Decree 196/2003);

-          The right to obtain the attestation that the operations of updating, rectification, integration of data, cancellation, blocking of data, transformation have been brought to the attention, also as regerds their content, of those to whom the data have been communicated or disseminated, except in the case in which such fulfillment proves impossible or involves a use of means manifestly disproportionate to the protected right (Art. 7, par. 3 lett. c) of Legisletive Decree 196/2003).

Request can be sent to the data controller, without formalities or alternatively, using the model provided by Guarantor for the Protection of Personal Data, or by sending an email to: info@dangerandsafety.it

If the treatment is based on Art. 6, par 1, lett. a) – express consent to use – or on Art. 9, par 2, lett. a) – express consent to the use of genetic, biometric, health-related data revealing religious beliefs, philosophical or union membership, revealing racial or ethnic origin, political opinions – the user has the right to revoke the consent at any time without prejudice to the lawfulness of the treatment based on the consent given prior to the revocation.

Likewise, in case of violation of the law, the user has the right to lodge a complaint with tha Guarantor for the Protection of Personal Data, as the authority responsible for monitoring the processing in the Italian State.

For a more in-depth examination of the rights that compete with it, see Articles 15 and ss. of the 2016/679 and the Art. 7 of Legislative Decree 196/2003.