Information on the Processing of Personal Data
This information on the processing of Personal Data (hereinafter “Information”) is provided, in compliance with the provisions contained in articles 13 and 14 of EU Regulation 2016/679 of 27 April 2016, relating to the protection of individuals with regard to the processing of personal data, as well as the free movement of such data (General Data Protection Regulation, hereinafter “GDPR”).
The personal data of the customer (hereinafter “Customer”) that will be collected are the following: name, surname, landline or mobile phone number, email address, residential address (or domicile, if different from residence) for billing and activity of marketing;
The Customer is responsible for the completeness and truthfulness of the Personal Data and must therefore hold the Owner exempt from any liability towards third parties.
Data Controller and Data Processors
The data controller of the personal data provided by the Customer is BIS 67 Trasporti Multimodali SPA (hereinafter “Data Controller”) with headquarters in VIA CAMPO MARZIO 29, Bassano del Grapppa CAP 36061
The Company Altrarete srl with registered office in Largo Parolini 54, Bassano Del Grappa, tax code and VAT number 02336380221, which provides the management service of this website, connected, instrumental or support services, has also been appointed as Personal Data Processing Manager to that carried out by the Owner.
For any communication to be sent to the Data Controller, it is possible to contact the following email address by e-mail: firstname.lastname@example.org or by letter to the address of the headquarters.
Purpose of the treatment
In fulfillment of the obligations established by current legislation, the Data Controller collects Personal Data and carries out the processing of the same, for the following purposes:
a) execute the Customer’s stay contract and provided by the Owner (hereinafter “Service”);
b) fulfillment of legal and contractual obligations related to the execution of the contract, including the performance of payment collection activities and related tax obligations;
c) fulfill any legal, accounting and tax obligations (e.g. customer due diligence obligations and disclosure of customer information in compliance with the provisions of public safety provisions) (hereinafter “Compliance”);
d) carry out marketing activities, such as, for example, newsletters and online advertisements.
e) send commercial communications via the Whatsapp platform.
Nature of the contribution.
The personal data collected in the context of this processing are strictly functional to the purposes indicated above. For the purposes a) and b) above, of Service and Billing, the provision of Personal Data is always optional, but failing that, it will not be possible to execute the contract and provide the consultancy service.
For the purposes of Compliance referred to in letter c) above, the legal basis for the collection of Personal Data is the necessary fulfillment of a legal obligation to which the Data Controller is subject.
For the purposes referred to in letter d), the processing is optional.
We inform you that where the Customer is under the age of 16, the treatment is lawful only if and to the extent that such consent is given or authorized by the holder of parental responsibility.
The treatment will be carried out both with manual and/or IT and/or telematic tools with organization and processing logics strictly related to the purposes themselves and in any case in order to guarantee the security, integrity and confidentiality of the data in compliance with the organizational measures , physical and logical conditions envisaged by the provisions in force.
The treatment will be carried out according to the principles of correctness, lawfulness and transparency, in order to protect the privacy and rights of the interested party at all times in compliance with current legislation.
The Owner declares and guarantees that the Personal Data provided by the Customer will be treated with the strictest confidentiality and protection, also guaranteeing that the appropriate security measures, of a technical and organizational nature, will be adopted, aimed at preventing access, disclosure, accidental or improper alteration, loss or unauthorized destruction of Personal Data.
The Personal Data will be stored, in compliance with the provisions of current legislation on the subject, for a period of time not exceeding that necessary to achieve the purposes for which they are processed.
For the purposes of the Service and connected obligations, the Personal Data will be kept by the Data Controller for the entire duration of the contractual relationship.
Data transfer to third parties
The Owner declares that the Personal Data may be transferred to third parties, which the Owner himself makes use of in carrying out the purposes of the processing and precisely:
Subjects who typically act as data processors and precisely the aforementioned company which takes care of the creation of this Website, as well as, possibly, legal consultants for the purpose of a possible credit recovery and who, always without prejudice to the provisions of the law, will treat data in accordance with this Policy.
Subjects, bodies or authorities to whom it is mandatory to communicate Personal Data by virtue of the Service provided by the Data Controller (e.g. credit information service managers) or by law provisions, orders from the authorities with respect to the Compliance purpose (e.g. Banks, Insurance Companies , Consap, Tax Registry, Judicial Authorities and police forces).
The Data Controller does not transfer Personal Data outside the European Economic Area.
The Customer has the right:
– to request confirmation as to whether or not Personal Data is being processed and, if so, to obtain access (right of access);
– to request the rectification of inaccurate Personal Data, or the integration of incomplete ones (right to rectification);
– to request the cancellation of Personal Data, in the cases provided for by the Regulation (right to cancellation);
– to request the limitation of the processing, in the cases provided for by the Regulation (right to limitation);
– to receive Personal Data in a structured, commonly used and automatically readable format and to transmit such data to another data controller (right to portability);
– to revoke the consent to the processing of Personal Data, at any time, without prejudice to the lawfulness of the treatment based on the consent given before the revocation (right to withdraw consent);
– to object at any time to the processing for marketing purposes (right of opposition)
– to lodge a complaint with a Supervisory Authority, if it considers that the processing violates the GDPR (right to complain).
(all jointly hereinafter “Rights”)
For the exercise of the Rights, the Client may expressly formulate a written request to be sent to the following e-mail address email@example.com