the EU General Data Protection Regulation (GDPR) in Article 13, paragraph 1, sets out an obligation to inform the data subject, in the event of direct and indirect collection of your data, about the basic elements of the data processing, specifying them under § 1, letters a/f.Therefore, you are informed that:
The Data Controller is the company ARLAM S.R.L., head office in Forlì, via Ugo Buli 20,
TEL: 0543720112 FAX: 0543723910
DATA PROCESSING METHODS:
The personal data provided by you will be processed in compliance with the above-mentioned legislation and with the confidentiality obligations governing the Controller’s activities. The data will be processed both with IT tools and on paper or on any other type of suitable support (e.g. cloud systems, digital archiving and storage systems, …), in compliance with appropriate technical and organisational security measures provided for by the GDPR.
CATEGORIES OF DATA:
The object of this data processing may be your personal data such as:
SOURCE OF PERSONAL DATA:
The personal data held by the Controller are collected directly at the data subject’s premises.
PURPOSE OF DATA PROCESSING AND LEGAL BASIS:
the processing of your data as its purpose and legal basis has:
RECIPIENTS OF DATA:
Within the limits relevant to the processing purposes indicated, your data may be communicated to subjects appointed by the Data Controller as Data Processors (a list of these subjects may be requested to the Data Controller). The personal data collected are also processed by the staff of Arlam s.r.l. which act on the basis of specific instructions given regarding the processing of data for specific tasks and functions that entail the signing of specific confidentiality obligations. Your data will not be disseminated in any way.
TRANSFER OF DATA TO THIRD COUNTRIES:
At the moment there are no plans to transfer your data to a third country. If a transfer should occur, it will be carried out in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission and possible communication to the data subjects.
In accordance with the principle of storage limitation (Article 5, GDPR), an obsolescence check of the stored data in relation to the purposes for which they were collected is carried out periodically. In particular:
RIGHTS OF THE DATA SUBJECT:
The data subject is always entitled to request from the Data Controller the access to your data, rectification or cancellation thereof, restriction of processing or the possibility to object to processing, to request data portability, to withdraw consent to processing by asserting these and other rights provided for by the GDPR by simple communication to the Data Controller. The data subject may also lodge a complaint with a supervisory authority.
COMPULSORY OR NOT:
In order to to enable the proper provision of the service, the supply of your data is compulsory when browsing our website with regard to points 1, 2 of the above-mentioned purposes.