Back

Privacy Policy.

INFORMATION ON PERSONAL DATA PROCESSING - CUSTOMERS/SUPPLIERS

according to and for the purposes of art. 13 of the EU Regulation 2016/679
(General regulation on the protection of personal data)

Dear Customer/Supplier, pursuant to article 13 of EU Regulation 2016/679 hereinafter "Regulation" and in relation to the personal data concerning our company as Data Controller, according to the existing contracts, we want to provide you with the following information.

  1. Identification details of the Data Controller

The data controller is ALPAR SYSTEM s.r.l. with registered and operational headquarters in Piazza I Maggio, 40 Leno (BS). The contact details are the following: Phone number (+39) 030 9068372  Fax. (+39) 030 9068398 E-mail: info@alparsystem.it Given that the Data Controller is established within the European Union, it is not necessary to appoint a Data Controller representative.

  1. Contact details of the data protection officer

Following the applicability verification with regard to the provisions of art. 37 of the Regulation, the Data Protection Officer appointment was excluded, as the company does not fall under any of the included cases.

  1. Purposes of the data processing and legal basis

The processing is directed to the fulfilling of the following activities: - Fulfillment of legal and/or contract obligations, use and custom, in relation to the business activity of the company; - Accounting and administrative processing; - Management of legal obligations and causes; Compliance with current legislation on health and safety in the workplace; - Fulfillments related to the application of the Management System within the company. The legal basis of the processing consists of the following elements: contract for the acquisition/supply of goods or services, Legislative Decree 81/2008 and subsequent amendments with regard to the current legislation on health and safety at work and the regulations related to the application of the Civil Code and Penal Code.   The processing is carried out by means of operations or entirety of operations and in particular: collection, registration, organization, retention, processing, modification, comparison, interconnection; selection, extraction, consultation, communication, blocking, cancellation and deletion; it is carried out by the Data Controller's organization and by the trust company (whose list are made available by the Data Controller) which are our direct collaborators and operate in total autonomy as separate external data processing personal Data Controllers, obliged to perform on their own the legislation on the protection of personal data according to a contract stipulated with our company. Personal data are not subject to disclosure.

  1. Legitimate interests of the Data Controller

If the processing is carried out pursuant to art. 6, paragraph 1, letter f), it will be performed exclusively to satisfy the legitimate interests of the Data Controller.

  1. Personal data recipients

The personal data collected may be disclosed to: - all subjects whose access right to such data is recognized under the legislative measures; - to our collaborators in the context of their respective tasks; - to all those natural and/or legal persons, public and/or private when the communication is necessary or functional to the performance of our activity and in the manners and for the described purposes.

  1. Transfer of personal data abroad

The Data Controller does not intend to transfer personal data to third countries or international organizations outside the European Union.

  1. Storage period of personal data

The time limit for data retention for tax purposes currently in force (10 years) is taken as parameter.

  1. Rights of the interested party

The interested party has the right (Chapter III Rights of the interested party) to request the Data Controller to access personal data and to correct or delete them, as well as to limit or oppose their processing and data portability. In order to exercise these rights, refer to the aforementioned contact details.

  1. Revoking consent

The interested party has the right to revoke the consent according to art. 6, paragraph 1, letter a) and art. 9, paragraph 2, letter a).

  1. Right to Complaint with the Control Authority

The interested party has the right to submit a complaint with the Control Authority, which can be reached at the following addresses: Guarantor for the protection of personal data - Piazza di Monte Citorio no. 121 00186 ROME Fax: (+39) 06.69677.3785 Telephone exchange: (+39) 06.696771 E-mail: garante@gpdp.it  Certified e-mail: protocollo@pec.gpdp.it . References and methods for exercising the right of complaint are reported on the Privacy Guarantor website http://www.garanteprivacy.it.

  1. Communication of personal data

The communication and subsequent processing of personal data is a necessary condition for the completion of the contract with our company. Failure to communicate will result in the non-fulfillment of the contract.

  1. Automated decision-making process

Personal data collected will not be subjected to automated decision-making and profiling processes.