Privacy statement
Pursuant to Articles 13 and 14 of Regulation (EU) 2016/ (also referred to hereinafter as the “GDPR”) in relation to personal data processed by the Controller, we communicate as follows:
The Controller is:
AUDIO DOLOMITES di Ravelli Giovanna, Via Giusti 9 – 38020 MEZZANA (TN), P.Iva IT-02651680221
Tel 3389112165- E-mail info@audiodolomites.it – PEC audiodolomites@mypec.eu
Categories of personal data, purposes and legal basis of the processing
| DATA SUBJECT | CATEGORIES OF DATA | PURPOSES OF THE PROCESSING | LEGAL BASIS OF THE PROCESSING |
| If you contact us for information and / or quotation | COMMON DATA
Name/Surname/Company name Address Contact data |
Quotation or information by request | Performance of a pre-contractual obligations |
| Customers | COMMON DATA
Name/Surname/Company name Address Contact data Tax code/VAT number Banking data |
taking steps at the request of the data subject prior to entering into a contract | Performance of a pre-or contractual obligations |
| Compliance with contractual obligations | performance of a contract | ||
| Compliance with tax and accounting obligations | compliance with a legal obligation | ||
| Controller’s rights protection | Controller’s legitimate interests | ||
| Suppliers | COMMON DATA
Biographical data Contact data Tax code/VAT number Banking data |
taking steps at the request of the data subject prior to entering into a contract | Performance of a pre-contractual obligations |
| Compliance with contractual obligations | performance of a contract | ||
| Compliance with tax and accounting obligations | compliance with a legal obligation | ||
| Controller’s rights protection | Controller’s legitimate interests | ||
| Employees and / or collaborators of Customers or Providers | COMMON DATA
Name/Surname Contact data |
taking steps at the request of the data subject prior to entering into a contract | Performance of a pre-contractual obligations |
| Compliance with contractual obligations | performance of a contract |
How we process the personal data
The Controller has taken appropriate security measures in order to preserve the confidentiality, integrity and availability of the personal data of the data subject and imposes similar security measures on third parties and on the Processors. There is no automated decision-making process based on your data, including profiling. The processing of data is done by manual and computer tools, with strictly-related logic to the purposes of the processing.
If the Controller intends to process further your personal data for a different purpose than that for which they were collected, prior to such further processing, he will provide you with informations about this different purpose and any additional relevant information requesting, if necessary, your consent.
Provision of data and refusal – The provision of personal data is necessary for the above mentioned purposes and the refusal implies the impossibility of fulfilling the contract.
Recipients of the personal data
Personal data – which will not be disseminated – may be communicated to: authorized persons and/or Data processors acting on our behalf with contracts that provide for an adequate level of protection of personal data, as established by the GDPR. The data can be communicated in general to all the subjects who provide accounting, administrative, legal, tax and financial assistance; authorities to whom the communication of personal data is mandatory pursuant to legal provisions or orders of the authorities. (for example administrative, accounting, fiscal).
Transfers of personal data to third countries or international organizations
The Controller does not transfer the Data in non-EU countries. We assure, however, that should this become necessary, this transfer will take place on the basis of an adequacy decision by the European Commission pursuant to art. 45 of the GDPR.
Period of storage
The data are kept for the time necessary for the pursuit of the purposes indicated in the statement, for legal obligations or to assert a right in court. Once the limitation period has expired, personal data will be permanently deleted or, alternatively, anonymised.
Your rights
You have the following rights: the right to access your personal data; the right to request the rectification of the inaccurate personal data and to obtain the integration of incomplete data, including by means of providing a supplementary statement; the right to request the erasure of the personal data (under conditions indicated in Article 17 GDPR); the right to limit the data processing (as indicated in Article 18 GDPR); the right to object to the data processing; the right to receive the personal data, provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided (right to data portability); the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects; the right to lodge a complaint with the Italian supervisory authority www.garanteprivacy.it