INFORMATION PURSUANT TO ART. 13-14 OF THE GDPR (GENERAL DATA PROTECTION REGULATION) 2016/679
System Service S.r.l. p.iva: 00699171203, Data Controller, informs you that your data will be processed in the manner and for the purposes indicated below.
The Controller undertakes to protect the privacy and confidentiality of Personal Data in accordance with the principles of correctness, lawfulness, transparency, and the protection of your rights.
1) TYPES OF DATA PROCESSED
We process personal data communicated by you (name, email, company name, phone number, etc.) when making spontaneous requests and data autonomously collected by the website.
- Data you provide: personal, identifying, and non-sensitive data that you communicate to make requests via email, through the contact form, or by phone regarding our products/services;
- Data we collect automatically: anonymous data collected using cookies or similar technologies: for more information, see the Cookie Policy below.
Note: Users under the age of 16 cannot provide any personal data without the consent of their parents or guardians.
2) PURPOSES AND LEGAL BASES OF PROCESSING
We will process your personal data:
A) to fulfill our contractual obligations; respond to your requests for information; calculate a quote requested by you; execute sales contracts for products or service agreements; provide necessary assistance regarding the purchased products and services.
B) to perform aggregated statistical analyses on an anonymous basis to improve our services;
C) for administrative purposes and to fulfill legal obligations such as accounting, tax, or judicial authority requests.
D) in the case of submitting resumes, exclusively for selection purposes.
3) IS THE PROVISION OF DATA MANDATORY?
Providing your data is always optional, but failure to provide it may make it impossible to proceed with certain processes, such as those strictly related to fulfilling a contract or providing the services you requested.
4) LOCATION, METHODS OF PROCESSING, AND DATA RETENTION
The processing of your personal data is carried out through the operations indicated in Art. 4 of the Privacy Code and Art. 4 no. 2 of the GDPR, namely: collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation, and destruction of data.
Your personal data is stored at the Controller’s headquarters and is processed both in paper form and electronically and/or automatically, strictly correlated to the purposes indicated and in a way that guarantees the security and confidentiality of the data. The data you send is not stored within our website.
The Controller will process personal data for the time necessary to fulfill the purposes mentioned above and in any case for no more than 10 years from the termination of the relationship for the purposes in point C and no more than 38 months from data collection for the purposes in point B.
5) DATA ACCESS
Your data may be made accessible for the purposes indicated in point 2:
- to employees and collaborators of the Controller, in their capacity as designated persons and/or internal data processors and/or system administrators;
- to third-party companies or other subjects (website providers, cloud providers, e-payment service providers, suppliers, hardware and software maintenance technicians, shippers and carriers, credit institutions, professional firms, etc.) who carry out outsourcing activities on behalf of the Controller, in their capacity as data processors.
6) DATA TRANSFER
Data will not be disseminated, sold, or exchanged with subjects other than the Controller, processors, and designated persons without your express and explicit consent.
7) YOUR RIGHTS
You have the right to know what personal data concerning you is being processed. In particular, you have the right of access, rectification, deletion, as well as the right to data portability, the right to restrict processing, and the right to object to processing, if applicable.
Below is a brief description of the rights you are entitled to regarding the processing of your personal data:
- The right of access allows you to obtain confirmation as to whether or not your personal data is being processed by the Controller and, if so, to access such data and related information;
- The right of rectification allows you to obtain the modification of inaccurate personal data concerning you without undue delay and, taking into account the purposes of the processing, to obtain the completion of incomplete personal data;
- The right to erasure allows you to obtain the deletion of data concerning you without undue delay (e.g., when your personal data is no longer necessary in relation to the purposes for which it was collected), subject to exceptions provided by applicable law (e.g., when the retention of your data is necessary for compliance with legal obligations applicable to the data controller). Deletion will be carried out within the technical timescales provided;
- The right to data portability allows you, in certain circumstances provided by applicable law, to receive in a structured, commonly used, and machine-readable format the personal data concerning you that you have provided. You can transmit this data to another data controller, provided that this right is recognized by applicable law and unless this results in harm to the rights and freedoms of others;
- The right to restrict processing allows you, in certain circumstances provided by applicable law, to obtain the restriction of the processing of your personal data. In such cases, the Controller may continue to process your data only in certain cases, for example, for the exercise of the right of defense or to protect the rights of another natural or legal person;
- The right to object to processing allows you, in certain circumstances provided by applicable law, to object to the processing of your personal data unless there are legitimate, overriding reasons, rights, or freedoms that allow the Controller to continue processing.
For more information on the processing of your personal data or to exercise your rights, please contact us.
8) CHANGES TO THE POLICY
This Policy may undergo changes. Therefore, it is advisable to regularly check this Policy and refer to the most updated version.
Last update: September 2024