Information Note for the Customer
DATA CONTROLLER The data controller is MORE SRL, VAT. No 01877730307 with registered offices in Via Santa Lucia No 7, Gemona del Friuli (UD) (hereinafter "MORE" or "Data Controller" ). You can contact the Data Controller at the following address when exercising the rights recognized by REGULATION (EU) 2016/679 (hereinafter "GDPR" or "Regulation") or to request any clarification concerning the processing of personal data: Tel .: 0432973511 email: email@example.com.
Whereas under the GDPR: - the Data Controller is the natural or legal person who, individually or together with others, determines the purposes and means of processing personal data; - personal data is any information concerning an identified or identifiable natural person («data subject»); - the Data Controller has the obligation of informing the Data Subjects in advance concerning the processing of their personal data. In view of the above, MORE intends to proceed with the publishing of this Information Note to bring to the attention of all Data Subjects who may be involved in the processing activities described hereunder concering the information required by Articles 13 and 14 of the GDPR .
PURPOSE OF DATA PROCESSING The data may be processed by the Data Controller for the purposes described below: 1. compliance with obligations deriving from contracts or compliance with specific requests before the conclusion of the contract; 2. provision of customer support services (including all related activities); 3. determining the payment systems to be submitted to customers; 4. compliance with tax and accounting obligations; 5. planning of activities and verification the level of customer satisfaction; 6. management of litigation with the Client, both in judicial and extrajudicial phases; 7. compliance with its legal obligations in general. 8. sending information and promotional communications relating to the products or services of the Data Controller through email and standard mail.
LEGAL BASIS FOR THE PROCESSING 1. performance of a contract or pre-contractual measures: purposes No 1, 2, 3, 5; 2. compliance with a legal obligation to which the Data Controller is subject: purpose No 4 and 7; 3. pursuit of the legitimate interest of the Data Controller: purpose No 6. 4. consent of the Data Subject and of the contracting party: purpose No 8
CATEGORIES OF RECIPIENTS OF PERSONAL DATA Personal data may only be accessed by persons authorized to process data and those who process data on behalf of the Data Controller and have been appointed Data Processors. These subjects are bound to secrecy and confidentiality also on the basis of specific internal regulations. The data collected for the purposes listed above may be communicated to banks, insurance companies (for the management of any insured risks), financial administrations, law firms, arbitrators, debt collection companies (for judicial or extrajudicial protection), freight forwarders and carriers, and, where necessary to fulfill the contract concluded, to other companies and / or companies (also partners of the Data Controller), consultants, offices of customs agencies, Chambers of Commerce and other public administrations. Such communications of personal data are necessary because they are carried out on the basis of a legal or contractual obligation, or a necessary requirement for the conclusion of a contract or, for the pursuit of a legitimate interest. The data will not be disclosed. TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES As a rule, data processed for the purposes set out above will not be transferred to third countries. In the event that such transfer is made, it will take place in compliance with the conditions set out in Chapter V of the GDPR and in particular: - Article 45 Transfers on the basis of an adequacy decision; - Article 46 Transfers subject to appropriate safeguards; - Article 47 Binding corporate rules. In the event that the use of these conditions is not possible, the transfer will comply with the provisions of Article 49 of the GDPR.
DATA STORAGE CRITERIA Regarding the storage of processed data in the terms indicated above, given that according to the principles of necessity, relevance and non-excess, the retention times of the different types of personal data eventually processed must be identified taking into account each of the purposes in concrete measures, we hereby inform you that the data processed for accounting and/or tax purposes, or contained in communications and/or commercial documents (in accordance with the provisions of Article 2220 of the Italian Civil Code), may be kept for the time established by sectoral legislation. In the event that some information is subject of a dispute and/or is necessary for the exercise of a judicial proceeding, it may also be kept beyond the limits indicated above.
RIGHTS OF THE DATA SUBJECT The Data Controller hereby informs you that you, as the Data Subject, have the right to request: - access to personal data and information (Article 15 of the GDPR); - correction or deletion of the above (Articles 16 and 17 of the GDPR); - the limitation of the processing of personal data (Article 18 of the GDPR). Lastly, you may: - oppose to the processing of personal data under the conditions and within the limits set forth in Art. 21 of the GDPR; - exercise the right to data portability (Article 20 of the GDPR).
With regards to processing operations based on consent (pursuant to Article 6 (1) (a) and Article 9 (2) (a) of the GDPR), we hereby inform you that you have the right to revoke such consent at any time (without prejudice to the lawfulness of the treatment based on consent given before the revocation).
Finally, please note that you, as the Data Subject, have the right to lodge a complaint with a supervisory authority (Authority for the protection of personal data or other competent authority) pursuant to Article 77 and following of the GDPR, if you believe that the processing of personal data relating to you infringes the Regulation.