Information pursuant to article 13 of Regulation (EU) no. 2016/679 (GDPR)
The Data Controller
is Progest S.p.A., in the person of its pro-tempore legal representative, Zona ASI Aversa-Nord, Via della Stazione s.n.c. 81030 Gricignano di Aversa CE, VAT number 02563041215, email: firstname.lastname@example.org, certified email: email@example.com
Purpose of processing
1) Provision of the web service
The collection of data and information takes place to allow the proper functioning and use of the website (operating data, statistical data, safety information, etc.).
Data collection takes place automatically when the pages of the website are opened.
The data will be kept for a maximum of 6 months.
Legal basis: legitimate interest of the Data Controller consisting in the application of technical requirements strictly related to the correct functioning of web pages.
2) Receipt of requests
Data collection is carried out to process contact or interaction requests that are spontaneously sent through forms on the web page (e.g., "contacts" section).
Provision of data is optional.
The data will be kept for the time necessary to process the request.
Legal basis: exercise of contractual and pre-contractual activities upon the request of the data subject.
3) Personal Account
Through the website it is possible to create a personal account and access the "Customer Area", from which it is possible to manage the contractual relationship with the Data Controller.
The creation of an account is not mandatory. It is an optional service offered by the Data Controller to manage the contractual relationship and improve the commercial experience with the Customer.
The data will be kept until a request to cancel the account is made. Subsequently, only data requested by law or for company Know-how will be stored.
Legal basis: fulfilment of contractual obligations.
Communication of data to third parties
The data may be disclosed to third parties for legal obligations. Your data may also be disclosed to companies that carry out, on behalf of Progest S.p.A., activities of management of computer systems, accounting, debt collection, transmission, printing, enveloping, rating, insurance, etc.
Personal data will not be disclosed unless explicitly authorised by the data subject.
Transfer of data to non-EU countries
Customer management will not be transferred outside of the EU.
The Data Controller verifies the existence of suitable legal bases for the transfer of non-EU data.
There are no automated processes, for example profiling.
Rights of the data subject
Pursuant to articles 15 – 22 of the GDPR, the rights of the data subject are:
a) Access and the right to a copy of the data;
d) Restriction of processing;
f) Receipt of data in a structured format, commonly used and readable by an automatic device and the right to transmit such data to another data controller, where technically feasible, without any impediment.
g) Withdrawal of consent
The data subject also has the right to not be subject to a decision based solely on automated processing
For more information on the processing and exercising of the rights listed above, communication can be sent to email address firstname.lastname@example.org
In the event of a breach in the processing of personal data, the data subject may lodge a complaint with the Data Controller, the Data Protection Authority or the competent Legal Authority.
Complaints can be lodged with the Data Protection Authority in the event of a personal data breach.