INFORMATION ON THE PROCESSING OF PERSONAL DATA IN RELATION TO THE ART. 13 and 14 EUROPEAN REGULATION No. 679/2016
the undersigned AZIENDA AGRICOLA LATIUM of MORINI s.s. , with headquarters in Via Giara, 34 – 37031 Illasi (VR), C.F. and VAT number: 03392330233 as “Data Controller” informs you, pursuant to articles 13 and 14 of the European Regulation no. 679/2016 (hereinafter “EU Regulation”), that your data, if transmitted to us through the channels proposed by us on this site, will be processed as indicated below:
Object of the Processing
The Data Controller informs you that the personal, identifying data (for example, name, surname, company name, address, telephone, e-mail, bank and/or payment details, etc.), hereinafter called “personal data” or even simply “data”, relating to you, acquired even verbally directly or through third parties in the past, as well as those that will be collected in the future, may be processed in full compliance with the EU Regulation. The Data Controller carries out the processing in a lawful manner specifically for the execution of a contract of which you are a party or for the execution of pre-contractual measures (e.g. preparation of an offer, etc.) requested by you (art. no. 6 of the EU Regulation). Data processing means any operation or set of operations concerning the collection, recording, organisation, conservation, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, diffusion, destruction of the data themselves.
Legal basis and purpose of the processing
Legal basis: EU Regulation no. 679/2016
2A) without your express consent (art. 6 letter b), c), e) of the EU Regulation), for the following purposes:
– fulfill pre-contractual, contractual and tax obligations deriving from any existing relationships with you;
– fulfill the obligations established by law, by a regulation, by community legislation or by an order from the Authority (such as for example in the field of anti-money laundering);
– exercise the rights of the Data Controller, for example the right of defense in court;
– for the maintenance of general accounting;
– for management purposes (invoicing, possible document management, etc.);
– for credit management;
– for statistical and quality control analyses;
– for insurance management;
– for technical assistance.
Given that you have read this information while browsing our site, we also inform you and in any case that your browsing data will be processed for purposes related to the implementation of the following obligations, relating to legislative or contractual obligations:
– Technical and functional access to the Site, no data is retained after closing the browser;
– Advanced navigation purposes or personalized content management;
– Statistical purposes and analysis of navigation and users.
2B) Only with your specific and distinct consent (art. 7 of the EU Regulation), for the following commercial and/or marketing and/or profiling purposes, exclusively if we make use of it and inform you in advance:
– sending via e-mail, post and/or sms and/or telephone contacts of newsletters, commercial communications and/or advertising material on products or services offered by the Data Controller and/or surveying the degree of satisfaction with the quality of what has been carried out on Your request;
– sending via e-mail, post and/or text message and/or telephone contacts commercial and/or promotional communications from third parties (for example, business partners).
Treatment methods
The processing of your personal data is carried out by means of the operations indicated in the art. 4 no. 2) of the EU Regulation and precisely: the collection, recording, organisation, structuring, conservation, adaptation or modification, extraction, consultation, use, communication by transmission, diffusion or any other form of making available, comparison or interconnection, limitation, cancellation or destruction, blocking. Your personal data is subjected to both paper and electronic and/or automated processing (in any case suitable to guarantee the security and confidentiality of the data).
Data retention times and other information.
The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes and in any case no later than the legal deadlines from the termination of the relationship for the Purposes referred to in the existing relationship. With reference to personal data being processed for marketing and commercial purposes, the same will be kept in compliance with the principle of proportionality and in any case until the purposes of the processing have been achieved or until the revocation of the specific consent from part of the interested party. Specifically, the Data Controller will process the data for no longer than 3 years from data collection.
The personal data you provide will be processed “lawfully, correctly and transparently”, protecting your privacy and your rights.
The interested party undertakes not to insert or transmit to or from the Site any material:
that is intimidating, defamatory, obscene, indecent, seditious, offensive, pornographic, abusive, likely to incite racial hatred, discriminatory or discriminating, threatening, scandalous, inciting, blasphemous, violative of confidentiality obligations, invasive of privacy or which may in any way cause annoyance or damage; or which represents or encourages behavior that could be considered a form of crime, which could give rise to the liability of anyone, which is in any way contrary to the law, public order or morality or which infringes the rights of third parties anywhere in the world ; or which causes damage (including, without limitation, computer viruses, logic bombs, Trojan horses, worms, defective components, corrupted data or other software with harmful or damaging content). You may not abuse the Site (including, without limitation, engaging in hacking activities).
Data access
Your data may be made accessible for the purposes referred to in points 2.A) and 2.B):
– to partners, employees and collaborators of the Data Controller in Italy and abroad, in their capacity as internal data processors and/or managers and/or system administrators;
– to third-party companies or other subjects who carry out outsourced activities on behalf of the Data Controller, in their capacity as external data controllers (for example: associated firms, lawyers, data processing companies, certifying bodies, accounting consultants/ fiscal and in general to all the bodies responsible for checks and controls regarding the correct fulfilment of the purposes indicated above, credit institutions, professional firms, consultants, insurance companies for the provision of insurance services, financial offices, municipal bodies and/or Municipal offices, consultants and service companies and for safety in the workplace, who will in turn be able to communicate the data, or grant access to them within their members, users and related assignees for specific research market. The data collected and processed may also be communicated, in Italy and abroad, to subcontractors, suppliers, for the management of information systems, to transporters, freight forwarders and customs agents).
Data communication
Without the need for express consent (art. 6 letter b) and c) of the EU Regulation), the Data Controller may communicate your data for the purposes referred to in the previous point 2.A) to supervisory bodies, judicial authorities, to insurance companies for the provision of insurance services, as well as to those subjects to whom communication is mandatory by law for the fulfilment of the purposes indicated above.
These subjects will process the data in their capacity as independent data controllers.
During and after browsing, your data may be communicated to third parties, in particular to:
– Google: Advertising service, Advertising target, Analytics/Measurement, Content personalisation, Optimisation;
– Google AdWords: Advertising service, Advertising target, Analytics/Measurement, Content personalisation, Optimisation;
– Google Analytics: Advertising target, Analytics/Measurement, Optimisation.
Your information will not be disseminated.
Data transfer
Personal data is stored on devices located at the headquarters of the Data Controller or at providers within the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the data also to non-EU countries. In this case, the Data Controller hereby ensures that the transfer of non-EU data will take place in compliance with the applicable legal provisions, subject to the stipulation of the contractual clauses and standard checks required by the European Commission.
Both with regard to the data present on their devices and for any data present at providers, the Data Controller has implemented adequate technical and organizational measures to guarantee an adequate level of security, in full compliance with what is indicated in the art. 32 of the EU Regulation.
Browsing: your browsing data may also be transferred, limited to the purposes indicated above, to the following countries: – EU countries, – United States.
Management of cookies: if you have doubts or concerns regarding the use of cookies, you can always intervene to prevent them from being set and read, for example by changing the privacy settings within your browser in order to block certain types.
Since each browser, and often different versions of the same browser, also differ significantly from each other, if you prefer to act independently through your browser preferences you can find detailed information on the necessary procedure in your browser guide.
Nature of providing data and consequences of refusing to respond
The provision of data for the purposes referred to in the previous point 2.A) is mandatory. In their absence, we will not be able to guarantee the Services as indicated in 2.A).
The provision of data for the purposes referred to in point 2.B) above is optional. You can therefore decide not to provide any data or to subsequently deny the possibility of processing data already provided: in this case, you will not be able to receive newsletters, commercial communications and advertising material and/or anything else relating to the Services offered by the Data Controller.
You will however continue to be entitled to the Services referred to in point 2.A).
Rights of the interested party
In your capacity as an interested party, you have the rights referred to in the art. 15 of the EU Regulation reported below and precisely:
1. has the right to obtain confirmation from the Data Controller as to whether or not personal data concerning him or her are being processed and, in this case, to obtain access to the personal data and the following information:
a) the purposes of the processing;
b) the categories of personal data in question:
c) the recipients or categories of recipients to whom the personal data have been or will be communicated, in particular if recipients are from third countries or international organisations;
d) when possible, the expected retention period of personal data or, if this is not possible, the criteria used to determine this period;
e) the existence of the right of the interested party to ask the Data Controller to rectify or delete personal data or to limit the processing of personal data concerning him or to oppose their processing;
f) the right to lodge a complaint with a supervisory authority (the Guarantor for the protection of personal data);
g) if the data are not collected from the interested party, all available information on their origin;
h) the existence of an automated decision-making process, including profiling pursuant to art. 22, paragraphs 1 and 4 of the EU Regulation, and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of such processing for the interested party.
2. If your personal data are transferred to a third country or to an international organisation, you have the right to be informed of the existence of adequate guarantees pursuant to art. 46 of the EU Regulation relating to the transfer.
3. The Data Controller will provide you with a copy of your personal data being processed if you request it.
If you request further copies, the Data Controller may charge you a reasonable fee based on administrative costs. If you submit your request by electronic means, and unless you indicate otherwise, the information will be provided to you in a commonly used electronic format.
4. The right to obtain a copy referred to in paragraph 3 shall not adversely affect the rights and freedoms of others.
Furthermore, where applicable, you can enjoy the rights referred to in articles 16 to 21 of the EU Regulation and specifically you have:
– the right to rectification of personal data;
– the right to be forgotten (right to cancellation);
– the right to limit processing;
– the right to data portability;
– the right to object;
– the right to complain to the Guarantor Authority.
You also have the right to revoke any consent already given at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation.
Personal data not obtained from the interested party
It may happen that the undersigned is not the Data Controller to whom you have given your personal data, but appears to be co-owner of the processing or responsible for external processing and therefore your data has reached the undersigned secondly due to of a contract governing the parties. In this case it is specified that the undersigned will do everything possible to ensure that you have been informed and have given consent to the processing. You can ask the undersigned at any time the origin of acquisition of your data.
Owner and Representatives
Below we provide you with some information that you need to bring to your attention, not only to comply with legal obligations, but also because transparency and fairness towards the people who visit our website is a fundamental part of our activity.
Data controller. The Data Controller of your personal data is AZIENDA AGRICOLA LATIUM di MORINI s.s. and who can be contacted for any information or request at the following addresses: e-mail:latiummorini@latiummorini.it
In charge. The updated list of data processors is kept at the headquarters of the Data Controller.