General information for customers and suppliers

INFORMATION ON THE PROCESSING OF NON-SPECIFIC PERSONAL DATA PURSUANT TO ART. 13 OF EUROPEAN REGULATION 2016/679

Dear user, pursuant to Article 13 of the “European Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data, as well as on the free circulation of such data” (hereinafter “GDPR”), we wish to provide the following information:

  1. DATA OWNERSHIP:
    • The Data Owner is the company FUTURA SISTEMI SRL with registered office in Via Saragat, 21 – 37066 Sommacampagna (VR) VAT number 03047300235 in the person of its Legal Representative.
    • The Data Owner can be contacted at no. 045 510712 or at the email address info@futurasistemi.it.
  2. TYPE OF DATA PROCESSED:
    The data processed by the Data Owner are those necessary to achieve the purposes referred to in the following point D. By way of non-exhaustive example, they are:

    • Name, Surname, Company name and legal form
    • Address and other telephone or electronic contacts (email, webiste etc.)
    • Tax data such as Tax Code and/or VAT number
  3. DATA SOURCE:
    The personal data in the possession of the Data Owner are collected directly from the user.
  4. PURPOSE OF THE PROCESSING AND LEGAL BASIS:
    Pursuant to art. 6 letter b, e, the processing of your personal data does not require express consent and will be aimed at:

    • Conclude service contracts,
    • Fulfil contractual, pre-contractual and tax obligations arising from existing relationships,
    • Exercise the rights of the Data Owner, for example the right to defense in court.

    The legal basis is the fulfillment of a contractual or pre-contractual relationship existing between the parties.

    The data held by the Data Owner will be processed in accordance with the principles set out in art. 5 of the GDPR such as: lawfulness, correctness, transparency, limitation, minimization, integrity and confidentiality.

  5. FAILURE OF THE INTERESTED PARTY TO COMMUNICATE DATA:
    With regard to personal data relating to the execution of the contract to which you are a party or relating to the fulfillment of a regulatory obligation (for example, obligations related to the maintenance of accounting and tax records), failure to communicate personal data prevents the completion of the contractual relationship itself.
  6. DATA RECIPIENTS:
    To achieve the purposes described above, your personal data may be communicated to:

    • Business consultants in relation to accounting, administration, payroll, business management, quality, privacy, legal assistance and workplace safety;
    • Banking, financial and insurance institutions;
    • judicial and administrative authorities for the fulfillment of legal obligations;
    • consultants and assistants for IT hardware and software maintenance;
    • third parties appointed by the Data Owner to develop the company's commercial network.
  7. DATA TRANSFER TO NON-EU COUNTRIES:
    By using Google's G-Suite system, the Data Controller transfers some data to non-EU countries such as the USA. Data security is guaranteed by the adequacy decision (US Privacy Shield).
  8. DATA RETENTION PERIOD:
    The data collected will be stored for the period strictly necessary to achieve the purposes described above and in any case, for a period not less than that dictated by legal and/or fiscal obligations.
  9. PROFILING:
    Your personal data are not subject to disclosure or any fully automated decision-making process, including profiling.
  10. USER RIGHTS:
    As the interested party of the processing, you always have the right to request from the Data Controller:

    • Access to your data and information
    • Rectification and erasure (“right to be forgotten”) of data
    • The limitation of processing or the possibility to object to processing
    • To request data portability
    • Revoking consent to the processing, thus asserting this right and the others provided for by the GDPR.

    To exercise your rights, you can contact the Data Owner directly.

    You also have the right to lodge a complaint with the supervisory authorities (Italian Data Protection Authority - www.garanteprivacy.it).

  11. TREATMENT METHODS:
    The data provided by you will be processed using manual, computerised or telematic tools, in any case in compliance with the GDPR and the confidentiality obligations that inspire the activity of the Data Controller. The data will be processed using computerised tools, on paper and on any other type of suitable support, in compliance with the appropriate security measures pursuant to art. 5 par. 1 lett. F of the GDPR.