Pursuant to and to the effects of Articles 13 and 14 of Regulation (EU) 2016/679 (hereinafter GDPR) laying down provisions on personal data protection, the Company Comex Europe S.R.L., in its capacity as the Data Controller, informs you that the data concerning you, provided by you or otherwise acquired, will be processed in compliance with the GDPR.
Your personal data will be processed lawfully, fairly and in a transparent manner in relation to the data subject.
Personal data processing refers to any operation or series of operations, whether carried out manually or using electronic tools, concerning the collection, recording, organisation, storage, consultation, preparation, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, erasure or destruction of data, regardless of whether said data are recorded in a databank;
- DATA CONTROLLER
The Data Controller is the undersigned Company Comex Europe S.R.L. (VAT identification number 02755210362), through its legal representative currently in office, with registered and operational address at Via San Lodovico n. 6, Rio Saliceto (RE), Italy – contact details certified e-mail address (Italian acronym PEC): comex-europe@pec.it – e-mail: info@comex-europe.com – Phone: +39-0522-643710.
- CATEGORIES OF DATA PROCESSED:
The data that will undergo this processing operation are the following:
- In case of natural persons, they will be identifying personal data, such as first name, last name, place and date of birth, Taxpayer Identification Number, identity document, phone number, e-mail address, IBAN);
- In case of legal persons, the data will be the name of the firm or of its owner/point of contact, e-mail address, IBAN, first name, last name, place and date of birth, Taxpayer Identification Number and any points of contact/representatives of the company.
- PURPOSES OF DATA PROCESSING
A. FINALIZATION AND PERFORMANCE OF THE SUPPLY/SERVICE CONTRACT, consisting for example of: precontractual activities, contract execution and performance, dispute management.
Legal basis for the processing: the legal basis for the processing of the collected data is the contract for the supply of goods or provision of services to which you are a party (Article 6(b) of the GDPR).
Recipients of the data: the data collected for the stated purpose may be communicated to law firms, chartered accountants or labour consultants, to the data processors designated in accordance with Article 28 of Regulation (EU) 2016/679, to insurance undertakings, IT consultants/system administrators.
The updated list of data processors is on file at the headquarters of the Data Controller.
The data will not be disclosed to third parties.
Duration of the processing: the data collected for the above-stated purpose will be stored until the end, for any cause whatsoever, of the contractual relationship or for any longer period until the end of the statute of limitations ordinary period for contractual liability, unless special requirements for longer storage of the data apply regarding the contractual relationship.
Failure to provide the data: Providing the necessary data to pursue the stated purpose is a contractual obligation which the data subject is required to comply with. Any failure by the data subject to provide those data shall entail the impossibility to perform the contract.
B. COMPLIANCE WITH LEGAL OBLIGATIONS, which, for example, consist in in: administrative and accounting obligations, tax obligations.
Legal basis for the processing: the legal basis for the processing of the collected data is compliance with legal obligations lying with the Data Controller (Article 6(c) of the GDPR)
Recipients of the data: the data collected for the stated purpose may be communicated: to credit institutions, to Agenzia delle Entrate (the Italian Revenue Agency), other public authorities and/or private parties to which the data are to be communicated by law, to law firms, chartered accountants or labour consultants, to the data processors designated in accordance with Article 28 of Regulation (EU) 2016/679, to insurance undertakings, IT consultants/system administrators.
The updated list of data processors is on file at the headquarters of the Data Controller.
The data will not be disclosed to third parties.
Duration of the processing: the data collected for the above-stated purpose will be stored for the time laid down by the legislation that imposes their processing or for any longer period regarding the statute of limitations of the related rights, unless special requirements for longer storage of the data apply due to new legal obligations.
Failure to provide the data: the provision of the data is mandatory and necessary in order to comply with legal obligations. Any refusal to provide the data for said purpose shall determine the impossibility to continue the business relationship.
Methods of processing: the data processing for the above-stated purposes is done via electronic, IT or paper media, in compliance with the confidentiality and security rules laid down by the aforementioned legislation and by other subsequent legislation and regulations.
Transfer of the data abroad: The data collected for the above-stated purposes will not be transferred to countries not belonging to the EU. Nevertheless, the Data Controller reserves the right to use cloud services and, in this case, the providers of the services will be selected amongst those who ensure appropriate safeguards in accordance with Article 46 of Regulation (EU) 2016/679.
Automated decision-making processes: the data collected for the above-stated purposes are not the subject-matter of any automated decision-making processes (including profiling).
Rights of the data subject: pursuant to the Regulation (EU) 2016/679, the data subject shall have the following rights:
• The right to access his or her personal data in order to know (“responsive transparency”) the purposes of the processing, the categories of personal data collected, the data recipients, especially in case of recipients based in third countries or international organizations, the expected data storage period (Article 15);
• The right to obtain data rectification (Article 16);
• The right to obtain the erasure of his or her personal data if they are no longer necessary for the purposes for which they were collected and if there are no other legal requirements to keep them (Article 17 of the GDPR);
• The right to obtain the restriction of processing (Article 18);
• The right to data portability (Article 20);
• The right to object, on grounds relating to his or her particular situation, at any time to the processing of personal data concerning him or her (Article 21 of the GDPR). In this case, the Company shall refrain from further processing of your personal data, unless it can prove the existence of mandatory, legitimate grounds for performing the processing (for example, to defend its rights court).
• The right not to be subject to automated decision-making, including profiling (Article 22);
Lastly, the data subject shall be entitled to lodge a complaint with the Data Protection Authority in accordance with article 13 (2) (d) of the above regulation as well as article 77 of the regulation.
How to exercise your rights as the data subject: the data subject shall be entitled to exercise his or her rights, at any time, in compliance with Article 12 of Regulation (EU) 2016/679, sending:
- registered letter with return receipt to: Comex Europe S.R.L., at Via San Lodovico n. 6, Rio Saliceto (RE), Italy
- Certified e-mail address (Italian acronym PEC): comex-europe@pec.it
- e-mail: info@comex-europe.com
Referral clause: for anything not provided for in this information to data subjects, please refer to the applicable legislation on this matter, specifically to Regulation (EU) 2016/679 and to Italian Legislative Decree no. 196/03 as amended by Italian Legislative Decree 101/18 as amended and supplemented, as well as to any other applicable measure.
Having received and read the information to data subjects, I, the undersigned, acknowledge the above regarding the processing of personal data for the stated purposes.
Download PDF
Your personal data will be processed lawfully, fairly and in a transparent manner in relation to the data subject.
Personal data processing refers to any operation or series of operations, whether carried out manually or using electronic tools, concerning the collection, recording, organisation, storage, consultation, preparation, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, erasure or destruction of data, regardless of whether said data are recorded in a databank;
- DATA CONTROLLER
The Data Controller is the undersigned Company Comex Europe S.R.L. (VAT identification number 02755210362), through its legal representative currently in office, with registered and operational address at Via San Lodovico n. 6, Rio Saliceto (RE), Italy – contact details certified e-mail address (Italian acronym PEC): comex-europe@pec.it – e-mail: info@comex-europe.com – Phone: +39-0522-643710.
- CATEGORIES OF DATA PROCESSED:
The data that will undergo this processing operation are the following:
- In case of natural persons, they will be identifying personal data, such as first name, last name, place and date of birth, Taxpayer Identification Number, identity document, phone number, e-mail address, IBAN);
- In case of legal persons, the data will be the name of the firm or of its owner/point of contact, e-mail address, IBAN, first name, last name, place and date of birth, Taxpayer Identification Number and any points of contact/representatives of the company.
- PURPOSES OF DATA PROCESSING
A. FINALIZATION AND PERFORMANCE OF THE SUPPLY/SERVICE CONTRACT, consisting for example of: precontractual activities, contract execution and performance, dispute management.
Legal basis for the processing: the legal basis for the processing of the collected data is the contract for the supply of goods or provision of services to which you are a party (Article 6(b) of the GDPR).
Recipients of the data: the data collected for the stated purpose may be communicated to law firms, chartered accountants or labour consultants, to the data processors designated in accordance with Article 28 of Regulation (EU) 2016/679, to insurance undertakings, IT consultants/system administrators.
The updated list of data processors is on file at the headquarters of the Data Controller.
The data will not be disclosed to third parties.
Duration of the processing: the data collected for the above-stated purpose will be stored until the end, for any cause whatsoever, of the contractual relationship or for any longer period until the end of the statute of limitations ordinary period for contractual liability, unless special requirements for longer storage of the data apply regarding the contractual relationship.
Failure to provide the data: Providing the necessary data to pursue the stated purpose is a contractual obligation which the data subject is required to comply with. Any failure by the data subject to provide those data shall entail the impossibility to perform the contract.
B. COMPLIANCE WITH LEGAL OBLIGATIONS, which, for example, consist in in: administrative and accounting obligations, tax obligations.
Legal basis for the processing: the legal basis for the processing of the collected data is compliance with legal obligations lying with the Data Controller (Article 6(c) of the GDPR)
Recipients of the data: the data collected for the stated purpose may be communicated: to credit institutions, to Agenzia delle Entrate (the Italian Revenue Agency), other public authorities and/or private parties to which the data are to be communicated by law, to law firms, chartered accountants or labour consultants, to the data processors designated in accordance with Article 28 of Regulation (EU) 2016/679, to insurance undertakings, IT consultants/system administrators.
The updated list of data processors is on file at the headquarters of the Data Controller.
The data will not be disclosed to third parties.
Duration of the processing: the data collected for the above-stated purpose will be stored for the time laid down by the legislation that imposes their processing or for any longer period regarding the statute of limitations of the related rights, unless special requirements for longer storage of the data apply due to new legal obligations.
Failure to provide the data: the provision of the data is mandatory and necessary in order to comply with legal obligations. Any refusal to provide the data for said purpose shall determine the impossibility to continue the business relationship.
Methods of processing: the data processing for the above-stated purposes is done via electronic, IT or paper media, in compliance with the confidentiality and security rules laid down by the aforementioned legislation and by other subsequent legislation and regulations.
Transfer of the data abroad: The data collected for the above-stated purposes will not be transferred to countries not belonging to the EU. Nevertheless, the Data Controller reserves the right to use cloud services and, in this case, the providers of the services will be selected amongst those who ensure appropriate safeguards in accordance with Article 46 of Regulation (EU) 2016/679.
Automated decision-making processes: the data collected for the above-stated purposes are not the subject-matter of any automated decision-making processes (including profiling).
Rights of the data subject: pursuant to the Regulation (EU) 2016/679, the data subject shall have the following rights:
• The right to access his or her personal data in order to know (“responsive transparency”) the purposes of the processing, the categories of personal data collected, the data recipients, especially in case of recipients based in third countries or international organizations, the expected data storage period (Article 15);
• The right to obtain data rectification (Article 16);
• The right to obtain the erasure of his or her personal data if they are no longer necessary for the purposes for which they were collected and if there are no other legal requirements to keep them (Article 17 of the GDPR);
• The right to obtain the restriction of processing (Article 18);
• The right to data portability (Article 20);
• The right to object, on grounds relating to his or her particular situation, at any time to the processing of personal data concerning him or her (Article 21 of the GDPR). In this case, the Company shall refrain from further processing of your personal data, unless it can prove the existence of mandatory, legitimate grounds for performing the processing (for example, to defend its rights court).
• The right not to be subject to automated decision-making, including profiling (Article 22);
Lastly, the data subject shall be entitled to lodge a complaint with the Data Protection Authority in accordance with article 13 (2) (d) of the above regulation as well as article 77 of the regulation.
How to exercise your rights as the data subject: the data subject shall be entitled to exercise his or her rights, at any time, in compliance with Article 12 of Regulation (EU) 2016/679, sending:
- registered letter with return receipt to: Comex Europe S.R.L., at Via San Lodovico n. 6, Rio Saliceto (RE), Italy
- Certified e-mail address (Italian acronym PEC): comex-europe@pec.it
- e-mail: info@comex-europe.com
Referral clause: for anything not provided for in this information to data subjects, please refer to the applicable legislation on this matter, specifically to Regulation (EU) 2016/679 and to Italian Legislative Decree no. 196/03 as amended by Italian Legislative Decree 101/18 as amended and supplemented, as well as to any other applicable measure.
Having received and read the information to data subjects, I, the undersigned, acknowledge the above regarding the processing of personal data for the stated purposes.
Download PDF
COMEX EUROPE Srl
Via San Lodovico, 6
42010 Rio Saliceto (RE) Italy
Phone +39.0522.643710
Phone +39.0522.631433
Fax +39.0522.637603
info@comex-europe.com
P.I. - VAT 02755210362
Whistleblowing
TRASPARENZA AIUTI DI STATO
SOSTEGNO DEGLI INVESTIMENTI PRODUTTIVI FINALIZZATI ALL'INNOVAZIONE DELLE IMPRESE
Via San Lodovico, 6
42010 Rio Saliceto (RE) Italy
Phone +39.0522.643710
Phone +39.0522.631433
Fax +39.0522.637603
info@comex-europe.com
P.I. - VAT 02755210362
Whistleblowing
TRASPARENZA AIUTI DI STATO
SOSTEGNO DEGLI INVESTIMENTI PRODUTTIVI FINALIZZATI ALL'INNOVAZIONE DELLE IMPRESE
Comex Europe Srl © Copyright 2012