In compliance with the terms established by the Personal Data Protection Act (Italian Legislative Decree 196/03), Mondani Web s.r.l. guarantees the maximum security and confidentiality of the processing of the personal data conferred for the purpose of using the services offered on the website www.mondaniweb.com, as well as for the purposes of marketing and promotional advertising.
In order to perform the personal data processing activities, Mondani Web s.r.l. relies on its own employees and/or collaborators. These are the persons in charge of the processing/ Data Supervisors of the personal data provided by the User in compliance with the Personal Data Protection Act (Italian Legislative Decree 196/03).
1. The Data Controller
Pursuant to the terms of Article 13 of Italian Legislative Decree 196/2003, the Data Controller with regard to the personal data provided by the User, ex Article 28 of Italian Legislative Decree 196/2003, is Mondani Web s.r.l., with registered office in Via Antonio Cantore 42/4, 16149, Genoa.
The purposes for which the personal data provided by the User are processed are as follows:
2. Purposes of the processing
The purposes for which the personal data provided by the User are processed are as follows:
a) for the management of existing of future legal relationships;
b) to fulfil the legal requirements relative to the duties deriving from the above-mentioned legal relationships;
c) for the organisational management of any legal relationship already in progress or those that may be established in the future.
d) for the fulfilment of mandatory legal, accounting and/or tax requirements;
e) for the performance of promotional and/or marketing activities via email in relation to additional services and/or products offered by the Data Controller, also through third party companies or companies connected with the same;
f) for the communication of the personal data to partners and/or third party collaborators of the Data Controller for the performance of promotional and/or marketing activities via email in relation to additional services and/or products offered by the Data Controller, also through third party companies or companies connected with the same;
3. Duration of the processing
The data provided for the purposes described under points a), b) and c) will be stored for all the time necessary in order to perform the services offered by Mondani Web s.r.l. and for a maximum period of 10 (ten) years. After this term, the data will be destroyed.
The data provided for the purposes described under points a), b) and c) will be stored for all the time necessary in order to perform the services offered by Mondani Web s.r.l. and for a maximum period of 10 (ten) years. After this term, the data will be destroyed.
The data provided by the User for the purposes stated under point d) will be stored, in compliance with the legal provisions in force, for the time necessary to fulfil the indicated duties and in any case for a maximum period of 10 (ten) years.
The data provided by the User for the purposes stated under points e) and f) will be stored for a maximum period of 5 (five) years.
In all cases, the user can always revoke their consent at any time.
4. Nature of the data conferral
The conferral of data is mandatory for the User for the purpose of fulfilling the activities described under points a) to d) of paragraph 2: in particular for fulfilling the legal duties deriving from the established contractual relationship and for all other tax-related purposes or other purposes in any case linked to legal obligations, including those of the European Community.
Therefore, should the User refuse to communicate their data to the parties indicated by the Data Controller, this will make it impossible for the latter to fulfil the above-mentioned duties and so provide the User with the services or products requested.
For the purposes detailed under points e) and f) of paragraph 2, the provision of the User’s consent is optional. Should the User provide their consent, both the activities indicated in the points above and the communication to partners and/or third party collaborators other than the Data Controller of the data provided by the user, will be performed by sending communications by email or via digital media.
5. Data processing methods
The data provided by the User will only be processed and filed for the purposes indicated in paragraph 2, using suitable paper and/or digital media, entered in specific databases and processed with instruments designed to ensure their integrity, security and confidentiality in compliance with the terms of Italian Legislative Decree 196/ 2003.
All the appropriate technical, digital, organisational and security measures for ensuring the minimum level of data protection envisaged by the law will be used.
Only the people named by Mondani Web s.r.l. as persons in charge of the processing will be granted access to said data.
The data can also be communicated and/or collected by Third parties suitably named as Data Supervisors.
6. Communication or dissemination of the data
With reference to paragraph 2, the data provided by the User can only be communicated outside the Data Controller’s structure to parties whose intervention is required in order to perform the services requested by the User or to fulfil specific legislative requirements.
Notably, these include:
- organisations, professionals, companies or other structures designed to perform the processing relative to the fulfilment of the administrative, accounting and management duties linked to the routine performance of the Data Controller’s economic activity;
- banks, financial institutions or other parties to whom or which the above-mentioned data must be transferred in order to carry out the Data Controller’s activities in relation to the fulfilment of the relative contractual obligations undertaken;
- legal companies and firms for the protection of the rights governed by contract;
- competent authorities and/or Supervisory Bodies for the execution of the duties imposed by law;
- for the purposes detailed in paragraph 2, the data can be communicated to authorised parties who work for the Data Controller and to companies belonging to the group;
- freelancers, professional studios, and consultants appointed to study and resolve problems related to the execution of the services;
- Public Authorities and Administrations for purposes related to the fulfilment of legal obligations;
7. Article 7 of Italian Legislative Decree 196/2003
- The Data Subject shall have the right to obtain confirmation as to whether or not personal data concerning them exists, regardless of whether it has already been recorded, and the communication of such data in intelligible form.
- The Data Subject shall have the right to be informed of:
a) the source of their personal data;
b) the purposes and methods of the processing;
c) the logic applied to the processing, if the latter is carried out with the help of electronic means;
d) the data identifying the Data Controller, Data Supervisors and the representative designated as per Article 5 paragraph 2;
e) the entities, or categories of entity, to whom or which the personal data may be communicated, and may come to know said data in their capacity as designated representative(s) in the State’s territory, or as Data Supervisors or persons in charge of the processing.
The Data Subject shall have the right to:
a) have their data updated, corrected or, where interested therein, integrated;
b) have their data erased, rendered anonymous or blocked in cases regarding data that has been processed unlawfully, including data which does not require to be retained for the purposes for which it has been collected or subsequently processed;
c) obtain certification to the effect that the operations as per letters a) and b) have been notified, also with reference to their contents, to the entities to whom or which the data was communicated or disseminated, unless this requirement proves impossible or involves a clearly disproportionate effort compared with the right that is to be protected. - The Data Subject shall have the right to object, in whole or in part:
a) on legitimate grounds, to the processing of personal data concerning them, even though it may be relevant to the purpose of the collection;
b) to the processing of personal data concerning them, where this is carried out for the purpose of sending advertising materials or direct selling, or else for the performance of market research or commercial communication.
8. Location of the processing of the conferred data
Mondani Web s.r.l., with registered office in Via Antonio Cantore 42/4, 16149, Genoa. In order to exercise the above-mentioned rights, the User can submit a request to the Data Controller of Mondani Web s.r.l., by phoning [+39 392 996 8887] or writing to [info@mondaniweb.com]
Glossary
Pursuant to Article 4 of Italian Legislative Decree 196/2003 for the purposes of this Privacy Policy, the following terms are defined:
a) “processing”: any operation or set of operations carried out with or without the aid of electronic means, concerning the collection, registration, organisation, storage, consultation, processing, amendment, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, erasure and destruction of data, even if not recorded in a database;
b) “personal datum”: any piece of information relative to a natural person who has been identified or can be identified, also indirectly, via reference to any other piece of information, including therein a personal identification number;
c) “identifying data”: the personal data that enable a Data Subject to be personally identified;
d) “Data Controller”: the natural person, company, public administration and any other organisation, association or body responsible, also jointly with another Data Controller, for making the decisions regarding the purposes and methods of the personal data processing and the means used to perform the same, including the relative data security aspect;
e) “Data Supervisor”: the natural person, company, public administration and any other organisation, association or body appointed by the Data Controller to process personal data.
f) “persons in charge of the processing”: the natural persons authorised by the Data Controller or Data Supervisor to perform processing operations;
g) “database”: any organised set of personal data divided into one or more separate units in one or more locations;