Privacy Policy

I. Name and Address of the Controller

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of Member States, as well as additional data protection provisions, is: 

Eurotrad s.a.s.
Via Salvo D’Acquisto 17/A
37057 San Giovanni Lupatoto (Verona)
Italy
+39 (0)45 6984166
info@eurotraduzioni.com
www.eurotraduzioni.com

II. Name and Address of the Data Protection Officer

The controller’s data protection officer is:

Raniero Marcato
Via Salvo D’Acquisto 17/A
37057 San Giovanni Lupatoto (Verona)
Italy
+39 (0)45 6984166
info@eurotraduzioni.com
www.eurotraduzioni.com

III. Rights of the Data Subject
Should personal data concerning you be processed, this means that you are a data subject within the meaning of the GDPR and have the following rights vis-à-vis the controller:

  1. Right to Information
    You may request confirmation from the controller as to whether personal information concerning you is processed by us.
    Should such processing have taken place, you may request the following information from the controller:
    (1) the purposes for which the personal data were processed;
    (2) the categories of personal data that were processed;
    (3) the recipients or categories of recipient to whom the personal data have been or are
    still being disclosed;
    (4) the planned duration for storage of the personal data or, if specific information is not
    available, the criteria for determining the storage period;
    (5) the existence of a right to have personal data rectified or deleted, a right to restriction
    of processing by the controller or a right to object to this processing;
    (6) the existence of a right to complain to a regulatory body;
    (7) any available information on the origin of the data, if the personal data were not collected from the data subject:
    (8) the existence of automated decision-making, including profiling in accordance with Art. 22 (1) and (4) of the GDPR and – in these cases at least – meaningful information on the logic involved, as well as the scope and intended effects on the data subject of such processing.

You shall also have the right to request information on whether the personal data are passed on to a third-country or international organisation. In this context, you may request to be informed of the appropriate guarantees in accordance with Art. 46 of the GDPR in connection with this transmission.

  1. Right to Rectification
    You shall have the right to rectification and/or completion vis-à-vis the controller, insofar as the personal data that are processed are incorrect or incomplete. The controller must carry out the rectification without delay.
  2. Right to Restriction of Processing
    Under the following conditions, you may request that processing of personal data be restricted:
    (1) if you contest the accuracy of the personal data for a period enabling the controller to verify the accuracy of the personal data;
    (2) the processing is unlawful and you oppose the erasure of the personal data and instead request the restriction of their use;
    (3) the controller no longer needs the personal data for the purposes of the processing, but you require them for establishing, exercising or defending legal claims; or
    (4) if you have objected to processing pursuant to Art. 21 (1) of the GDPR pending the verification of whether the controller’s legitimate grounds override those of the data subject.

Where processing of personal data has been restricted, such personal data shall – with the exception of storage – only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. Should the restriction of processing be limited due to the aforementioned conditions, you shall be informed by the controller before the restriction of processing is lifted.

  1. Right to Erasure
  2. a) Deletion Obligation
    You may request the controller to erase personal data without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
    (1) the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
    (2) you withdraw your consent on which the processing is based in accordance with Article 6 (1) S. 1 point a, or Article 9 (2) point a of the GDPR, and where there are no other legal grounds for the processing;
    (3) you object to the processing pursuant to Art. 21 (1) of the GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 (2) of the GDPR;
    (4) the personal data have been unlawfully processed;
    (5) the personal data have to be erased for compliance with a legal obligation in European Union or Member State law to which the controller is subject;
    (6) the personal data have been collected in relation to the offer of information society services referred to in Art. 8 (1) of the GDPR.
  3. b) Information Sent to Third Parties
    Where the controller has made the personal data public and is obliged pursuant to Art. 17 (1) of the GDPR to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that the data subject has requested the erasure by such controllers of any links to, or copies or replications of, those personal data.
  4. c) Exceptions
    The right to erasure does not exist insofar as processing is necessary
    (1) for exercising the right of freedom of expression and information;
    (2) for compliance with a legal obligation which requires processing by European Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
    (3) for reasons of public interest in the area of public health in accordance with Art. 9 (2) points h and i, as well as Art. 9 (3) of the GDPR;
    (4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Art. 89 (1) of the GDPR insofar as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
    (5) for the establishment, exercise or defence of legal claims.
    Right to Information
    Should you have asserted your right vis-à-vis the controller to rectification or erasure of personal data or restriction of processing, the controller is required to inform each recipient to whom the personal data have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves disproportionate effort. You have a right to request that the controller informs you of such recipients.
  5. Right to Data Portability
    You shall have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format. Moreover, you have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where:
    (1) the processing is based on consent pursuant to Art. 6 (1) S. 1 point a of the GDPR or Article 9 (2) point a of the GDPR or on a contract pursuant to Article 6 (1) point b of the GDPR; and
    (2) the processing is carried out by automated means.

In exercising this right, you also have the right to have the personal data transmitted directly from one controller to another, where technically feasible. The freedoms and rights of others must not be affected by this.
The right to data portability shall not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

  1. Right to Object
    You shall have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you based on Art. 6 (1) S. point e or f of the GDPR, including profiling based on those provisions.
    The controller shall no longer process the personal data unless the controller demonstrates
    compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.
    Where personal data are processed for direct marketing purposes, you shall have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.
    Should you object to processing for direct marketing purposes, the personal data shall no longer be processed for such purposes.
    In the context of the use of information society services – and notwithstanding Directive 2002/58/EC – you may exercise your right to object by automated means using technical specifications.
  2. Right to Revoke the Declaration of Consent under Data Protection Law
    You have the right to revoke your declaration of consent under data protection law at any time. This revocation of consent shall not affect the legality of processing carried out on the basis of consent prior to the revocation.
  3. Automated Individual Decision-Making, Including Profiling
    You shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or affects you in a similarly significant manner. This shall not apply if the decision
    (1) is necessary for entering into, or performance of, a contract between you and the
    controller;
    (2) is authorised by European Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
    (3) is based on your explicit consent.

However, these decisions shall not be based on special categories of personal data referred to in Article 9 (1) S. 1 of the GDPR, unless Article 9 (2) point (a) or (g) applies and suitable measures to safeguard your rights and freedoms and legitimate interests are in place.
In the cases referred to in (1) and (3), the controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, including as a minimum the right to obtain human intervention on the part of the controller, to express your point of view and to contest the decision.

  1. Right to Complain to a Regulatory Body
    Without prejudice to any other administrative or judicial remedy, you have the right to complain to a regulatory body, in particular in the Member State where you reside, work or suspect infringement, if you believe that the processing of personal data is contrary to the GDPR.
    The regulatory body to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Art. 78 of the GDPR.
  2. General Information on Data Processing
  3. Scope of Processing of Personal Data
    We only process the personal data of our users if this is necessary for providing a functional website or for our contents and services.
  4. Legal Basis for the Processing of Personal Data
    Insofar as we obtain consent from the data subject for the purposes of processing personal data, Art. 6 (1) S. 1 point a of the EU General Data Protection Regulation (GDPR) shall serve as the legal basis.
    In processing personal data which are necessary for the fulfilment of a contract, in which the contractual party is the data subject, Art. 6 (1) S. 1 point b of the GDPR shall serve as the legal basis. This also applies for processing that is necessary for carrying out pre-contractual measures.
    Insofar as the processing of personal data is necessary for the fulfilment of a legal obligation to which our company is subject, Art. 6 (1) S. 1 point c of the GDPR shall serve as the legal basis.
    In the event that vital interests of the data subject or of another natural person make processing of personal data necessary, Art. 6 (1) S.1 point d of the GDPR shall serve as the legal basis.
    Should the processing be necessary for the protection of a valid interest of our company or a third party and this interest outweighs the interests, basic rights and freedoms of the data subject, Art. 6 (1) S. 1 point f of the GDPR shall serve as the legal basis.
  5. Erasure of Data and Duration for Storage
    The data subject’s personal data shall be deleted or made inaccessible as soon as the purpose of the storage is no longer applicable. Data may continue to be stored if this has been provided for by European or national legislators in EU regulations or in other provisions to which the controller is subject. The data will also be deleted or made inaccessible if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
  6. Website Provision and Creation of Logfiles
  7. Description and Scope of Data Protection
    Each time our website is visited, our system automatically collects data and information from the accessing computer’s system. The following data are collected:
  • Information pertaining to browser type and version
  • The user’s operating system
  • The user’s IP address
  • Date and time of access
  • Websites from which the user accesses our page
  • Websites that the user accesses via our page

The data are also stored as log files in our system. These data are not stored together with other personal data of the user.

  1. Legal Basis for the Data Processing
    Legal basis for the temporary storage of data and log files is Art. 6 (1) S.1 point f of the GDPR.
  2. Purpose of the Data Processing
    The temporary storage of the IP address by the system is necessary to enable the user’s computer to open the website. For this purpose, the user’s IP address must be stored for the duration of the session.
    These data are stored in log files in order to ensure the functionality of the website. In addition, the data are used to optimise our website and ensure the security of our IT systems. Analysis of the data for marketing purposes does not take place in this context.
    Data processing for these purposes is also in our legitimate interest in accordance with Art. 6 (1) S. 1 point f of the GDPR.
  3. Duration of Storage
    The data will be erased as soon as they are no longer necessary to achieve the purpose for which they were collected. If data are collected for the provision of the website, this occurs when the respective session has ended.
    If data are stored in log files, this occurs after seven days at the latest. Further storage is possible. In this case, the user’s IP address shall be erased or anonymised so it can no longer be assigned to the client using the website.
  4. Possibility for Objection or Elimination
    The collection of data for providing the website and storage of data in log files is essential for operating the site. Consequently, there is no possibility for the user to object.

Tel +00390456984166

Tel +00393497829908

E-mail: info@eurotraduzioni.com