(General Data Protection Regulation – GDPR 2016/679)
This policy is provided pursuant to Art. 13 of the GDPR 679/2016 – « European regulation on the protection of personal data ».
Purposes of processing and legal basis
We inform you that the personal data you provided and acquired by Imagicle S.p.a. will be processed in compliance with the guarantees of privacy and security measures required by current legislation, including the help of electronic tools directly and/or through third parties, for the purposes set out below together with the legal basis of reference:
Purposes strictly related to the execution of pre-contractual measures and to respond to specific requests from the Data Subject
Common personal data
Processing necessary for the performance of a contract to which the Data Subject is party or in order to take steps at the request of the Data Subject prior to entering into a contract. – Art. 6 paragr. 1 lett b)
Compulsory or optional nature of the provision of data and consequences of a refusal to provide
The nature of the provision of your personal data is mandatory so that the Data Controller can fulfill the obligations deriving and arising from the pre-contractual relationship in place with you, as well as those imposed by law or regulations. Failure to provide your personal data may determine the impossibility to establish or continue the pre-contractual relationship to the extent that such data are necessary for its execution.
The data will be processed for the period of time necessary to pursue the aforementioned purposes and in any case no longer than 10 years from their collection.
Contact details of the Data Controller
The Data Controller of your personal data is Imagicle S.p.A, responsible for the lawful and correct use of your personal data, and who you may contact for any information or requests at the following addresses:
You may furthermore address the Data Protection Officer to acquire information and forward requests regarding your data or to communicate disservices or any problem you may have encountered at the following addresses:
Name: Aksilia S.r.l. Registered office: Via Fontana 22 – 20122 – Milano (MI) Telephone: 02/40703351 E-mail: firstname.lastname@example.org Certified Email: email@example.com
in the person of the reference manager, Dr. Battaglia Chiara, reachable at the abovementioned contact data and at the following cellphone number: 347 8267770.
Receiver and transfer of non-EU data
Your data may be communicated in Italy or in the EU territory, in addition to the personnel assigned to the processing, also to the following subjects:
a) Consultants and companies that assist the Data Controller from an IT, infrastructural point of view and for the management of communication networks;
The data will not be subject to other methods of dissemination.
Rights of the data subject
We inform you that as data subject you have, in addition to the right to submit a complaint to the Supervisory Authority, the rights listed below, which you can assert by asking a specific request to the Data Controller and/or the Data Processor, contacting him at the addresses indicated in point 4.
GDPR Regulatory Ref.
Rights of the data subject
Art. 15 – Right of access
You have the right to obtain from the Controller, confirmation as to whether or not your personal data are being processed, and where this is the case, access to the personal data and information regarding the processing.
Art. 16 – Right of rectification
You have the right to obtain from the Controller without undue delay, the rectification of inaccurate personal data. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, also by means of providing a supplementary statement.
Art. 17 – Right of erasure (right to be forgotten)
You have the right to obtain from the Controller, the erasure of your personal data without undue delay and the Controller is obliged to cancel the personal data without undue delay.
Art. 18 – Right to restriction of processing
You have the right to obtain from the Controller, restriction of processing where one of the following applies: a) the accuracy of the personal data is contested by the data subject, for a period enabling the Controller to verify the accuracy of the personal data; b) the processing is unlawful, and the data subject opposes the erasure of the personal data and requests the restriction of their use instead; c) the Controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims; d) the data subject has objected to processing pursuant to Art. 21, paragraph 1, pending the verification whether the legitimate grounds of the controller override those of the data subject.
Art. 20 – Right to data portability
You have the right to receive data in structured, commonly used and machine-readable format automatized devices, and have the right to transmit such data to another Controller without hindrance from the Controller to which the data has been given. In exercising your rights regarding data portability, you are entitled to have the data transmitted directly from one Controller to the other, where technically feasible.
Art. 21 – Right to object
You have the right to object at any time to the processing of your personal data on grounds relating to your personal situation, based on Art. 6, paragraph 1, letters e) or f), including profiling based on those provisions. If you provided your consent to one or more specific objectives, you have the right to revoke that consent any time.
Art. 22 – Right to automated decision making, including profiling
You have the right not to be subjected to a decision based solely on automated processing including profiling, which produces legal effects concerning yourself or similarly affecting you.