in accordance with articles 13-14 of the European Regulation no. 2016/679 of 27 April 2016 (“GDPR”)
Moniga Porto Nautica s.r.l. (Tax Code and VAT No 02541870982), with registered office in Via Porto, 16 – 25080 Moniga del Garda (BS), on behalf of di Laura Fadabini, as Data Controller of the personal data (“Moniga Porto” o “Titolare”), informs you that, pursuant to articles 13-14 of the European Regulation no. 2016/679 of 27 April 2016 (“GDPR“), your data will be processed with the methods and for the purposes below.
1. Purpose of the processing
Moniga Porto will process only the data strictly necessary to carry out its professional assignment – including the drawing up of legal documents, if necessary – and to fulfil consequent legal, fiscal and contractual obligations, including banking and economic-financial data.
2. Processing method
Your data may be processed both in paper form and with computer and data transmission methods (including the use of portable devices, magnetic, electronic or digital transmission media). The processing operations are those indicated by the GDPR, specifically: collection, registration, organisation, retention, consultation, processing, amendment, selection, extraction, comparison, use, interconnection, blockage, communication, deletion and destruction of the data. In order to ensure the traceability of all the data processing operations, clearly defined archiving and search procedures have been adopted. Data processed by computer and paper methods are protected by suitable security measures.
3. Subjects that process the data
Your data may be processed by our employees and internal collaborators, who will be appointed as authorised subjects and provided with specific and detailed instructions so that the data are processed in full compliance with the GDPR and the current regulations.
Without prejudice to the communications and dissemination conducted in execution of legal obligations, the data may be communicated – for reasons strictly connected to the contractual relations undertaken with you – to the following categories of third-party subjects:
- professionals and consultants who deliver services functional to the above indicated purposes;
- credit and insurance institutes that deliver services functional to the above indicated purposes;
- subjects that process the data in execution of specific legal obligations;
- legal or administrative authorities, for the fulfilment of legal obligations;
- transport companies;
- administrative or public entities;
- supervisory bodies (such as IVASS, the Institute for the Supervision of Insurance);
- subjects to which the communication is mandatory under the law for carrying out the aforementioned purposes.
Your data may be made accessible to subjects outside the EU only if required for the execution of the professional assignment and respecting appropriate security measures.
4. Limitation on the retention of the data
Your data, subject to processing for the above indicated purposes, shall be retained for the period strictly necessary for the performance of the professional assignment and, thereafter, for the time in which the Data Controller is subject to retention obligations for tax purposes or for other purposes, laid down by laws or regulations and, in any case, for a maximum period of ten years, after which they shall be deleted.
5. Consequences of a failure to communicate the data
Any refusal to provide the data required to fulfil the aforementioned requirements or subsequent processing shall make it impossible for Moniga Porto to carry out the professional assignment, as well as the impossibility of fulfilling the connected regulatory obligations (for example, fulfilments linked to the keeping of accounting and tax records), with the consequent failure to complete any contractual relationship.
6. Rights of the person concerned
As the person concerned, you are granted the rights referred to in articles 15-21 GDPR to obtain:
i – confirmation of the existence or otherwise of data concerning you, even if not yet registered, and their communication in intelligible form;
ii – access to your data to check the category of the data processed, the processing methods and the intended recipients to which the data are communicated;
iii – the correction or, when required, the supplementing of the data;
iv – the deletion, transformation into anonymous form or blockage of data processed in violation of the law, including those for which retention is not necessary with regard to the purposes for which the data is collected or subsequently processed;
v – the limitation on the data processing;
vi – opposition to the processing for valid reasons, including for direct marketing purposes;
vii – the portability of the data to another Data Controller;
viii – a complaint to the Supervisory Authority for the protection of personal data (www.garanteprivacy.it)
7. Methods of exercising the rights
The rights referred to in points i – vii indicated above may be exercised by sending:
- a recorded delivery letter to Moniga Porto Nautica S.r.l. at the registered office in via Porto, 16 – 25080 Moniga del Garda (BS) IT; or
- an email to the certified email address: firstname.lastname@example.org .
8. Data Controller, Data Manager (if appointed) and Data Processers
The Data Controller is Moniga Porto Nautica s.r.l. with registered/operational office in via Porto, 16 – 25080 Moniga del Garda (BS) – IT.
The updated list of data managers (if appointed) and data processors is kept at the Data Controller’s registered office.