Privacy Statement Contacts - SISMA

Privacy Statement Contacts

 

About us and what we do with your personal data

Sisma S.p.A., with registered office at Via Industria 1, (36013) Piovene Rocchette (VI), henceforth Data Controller, protects the confidentiality of your personal data and guarantees the necessary protection from any event that may cause them to be at risk of breach.

To this end, the Data Controller implements policies and practices regarding the collection and use of personal data and the exercise of the rights recognised by the applicable legislation. The Data Controller is responsible for updating the policies and practices adopted for the protection of personal data whenever necessary and in any case in the event of regulatory and organisational changes that could affect the processing of your personal data.

The Data Controller has appointed a Data Protection Officer (DPO) who you can contact if you have questions about the policies and practices adopted: dpo@sisma.com

 

How does the Data Controller collect and process your data?

The Data Controller collects and/or receives information about you, such as: IP address, personal identification data (such as name, surname, address, email, telephone, company) released while browsing the website www.sisma.com. They are used by the Data Controller to follow up on the management of the site and to follow up on your request to receive information. The communication of your personal data takes place mainly towards third parties and/or recipients whose activity is necessary for the performance of the activities related to the aforementioned purposes (for example: IT consultants), and also to meet certain legal obligations. Any communication that does not comply with said purposes will be subject to your consent in advance.

Your personal data will not be disseminated or disclosed to undetermined parties in any way.

 

The Data Controller does not transfer your personal data abroad. Your personal data will not be disseminated or disclosed in any way to undetermined or unidentifiable parties, not even as third parties.

 

What happens if you do not provide your data?

The personal data concerning you and identifying you are necessary in order to fulfil the request submitted by you through the “contacts” section and if not provided will make it impossible for the Data Controller to fulfil your requests.

How and for how long are your data stored?

The processing of your data takes place through both electronic and manual means and tools made available to the parties acting under the authority of the Data Controller and who have been authorised and trained for the purpose.

Personal data are stored, if necessary in electronic archives protected by effective and adequate security measures to counteract the risks of breach considered by the Data Controller. For the time necessary for the fulfilment of the information requests and the sending of communications of this exclusive nature that the Data Controller makes following your request and in any case for a period not exceeding  a maximum of 2 years, except in cases in which events that involve the intervention of the competent Authorities, also in collaboration with the third parties/recipients who are responsible for the IT security activity of the Data Controller, to carry out any investigations into the causes that led to the event. 

What are your rights?

In accordance with the time limits established for the processing of personal data concerning you, the rights that are recognised allow you to always have control over your data. Your rights are those of:

  • access;
  • rectification;
  • erasure;
  • restriction of processing;
  • objection to processing;
  •  

Your rights are guaranteed without any specific duties or formalities needed to request their exercise which is essentially free of charge.

 You have the right:

  • to obtain a copy, also in electronic format, of the data for which you have requested access. If you need to request additional copies, the Data Controller may charge you a reasonable fee;
  • to obtain the erasure of the same or the restriction of processing or also the updating and rectification of your personal data and at your request, that third parties/recipients should comply with this request in the event they receive your data, unless there are legitimate reasons that override those that led to your request (e.g. environmental investigations or reduction of a risk determined by an emergency managed for them through the Data Controller);
  • to obtain any useful communication regarding the activities carried out following the exercise of your rights without delay and in any case, within one month of your request, unless extended and justified, for up to two months, which must be duly communicated to you.
  • For any further information and in any case to send your request, you must contact the Data Controller at privacy@sisma.com.

How can you lodge a complaint?

Without prejudice to any other administrative or judicial action, you can lodge a complaint with the competent supervisory authority, i.e. the authority that carries out its duties and exercises its powers in Italy, where you have your habitual residence or work, or if not in Italy, in the Member State where the breach of Regulation (EU) 2016/679 occurred.

Any update of this privacy statement will be communicated to you promptly and by appropriate means and will also be communicated to you if the Data Controller continues to process your data for purposes other than those referred to in this privacy statement before proceeding and in time to give your consent if necessary.