Dear Data Subject,
we want to inform you that the “European Regulation 2016/679 on the protection of natural persons, with regard to the Processing of Personal Data and on the free movement of such data” (from now on “GDPR”) stipulates that natural persons, as their fundamental right, are to be protected with regard to the processing of personal data. Therefore, Alemanno & C. Srl International Freight Forwarders and Shipping Agency, in accordance with the article 13 of GDPR, provides you with the following information:
A.DATA CATEGORIES: Recorded data can include personal data such as your identification data, age and biographical data, contact details and accounting data.
B. DATA CONTROLLER: the Data Controller is Alemanno & C. Srl International Freight Forwarders and Shipping Agency, Via Roma, 31 – 57126 Livorno, VAT number 01040210492. You can reach us by phone at +39 0586 895 577 or by e-mail at email@example.com
C. SOURCE OF PERSONAL DATA: all personal data held by the Controller are collected directly from the Subject.
D. PURPOSE AND LEGAL BASIS FOR PROCESSING: All personal data held by the Controller are used to the following purposes:
- Purposes related to and necessary for the fulfillment of obligations under applicable laws.
- Purposes related to and necessary for the management of the contract (signed or in progress) and the fulfillment of its obligations: formation, management and extinction of contract and commercial relation; fulfillment of accounting and fiscal obligations, handling of disputes, service delivery, communication of your data to potential partners of the Controller to fulfill obligations related to the contract (signed or in progress
E. DATA RECPIENT: within the purposes related to the collection, your personal data might be disclosed to a number of partners, such as public and private authorities and institutions for the fulfillment of obligations under applicable laws, or for purposes related to and necessary for the management of the contract (signed or in progress) and the fulfillment of its obligations. In this last case the partners will include : collaborators, freelancers, insurance companies, insurance brokers, legal firms, sponsors, banks, transport companies among others.
F. DISCLOSURE OF PERSONAL DATA TO THIRD COUNTRIES: collected data might be subject to disclosure to third countries outside the European Union for the purposes above mentioned, in case of changes in European laws and regulations or if the third parties can grant satisfactory guarantees.
G. STORAGE PERIOD: collected data will be stored for a period no longer than the time required for the achievement of the purposes for which they were initially collected (“storage limitation principle” defined in art.5 of GDPR), or within legal time constraints. Data will be checked regularly, and data considered obsolete with regard to the purposes of its original collection will be immediately deleted.
H. DATA SUBJECT’S RIGHTS: the Data Subject has, in any case and at any time, the right to ask the Controller the portability of their data, as well as to access, rectify or erase their data or to change or withdraw its accessibility or processing. These and other rights are stated in the GDPR, and the Data Subject can assert them by communicating through any means with the Controller or addressing one of the supervisory authorities.
I.DATA DISCLOSURE OBLIGATION: Disclosing your personal data is compulsory for the above mentioned purposes, excluding the cases of optional disclosure related to secondary purposes. In these cases your rejection to disclose personal data will not hinder the correct provision of our services.
J. DATA PROCESSING METHODS: Personal data provided by the Data Subject will be processed in accordance with the above mentioned laws and regulations, and with regard to the privacy obligations implied by the Data Controller initiative. Data will be processed through the use of information technologies, paper documents and any other suitable support (e.g cloud storage services, other digital storage systems) with due regard to adequate technical and organizational security measures, as foreseen by GDPR.