Information pursuant to Article 14 of EU Regulation GDPR 2016/679

Data Subjects (ex. Art.4, p.1 of the GDPR) are hereby informed that the data are collected and processed by the identified Third Party and transferred to the Company for the purposes indicated below; such processing is carried out in compliance with the following general principles.

The Processing is carried out in compliance with the following general principles:

• all data are processed in a lawful, correct and transparent manner with regard to the data subject, in compliance with the general principles set out in Article 5 of the GDPR;
• specific security measures are implemented to prevent data loss, illicit or incorrect use and unauthorised access;
• Data Subjects may contact the Data Controller, identified as LATERLITE S.p.A., via Vittorio Veneto 30, 43046 Rubbiano di Solignano (PR), to exercise all and any of their rights as set out in Articles 15-22 of the GDPR (right of access, rectification, cancellation, limitation, portability, opposition), as well as to revoke prior consent or submit a complaint to the Supervisory Authority for the protection of personal data. Contact us: laterlite@laterlite.it
• The Data Controller has not appointed a Data Protection Officer as it does not carry out any data processing that falls under the descriptions set out in art. 37 GDPR 2016.

 

PURPOSE OF PROCESSING

The Data Controller uses the types of data received from the third party indicated above to send commercial information by distributing newsletters relating to the activities carried out by Laterlite SpA, and using the contact data submitted to the third party in question.

 

PURPOSE AND LEGAL BASIS OF THE PROCESSING

The data are processed for the purposes of providing information and other material relating to products/services, subject to consent, which the third party indicated above grants implicitly by submitting a request for information.

 

PROCESSING METHODS

Personal data are processed by means of the operations indicated in Art. 4 no. 2) GDPR, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. Personal data may be processed by means of hard copy, electronic and/or automated systems.

The personal data will be kept until such time as the data subject requests cancellation of the newsletter service, either as described at the end of the email received from the Company or by writing to the email address

 

SCOPE OF PROCESSING

The data are processed by suitably authorised and trained internal personnel, pursuant to Art. 29 of the GDPR. Data subjects may also request information regarding the scope of communication of personal data, obtaining precise indications on any external subjects who assigned to act as Data Processors or Autonomous Data Controllers.

The data are not disseminated or transferred to non-EU countries.

 

RIGHTS OF THE DATA SUBJECT (Articles 15-22 of the GDPR)

The data subject may exercise all and any of the following rights at any time:

• request confirmation of the existence or non-existence of their personal data.
• obtain information on the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated and, where possible, the retention period.
• obtain the correction and deletion of data.
• obtain the restriction of processing.
• obtain data portability, that is, receive them from a data controller, in a structured, commonly used and machine-readable format, and transmit them to another data controller without hindrance.
• oppose the processing at any time, even in the case of processing for direct marketing purposes.
• oppose an automated decision-making process relating to natural persons, including profiling.
• lodge a complaint with the Italian Data Protection Authority.