The NDESIGN s.r.l. (hereinafter referred to as NDESIGN) with headquarters in viale Dei Flavi No. 15, 02100 Rieti (RI) - Italy, V.A.T./ F.C.: IT01165660570, registered register CCIAA Rieti at no. IT01165660570 on 14/06/2017, REA: RI-73023, soc. chap. € 10,000.00 fully paid, as legal entity Data Controller, informs you, pursuant to artt 13 and following Reg. EU n. 2016/679, that your data will be processed in the manner and for the following purposes:I. OBJECT OF TREATMENT
The Owner treats personal identification data (for example, first name, last name, fiscal code, address, telephone, email - later, "personal data" or even "data") that you have communicated when requesting information and / or estimates or for the conclusion of contracts for the services of the owner or for the possible selection of Curriculum Vitae spontaneously sent regarding suitable candidates for collaborations, working relations, stages.
Moreover, the NDESIGN periodically performs back-up copies of website owned by third party figures; such copies are conequentially and strumentally related to the development workflow, and are stored on NAS QNAP with 256-bit AES cryptography, located inside our business offices in rooms unaccessible to extra-office personnel, in order to improve our clients business continuity. During these back-up copies operations, no one, not from NDESIGN nor from outside, reads or visualizes any data.
II. PURPOSE AND LEGAL BASIS OF THE TREATMENT
Your data will be used for the following Service Purposes that do not require, your express consent:
The submission of data for the above purposes is required in order to use the data controller's services and it finds its legal basis of treatment in the management of contractual and precontractual relations, or in the management of legal obligations.
III. PROCESSING METHOD
The processing of your personal data that you communicated to us when requesting information and / or estimations or the finalization of contracts, is carried out by means of the following operations: collection, registration, organization, storage, consultation, use, extraction, comparison, cancellation and destruction of data.
The data processing occurring during the execution of security back-up copies of websites owned by clients of the Data Controller, consist of a simple and mere conservation of data, which - in case of problems - will be restored online. Therefore, no subjects, not internal nor external relatively to the Data Controller, will ever visualize any information, since this is not useful nor necessary to the fullfilment of the back-up service.
In relation to the aforementioned purposes, the data you provide by telephone and / or telematically by completing the form prepared in the domain www.ndesign.it, may be processed either on paper or electronic and / or automated.
IV. DATA STORAGE TIME
The Data Controller will process the personal data collected during contracts stipulation or the beginning of service relations with clients, for the time necessary to fulfill the aforementioned purposes and, in any case, for no more than the conservation periods of accounting records as established by specific laws.
Personal data collected and processed for estimates elaborations, offers or commercial proposals which did not finalize in a contractual relation or service relation with the interested party, will be kept for a period of time no longer than 12 months since the sending of the latest proposal or revision of the same.
Security back-up copies performed on websites on behalf of clients, will be kept for a period of time no longer than 12 months.
Curriculum Vitae will be kept for the strictly necessary time to complete selection procedures. CV received during periods of time when no selection procedure is open, will not be kept, i.e. they will be deleted on arrival.
V. DATA ACCESS
Your data may be made accessible for the purposes referred to in art. II:
VI. COMMUNICATION OF DATA AND DATA TRANSFER
Without the need for express consent (pursuant to Article 24, letter a), b), d) Condice Privacy and art. 6 lett. b) and c) GDPR), the Data Controller may communicate your data for the purposes referred to in art. II to Supervisory Bodies (such as ISVASS), judicial authorities, as well as to those subjects to whom the communication is obligatory by law for the completion of the said purposes. These subjects will process the data in their capacity as independent data controllers.
Your information will not be disseminated.
The www.ndesign.it domain contains hypertext links that do not constitute communication to other domains. NDESIGN is not responsible for any privacy violations carried out against you by such external sites.
Your personal data are stored on electronic support at the NDESIGN headquarters located in Viale Dei Flavi n. 15, Rieti, as well as at hosting server providers located on European territory (Aruba S.p.A.). Personal data will not be tranferred to extra-UE countries.
VII. RIGHTS OF THE INTERESTED PARTY
As an interested party, we inform you that you have the rights referred to in art. 7 of the Privacy Code and art. 15 GDPR and, precisely, the rights to obtain:
VIII. RULES OF EXERCISE OF RIGHTS
To exercise your rights by sending:
If you have questions or simply wish to have more information on the processing of your personal data, you can send an e-mail to firstname.lastname@example.org.
Before NDESIGN can provide or modify any information, you may need to verify your identity and answer a few questions. An answer will be provided as soon as possible and, in any case, no later than 30 days from receipt.
IX. HOLDER and RESPONSIBLE
The Data Controller is NDESIGN s.r.l. with registered and operational office in viale Dei Flavi n. 15, 02100 Rieti (RI), Italy - V.A.T. / F.C.: IT01165660570.
The updated list of data processors is kept at the registered office of the Data Controller.