INFORMATION ABOUT THE NEWSLETTER
ART. 13 GDPR (EU REGULATION 2016/679)
Pursuant to article 13 of EU Regulation 2016/679 (hereafter also “GDPR”), with this document, Astrel Group s.r.l., (registered premises: Via Isonzo, 21/E – 34070, Mossa, Province of Gorizia; Italian fiscal ID code and VAT number: 00187070313), (hereafter also “the Company”), in its capacity as Data Controller – as defined and regulated by the aforementioned GDPR – hereby provides you with the following information regarding the processing of your data for the purposes indicated in this notice.
1. DATA CATEGORY
This document concerns the processing of the personal data (hereafter also “Data”) that you provide by using the “forms” featured on this website (given name and surname, email address etc.), or that are collected by the Company during your browsing session (IP address, content clicked on, web pages visited etc.).
2. PURPOSES OF THE PROCESSING AND LEGAL BASIS
The Data shall be processed for the following purposes:
a. To enable the distribution of newsletters and other information material to keep you informed about our services and products.
The processing of the Data for the purposes listed at point a) is optional, and depends on you providing consent. In the event you decline to provide the data in question, it will not be possible to keep you informed of all of the sales initiatives offered by the Company.
In the event of a dispute, it may be necessary to process your data on the basis of the Company’s legitimate interests. The Company is committed to safeguarding its interests and rights.
3. METHODS OF PROCESSING AND PERIOD OF STORAGE
Personal data shall be processed in a proper, licit and lawful manner; all workers entrusted by the Company with the processing of personal data shall adopt appropriate computerised and physical tools to ensure the security and confidentially of these data, which furthermore shall not be disclosed. Specifically, the communications described at point 2) shall be conducted via email.
In these circumstances, the data are processed using the platform and tools provided by the “MailUp” service. For the MailUp terms and conditions, click here
The Data shall be stored for as long as is required to achieve the purposes for which they are processed, or otherwise within the terms set out by the law, EU regulations, secondary legislation and any other regulations by which the Company must abide (e.g. accounting and tax regulations).
It is understood that the data held for processing, and the option of erasing them in the event they are no longer required for the stated purposes, shall be assessed periodically, on an annual basis. Ultimately, the Company undertakes to use your data for a period that is appropriate for the level and duration of interest you have expressed.
4. CONTEXT OF DISCLOSURE OR TRANSFER OF DATA
The Company may communicate the Data, exclusively for the purposes stated, to nominated third parties and, when required, to the competent legal authorities.
The data may be transferred outside of Italy, to companies with premises either within or outside the European Union, insofar as to do so is conducive to achieving the purposes set out at point 2, above.
The Controller undertakes to ensure that, in such a circumstance, the data would be treated with all due confidentiality, where necessary entering into agreements to ensure an adequate level of security and/or that adopt the standard contract provisions set out by the European Commission.
5. RIGHTS OF THE DATA SUBJECT
Please note that as the Data Subject, you have a number of rights that are recognised by Law. These are set out in articles 15, 16, 17, 18, 20 and 21 of the GDPR and include the right to obtain confirmation as to whether personal data concerning you are being processed, the right to have any data processed in an unlawful manner erased, the right to object – for legitimate reasons – to the use of your data, etc. You can exercise these rights by making a request to the Controller in writing using the address listed at the foot of this page, or by email using the email address email@example.com.
The Company is not entitled to charge a fee for fulfilling such a request, except in the event of manifestly unfounded or excessive requests, or – in particular – in the event of an unreasonable number of repeat requests.
Furthermore, in the event the Data Subjects believes that his or her data has been processed in a manner that contravenes the GDPR, he or she is entitled to file a claim with a supervisory body (in Italy, the Data Protection Authority or Garante per la protezione dei Dati Personali). Such action does not preclude or prejudice any other form of administrative or legal recourse. For more information, visit the website www.garanteprivacy.it