Privacy policy

In accordance with Article 13 of Legislative Decree no. 196 of 30 June 2003 (“Personal Data Protection Code”), we would like to inform you that Fidia S.p.A. shall, in compliance with this legislation, process personal data provided by you, or acquired in the course of existing or future contractual relationships, with respect to your Company and to natural persons acting on its behalf, by the means and for the purposes described below:

1. Scope of the data processed

The data processed includes: personal, accounting and taxation data, telephone and fax numbers, email addresses, bank account details, data relating to a Company’s structure and organisation, data concerning the proper compliance with requirements, sales statistics, other Company data for the purposes of complying with the obligations deriving from existing or future contracts and/or as required by law, as well as for statistical, commercial, marketing, promotional and credit protection purposes.
The data processed also includes information relating to your own professional experience in the form of a curriculum vitae.

2. Purposes of data processing

2.1 Basic purposes

Complying with the obligations deriving from relations for the supply of goods and/or services between the parties both during the contract and in the pre-contract phase, with particular reference to their execution and to the payment of the agreed consideration.
Complying with the obligations of European Union legislation, as well as the laws and regulations in particular relating to accounting, taxation, health and public order and safety.
Complying with the procedures adopted for the purposes of ISO 9001 certification, including periodically surveying the degree of customer satisfaction.
Pursuing rights, also of third parties, in a court of law, as well as in arbitration and administrative proceedings.

2.2 Commercial purposes

Sending communications for the purpose of monitoring client relations. Planning and executing operational marketing activities.
Providing information about commercial and promotional activities, including goods/services other than those for which the supply relationship was established.

2.3 Recruitment purposes

Carrying out research, selection and evaluation of personnel.

3. Data processing methods

The above data, collected in whatsoever form, and whether or not from the data subject, shall be processed in both paper format and by electronic, digital or computerized means by organisational structures that are closely correlated with the obligations and purposes described in the preceding point.
Data may also be processed outside Italy and/or outside the European Union.
In all cases, such data shall be stored with the aid of the necessary and appropriate technical and organisational measures in order to minimize any risk of destruction or loss of the data, as well as unauthorized access or non-permitted processing. The measures are described in detail in the "Policy Document on Privacy " adopted in accordance with the legislation and structured on the basis of Company requirements.
Data shall be retained for a period not exceeding that necessary for complying with the obligations and pursuing the purposes described in the preceding point.

4. Data communication

Personal data, collected for the purposes indicated in point 2, may be communicated, for reasons of respective professional areas of competence, to the following categories of entity: natural and/or legal persons, public and private entities, taxation offices, bodies responsible for public order and safety, banking institutions, companies specialised in the management of payments, law firms and tax consultants, public authorities and administrations in order to comply with legal requirements, finance companies and transport companies.
The data may be brought to the knowledge, as persons in charge of data processing, of employees and/or collaborators owing to their respective duties and area of competence, as well as to consultants and collaborators in their capacity as external Data Supervisors, who shall be required by us to process the data in compliance with the provisions of Legislative Decree 196/2003 pursuant to Article 25, Annex B.

5. Data Controller

The Data Controller is Fidia S.p.A., in the person of its Chairman and Managing Director: Mr Giuseppe Morfino.

6. Data Supervisor

The Data Supervisor who can be contacted by the data subject, in the event of the exercising of the rights described in Article 7, is Mr Giuseppe Morfino, domiciled at Fidia S.p.A., Corso Lombardia 11, 10099 San Mauro (Turin), Italy.

7. Providing data and the consequences of a refusal to do so

7.1 Purpose outlined at point 2.1

The provision of data is necessary for correctly establishing and continuing the relationship once established. Any refusal would not allow, in whole or in part, the execution of the contractual services agreed and, in particular, could make it impossible for Fidia to generate purchase orders, perform the services requested and create invoices.
In any event, in accordance with Article 24 of Legislative Decree no. 196 of 30 June 2003, the consent of the data subject is not required for the processing of personal data sourced from public registers (such as those of a registry office, taxation office, company register, etc.), to comply with legal requirements or for data originating from a contract to which the data subject is a party.

7.2 Purpose outlined at point 2.2

The provision of data is optional for the commercial and marketing purposes described in point 2.2, for which we shall take care, with your co-operation, to obtain express consent where necessary.

7.3 Purpose outlined at point 2.3

The provision of data for the purposes of selecting personnel as described in point 2.3 is optional and no express consent is required if the data subject sends their own curriculum vitae directly.

8. Rights of the data subject

The data subject shall be guaranteed the rights provided by Article 7 of Legislative Decree no. 196 of 30 June 2003 (Right to access personal data and other rights) and subsequent amendments and supplements:

1. The data subject shall have the right to obtain confirmation as to whether or not personal data concerning him/her exist, even if not already recorded, and to have such data communicated in an intelligible form.

2. The data subject shall have the right to be informed of:

the source of the personal data;
the purposes and methods of data processing;
the logic applied in the case of data processing using electronic means;
the essential identification details of the Data Controller, the Data Supervisors and the designated representative as per Article 5, paragraph 2;
the entities or categories of entity to whom or to which personal data may be communicated or that may come to have knowledge of such data in their capacity as designated representative in the national territory of Italy, as Data Supervisors or as Data Processors.

3. The data subject shall have the right to obtain:

the updating, rectification or, where desired, the supplementation of the data;
the deletion, anonymization or blocking of data that has been processed unlawfully, including data whose retention is unnecessary for the purposes for which it was collected and subsequently processed;
certification that the operations as per letters a) and b) have been brought to the knowledge, also as regards their contents, of those entities to whom or to which the data was communicated or distributed, except for cases in which such compliance is impossible or would involve the use of means that are clearly disproportionate with respect to the right to be protected.

4. The data subject shall have the right to object, in whole or in part:

for legitimate reasons to the processing of personal data concerning him/her, even if relevant to the purpose for which it was collected;
to the processing of personal data concerning him/her for the purposes of sending advertising material or direct marketing, for market research or for commercial communications.