The data controller, i.e. the subject that will materially process the data, is Tiburtini S.r.l., based in Rome, Via delle Case Rosse 23 (hereinafter, for the sake of brevity, referred to as “Tiburtini”).
This statement is updated periodically, in order to adapt it to the regulations in force and to the new methods for collecting and processing data.
What are the data processed?
The personal data that are collected are the identification data such as personal details, telephone number(s) and e-mail address(es).
What are the purposes of the processing?
The processing of personal data will take place for the following purposes:
- replying the user’s requests
- sending information material on the activities of Tiburtini
Why is this treatment legitimate?
The legal legitimacy of the processing is identifiable in the consent of the interested party.
What are the methods of processing?
Personal data will be processed manually and electronically. They will be stored in an electronic database designed to fulfill the legal obligations and purposes indicated above.
In the processing, appropriate security measures will be used, in order to minimize the risk of destruction, loss, unauthorized access or processing in a way that does not comply with the purposes for which the data were collected.
How long are the data stored?
The data will be stored by the data controller for 2 years.
Are the data transmitted abroad?
The data will not be transmitted abroad.
To whom will the data be disclosed?
Personal data may be disclosed, for the purposes indicated above, only to the subjects of which Tiburtini avails itself for the provision of the requested services, which, in carrying out the processing activities, will abide by the instructions provided by the data controller. The data will also be disclosed to those who work within the company and are therefore authorized to access them.
What are my rights?
The GDPR, UE General Data Protection Regulation (2016/679) provides that the data subject may exercise the right to access the data, request their correction, deletion, limitation of processing or to oppose processing. You can also contact the Supervisory Authority for the Protection of Personal Data (Data Protection Authority). Requests to exercise the rights can be addressed to the attention of the data controller by e-mail to firstname.lastname@example.org or via registered mail to Via Case Rosse 23, 00131 Rome.