Pursuant to Arts. 13 and 14 of Regulation 2016/679/UE (hereinafter referred to as “GDPR”) INEO SRL, with registered office in Rome, at via Paolo di Dono 149, 00142, in the person of the pro tempore legal representative dott. Salvatore Mafodda, available at the e-mail address privacy@ineo.it, as “Data Controller” (hereinafter referred to as “Data Controller”) he informs you that in the provision of services and in the context of legal relations relating to his activity, he recognises and respects the right to the protection of personal data, as a fundamental right of the person.
In the current regulatory environment, the ability to maintain control of your information becomes essential and requires a constant and conscious effort to ensure adequate levels of protection of personal data.
È In this regard, it is useful to remember that Regulation (EU) 679/2016 (General Data Protection Regulation - GDPR) defines «personal data» as any information concerning an identified or identifiable natural person («data subject»).
By «processing», according to the GDPR itself, we mean, instead, any operation or set of operations, carried out with or without the aid of automated processes and applied to personal data or sets of personal data, such as the collection, registration, organisation, structuring, preservation, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of making available, comparison or interconnection, limitation, cancellation or destruction.
The following information describes the methods and purposes of the processing of personal data of users who access and use the websites www.ineo.it (hereinafter briefly “Site”).
The information is provided only for the Site and not even for third-party websites that may be accessible through hyperlinks (links) contained in the Site.
Data controller, pursuant to art. 4 of the GDPR, is INEO SRL, based in Rome, at Via Paolo di Dono 149, 00142, in the person of the pro tempore legal representative dott. Salvatore Mafodda, e-mail address privacy@ineo.it tel. 06.95222271
The Personal Data Protection Officer (DPO) of INEO can be contacted at the following e-mail address dpo@ineo.it by writing to: Data Protection Officer - Ineo S.r.l., via Paolo di Dono 149, 00142 - Rome.
To use the services offered through the Site, the user may be required to provide the personal data necessary to ensure the use.
in particular, for the purpose of filling in the forms on the Site, the provision of data marked with an asterisk is necessary for the management and feedback to communications forwarded by the user.
In any case, please note that the user is free to provide the requested data, in the sense that he is not legally obliged to provide them: failure to provide the data indicated as necessary, however, makes it impossible for the Data Controller to render the requested service.
The processing operations are carried out with reference and limited to the personal data necessary for the use of the Site and its functionalities.
The types of data subject to processing shall include, in particular:
Your data are collected and recorded lawfully and correctly for the purposes indicated above in compliance with the principles and requirements of art. 5 c 1 of the GDPR.
Personal data will be processed by INEO for the duration of the assignment and also subsequently to assert or protect their rights or for administrative purposes and/ or to implement obligations arising from the regulatory and regulatory framework pro applicable time limits and in compliance with the specific legal obligations on data retention.
Specific security measures shall be taken to minimise the risk of destruction or loss, including accidental loss, of the data subject to processing, unauthorised access, processing not allowed or not in compliance with the purposes indicated in this statement.In compliance with current legislation on the protection of personal data of the Data Subject will be stored, collected and processed by the Company for the following purposes:
The legal bases of the processing for the purposes a) and b) indicated above are Articles 6.1.b. and 6.1.c) of the Regulation. The provision of Data for the aforementioned purposes is optional, but any failure to provide the Data and the refusal to provide them would make it impossible for the Company to perform and/ or conclude the contract and provide the services required by the same.The legal basis for the processing of personal data for the purpose b) is art. 6.1.a) of the GDPR as the processing is based on consent; please note that the Data Controller may collect a single consent for the marketing purposes described here.
The provision of consent to the use of data for marketing purposes is optional and, if the data subject wishes to object to the processing of data for marketing purposes carried out by the means indicated herein, as well as revoke the consent given, may at any time do so without any consequence (except for the fact that you will no longer receive marketing communications) by following the indications in the section of the “Rights of the Data Subject” of this Policy.
Finally, please note that for the processing carried out for the purpose of sending direct advertising material or its direct sale or for the performance of its own market research or commercial communications in relation to products or services similar to those used by the Customer, The Data Controller may use e-mail addresses or personal data in accordance with and to the extent permitted by art. 130, paragraph 4 of the Code and the general provisions of the Guarantor Authority for the protection of personal data, even in the absence of explicit consent.The legal basis for the processing of data for this purpose is art. 6, paragraph 1, lett. f) of the GDPR, without prejudice to the possibility of opposing such processing at any time, following the indications present in the section of the “Rights of the Data Subject” of this Policy.
The data subject to processing will be kept for a period of time not exceeding that necessary to achieve the purposes for which they were collected or subsequently processed and, in particular:
The Data Controller will, after the expiration of the retention periods in accordance with the criteria indicated, take measures to delete or anonymize the data that should not be kept for specific regulatory obligations.
Within the limits of what is provided for each specific feature and/or for each specific service, the personal data processed by the Data Controller will not be disseminated, that is, it will not be disclosed to indeterminate subjects, in any possible form, including making them available or simply consulting them.
Instead, they may be made accessible to workers and/or collaborators who work for and under the responsibility of the Data Controller, in their capacity as designated and/or authorised to process personal data and/or System Administrators, and/or to third-party companies or other entities that carry out outsourcing activities on behalf of the Data Controller, to this end appointed External Data Processors pursuant to art. 28 GDPR.
The updated list of subjects appointed Data Processors pursuant to art. 28 GDPR may be requested from the Data Controller.
In no case will personal data be disclosed, disseminated, transferred or otherwise transferred to third parties for illicit purposes and, in any case, without making appropriate information to the data subjects and obtaining their consent, where required by law.
This is without prejudice to any communication of data at the request of the judicial or public security authorities, in the manner and in the cases provided for by law.
In no case will personal data be disclosed, disseminated, transferred or otherwise transferred to third parties for illicit purposes and, in any case, without making appropriate information to the data subjects and obtaining their consent, where required by law. This is without prejudice to any communication of data at the request of the judicial or public security authorities, in the manner and in the cases provided for by law. Personal data will not be transferred abroad, to countries or international organizations not belonging to the European Union that do not guarantee an adequate level of protection, recognized, pursuant to art. 45 GDPR, based on an adequacy decision of the EU Commission. In the event that it is necessary for the provision of the services of the Site, the transfer of personal data to non-EU countries or international organizations, for which the Commission has not taken any adequacy decision pursuant to art. 45 GDPR, will take place only in the presence of adequate guarantees provided by the country or the recipient organization, pursuant to art. 46 GDPR and provided that the data subjects have actionable rights and effective means of redress. In the absence of a decision of adequacy of the Commission, pursuant to art. 45 GDPR, or adequate guarantees, pursuant to art. 46 GDPR, including binding corporate rules, the cross-border transfer will take place only if one of the conditions indicated in art. 49 GDPR.
The data subject is granted the right to access his or her personal data, to request its rectification, updating and cancellation or limitation, if incomplete, erroneous or collected in violation of the law, as well as to object to processing for legitimate reasons or to obtain its portability.
The interested party, in particular, pursuant to Articles. 15-22 of Regulation (EU) 679/2016, has the right to obtain confirmation of the existence or not of personal data concerning him, even if not yet recorded, and their communication in an intelligible form.
You also have the right to obtain information on:
The data subject has the right to obtain:
The interested party has the right to object, in whole or in part:
Without prejudice to any other administrative or judicial appeal, the interested party has the right to lodge a complaint and / or report to a supervisory authority, particularly in the Member State in which he usually resides, works or in the place where the alleged violation has occurred.
The above rights are exercised with a request addressed to the Data Controller, directly or through an authorized person, orally or by sending an e-mail message to the e-mail privacy@ineo.it.
The interested party also has the right to contact the Data Protection Officer (D.P.O.) in charge, at the following e-mail address dpo@ineo.it.
The request is formulated freely and without formalities by the interested party, who has the right to receive appropriate feedback within a reasonable time, depending on the circumstances of the case.
The interested party may make use, for the exercise of his rights, of non-profit bodies, organizations or associations, whose statutory objectives are of public interest and which are active in the field of protection of the rights and freedoms of the interested parties with regard to the protection of personal data, giving, for this purpose, a suitable mandate. The interested party can also be assisted by a trusted person.
To find out about your rights, lodge a complaint and always be updated on the legislation on the protection of individuals with regard to the processing of personal data, the interested party can contact the Guarantor Authority for the protection of personal data, by consulting the website at address http://www.garanteprivacy.it/
The Owner reserves the right to modify and / or update this Information.
Best regards
The Data Controller
INEO S.R.L.
Information updated in December 2023
Via Paolo di Dono, 149 Roma
Our staffs always ready to respond to your needs.
Call us at 0695222271, write us at info@ineo.it ore use our dedicated page.
@ Ineo S.r.l.
P. IVA 11010851001
