CONTACT US – Privacy notice as per article 13 Reg. EU 2016/679 (GDPR) – Policy on the processing of personal data collected from the data subject

 

In compliance with the provisions of Reg. EU 2016/679 (European Regulation on the protection of personal data – GDPR) we provide you with the required information regarding the processing of your personal data. This privacy policy is provided pursuant to art. 13 of GDPR.

 

  1. DATA CONTROLLER

Pursuant to art. 4 and 24 of GDPR, the Data Controller is LB Research Srl, Via Lombardia, 81 – 22063 Cantù (CO), Italy, in the person of the legal representative. Phone: +39 031 734 908, e-mail contact privacy@lbresearch.it

 

  1. DATA PROTECTION OFFICER (DPO)

Pursuant to art. 37 – 39 of GDPR, the Data Controller has appointed the Data Protection Officer (DPO), who can be contacted at: dpo@lbresearch.it

 

  1. PURPOSES OF THE PROCESSING

The personal data will be processed for the purpose of completing the data collection form in the contact area.

 

  1. LEGAL BASES OF THE PROCESSING

Data will be processed in compliance with the law pursuant to art. 6 of GDPR: based on the performance of a contract or the implementation of pre-contractual measures taken at the data subject’s request.

 

  1. RECIPIENTS OR CATEGORIES OF DATA RECIPIENTS

The personal data provided will be disclosed to recipients that will process the data as Processors (art. 28 of GDPR) and/or as natural persons acting under the authority of the Data Controller and the Data Processor (art. 29 of GDPR), for the above-indicated purpose and to third parties. More precisely, the data will be disclosed to:

  • parties that provide services identified and authorized, located in Italy;
  • subjects that provide services for the IT and communication network management (e-mail included), located in Italy;
  • firms or companies with support and consultancy relationships, located in Italy;
  • competent authorities for compliance with legal obligations and/or provisions of public bodies, upon request;
  • In case of administrative accounting purposes, the data may be transmitted to commercial information companies for the assessment of solvency and payment habits and/or to subjects for credit recovery purposes, located in Italy.

The parties belonging to the aforesaid categories perform the function of Data Processor or operate in complete autonomy as separate Data Controllers.

The list of Data Processors is constantly updated and available by writing to the email address privacy@lbresearch.it

 

  1. DATA TRANSFER TO A THIRD COUNTRY AND/OR AN INTERNATIONAL ORGANISATION AND GUARANTEES

The personal data will not be transferred to countries belonging to the European Union and to countries outside the EU. The website is based in Italy.

 

  1. DATA RETENTION PERIOD OR CRITERIA FOR CALCULATING THE PERIOD

The process will be carried out by authorized subjects, with methods and tools aimed to guarantee maximum security and confidentiality. In compliance with the provisions of art. 5 paragraph 1 letter e) of GDPR, the collected personal data will be stored in a form that allows to identify the data subjects for a period of time not exceeding the achievement of the purposes for which the personal data are processed. Specifically, the personal data will be processed for a time period equal to the minimum necessary, as indicated in Recital 39 of GDPR, that is until the termination of existing contractual and pre-contractual relationships, without prejudice to a further retention period that may be imposed by law as also required by Recital 65 of GDPR. For contacts, the data will be kept for a maximum of 1 year. The timing is determined on the basis of the criteria that the interested party can have information about by writing to dpo@lbresearch.it

 

  1. RIGHTS OF THE DATA SUBJECTS

The data subject may assert the rights as expressed in art. 15 et seq. of GDPR, by contacting the Data Controller or the DPO at the e-mail address dpo@lbresearch.it. You have the right, at any time, to request access to personal data (art. 15), rectification (art. 16), erasure (art. 17), restriction of processing (art. 18). The Data Controller communicates (art. 19) any rectification, erasure or limitation carried out for the processing to each of the recipients to whom the personal data have been transmitted. Upon request, the Data Controller informs the data subject about these recipients. You have the right to data portability (art. 20) and in this case they will be provided to you in a structured format, commonly used and readable, by an automatic device.

There is no automated decision making. According to art. 77 of GDPR, in case the data subject believes that the processing of personal data carried out by the Data Controller is in violation of the provisions of the GDPR, you have the right to lodge a complaint with the Supervisory Authority, in particular in the Member State where you usually reside or work or in the place where the alleged violation of the regulation has occurred. You can lodge a complaint with the Garante Privacy (https://www.garanteprivacy.it/), or take the appropriate judicial offices (the latter also for the legal entity contracting party and not just for natural persons).

 

  1. PROVISION OF DATA

The disclosure of personal data is not a legal obligation. Failure to provide personal data will make impossible to use the Data Controller services.

 

  1. CHANGES TO THE PRIVACY POLICY

The Data Controller reserves the right to modify, update, add or remove parts of this privacy notice. In order to facilitate this verification, the notice will contain an indication of the update date of the information.

 

Updated on: 7 January 2022