Dear Stakeholder,We wish to inform you that "European Regulation 2016/679 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data" (hereinafter "GDPR") provides for the protection of individuals and other parties with regard to the processing of personal information. Living Divani srl is therefore pleased to provide you with the following information as laid down in article 13 of the GDPR:
A. DATA CATEGORIES: The data being processed may include your personal data, such as identification data, personal data, contact data and accounting data
B. DATA CONTROLLER: The data controller is
Living Divani srl, via Trento n. 68- 20821 Meda (MB), P.IVA 00786120964
Please contact via e-mail the DPO firstname.lastname@example.org.
C. SOURCE OF PERSONAL DATA: The personal data held by the Data Controller is collected directly from the data subject.
D. DATA PROCESSING PURPOSES AND LEGAL BASIS: personal data is treated by the Controller for the following reasons:
1. Purposes connected with legal requirements.
2. Purposes connected with the contractual and/or pre-contractual relations and the provision of products/services: initiation, management and termination of contractual and commercial relations; fulfilment of accounting and tax obligations; management of disputes; provision of services; disclosure of your data to any partners of the Controller for the fulfilment of contractual and/or pre-contractual requirements.
E. DATA RECIPIENTS: Within the limits relevant to the purposes, your data may be disclosed to various recipients, such as private or public entities, to comply with legal requirements, or to parties instrumental in achieving the Controller's internal and external purposes, like, by way of example and not limited to, collaborators, free-lance professionals, insurance companies, insurance brokers, law firms, technical partners, banks ......
F. TRANSFER OF DATA TO THIRD COUNTRIES: The data collected is not transferred to third countries outside the European Union
G. STORAGE PERIOD: The data collected will be kept for a period of time not exceeding what is necessary for the fulfilment of the purposes for which it is processed ("storage limitation principle", art. 5, GDPR) or on the basis of the expiries established by law. The verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically.
H. RIGHTS OF THE DATA SUBJECT: The data subject is always entitled to request access to his/her data, to correct or erase it, restrict its processing, or the possibility of objecting to its processing, requesting data portability, withdrawing consent to the processing of the data, asserting these and other rights provided by the GDPR, through a simple communication to the Data Controller. The data subject can also lodge a complaint with a supervisory authority.
I. OBLIGATION TO COMMUNICATE THE DATA: For the purposes above, the communication of personal data is a compulsory requisite, unless it is a matter of purposes based on agreement for which the communication of the data is voluntary and refusal to provide it will not compromise the provision of the service in any way.
J. METHOD OF DATA PROCESSING: The personal data you provide will be processed in compliance with the aforementioned regulations and the confidentiality obligations adopted by the Data Controller. The data will be processed both with computer tools and on paper and using any other type of suitable support in compliance with adequate technical and organisational security measures provided for in the GDPR.