Contact us
Download the Company Profile
Logo Dimac

PERSONAL DATA PROCESSING NOTICE

For Newsletter

Art. 13 of EU Regulation 2016/679 of 27/04/2016

Pursuant to Article 13 of EU Regulation 2016/679 of 27/04/2016, also known as the General Data Protection Regulation (GDPR), DIMAC SRL, with registered office at Via dell’Industria 51 int. A – 76121 Barletta (BT), Italy, as the Data Controller, hereby informs you as follows:

Data Controller and Data Processor

The data controller is DIMAC SRL, with registered office at Via dell’Industria 51 int. A – 76121 Barletta (BT), Italy.

Purpose of the Processing

Subscribing to the newsletter involves a series of information and/or updates on products and services provided by the Data Controller, which may utilize both automated means without the intervention of an operator (e.g., SMS, fax, MMS, email, etc.) and traditional means (via phone, mail).

This processing requires your explicit consent (Article 7 of the GDPR). The consent covers both the automated and traditional communication methods described above. You will always have the right to easily and free of charge object, in whole or in part, to the processing of your data for these purposes, excluding, for example, automated contact methods, and expressing your preference to receive commercial and promotional communications exclusively through traditional contact methods.

Mandatory or Optional Nature of Data Provision and Consequences of Refusal

The data required for the aforementioned purposes must be provided in order to fulfill legal obligations (data protection) and/or provide the requested services. Therefore, your refusal, even partial, to provide such data would make it impossible for the Data Controller to establish and manage the relationship and provide the requested service.

Data Processing Methods

The processing of personal data is carried out through operations as defined in Article 4(2) of the GDPR, for the purposes described above, both in paper and electronic form, using electronic or automated tools, in compliance with current regulations, particularly in terms of confidentiality, security, and in accordance with the principles of fairness, lawfulness, transparency, and protection of customer rights.

The processing is carried out directly by the organization of the data controller, its managers, and/or authorized personnel.

Communication and Disclosure

Your personal data may be communicated, to the extent strictly necessary for the aforementioned obligations, tasks, and purposes, and in compliance with current legislation, to the following categories of subjects:

– Entities to whom such communication must be made in order to fulfill specific obligations established by laws, regulations, and/or community legislation.

– Companies belonging to the Data Controller’s group or subsidiaries, parent companies, or affiliates according to Article 2359 of the Italian Civil Code, acting as data processors or for administrative and accounting purposes (purposes related to the performance of internal organizational, administrative, financial, and accounting activities, particularly those necessary for the fulfillment of contractual and pre-contractual obligations).

– External individuals and/or legal entities providing services instrumental to the activities of the Data Controller for the purposes mentioned in point 1 above (e.g., call centers, suppliers, consultants, companies, organizations, professional studios). These entities will operate as data processors.

Personal data will not be disclosed in any way.

Retention Period for Personal Data

Personal data will be retained for the entire duration of the requested service, after which the data will be kept for the time required by law and will subsequently be deleted.

Data Transfer

Personal data is stored on servers located within the European Union. However, it is understood that the Data Controller may, if necessary, have the ability to move servers outside the EU. In such cases, the Data Controller assures in advance that the transfer of data

 outside the EU will be carried out in accordance with applicable legal provisions, subject to the signing of standard contractual clauses as provided by the European Commission.

Rights of the Data Subject

As the data subject, you have the rights set forth in Articles 15-22 of the GDPR, specifically:

– Obtain confirmation as to whether or not personal data concerning you exists, even if not yet recorded, and their communication in an intelligible form.

– Obtain information about: a) the origin of personal data; b) the purposes and methods of processing; c) the logic applied in case of processing carried out with the aid of electronic tools; d) the identification details of the data controller, data processors, and the designated representative under Article 3(1) of the GDPR; e) the subjects or categories of subjects to whom personal data may be communicated or who may become aware of it as designated representatives in the territory of the State, data processors, or authorized personnel.

– Obtain: a) the updating, rectification, or, when interested, integration of data; b) the erasure, anonymization, or blocking of data processed in violation of the law, including data that does not need to be stored in relation to the purposes for which the data was collected or subsequently processed; c) the notification that the operations referred to in letters a) and b) have been brought to the attention, including their content, of those to whom the data has been communicated or disseminated, except in cases where such compliance proves impossible or involves the use of means that are clearly disproportionate to the protected right.

– Object, in whole or in part: a) for legitimate reasons, to the processing of personal data concerning you, even if relevant to the purpose of the collection; b) to the processing of personal data concerning you for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, using automated calling systems without the intervention of an operator, by email and/or using traditional marketing methods, such as by phone and/or postal mail. It should be noted that the data subject’s right to object, as mentioned in the previous point b), to direct marketing purposes using automated methods also extends to traditional methods, and that the data subject retains the possibility to exercise the right to object even partially. Therefore, the data subject can choose to receive communications solely through traditional methods, solely through automated communications, or none of the two communication types. If applicable, the data subject also has the rights provided for in Articles 16-21 of the GDPR (right to rectification, right to erasure, right to restriction of processing, right to data portability, right to object), as well as the right to lodge a complaint with the Supervisory Authority.

 

To exercise the rights specified in Articles 15-22 of the GDPR, or for questions or information regarding the processing of your data and the security measures adopted, you can send a request to our company at the following address:

DIMAC SRL

Via dell’Industria 51 int. A

76121 BARLETTA (BT)

Email: privacy@dimacweb.it | PEC: dimacwebsrl@legalmail.it | Tel: 0883348235

VAT number: 03363470729