Privacy policy pursuant to Article 13 of EU Regulation GDPR 2016/679

Personal data are collected and processed in accordance with Article 13 of EU Regulation 2016/679, in order to guarantee that the data processing is carried out in full compliance with the rights, fundamental freedoms and individual dignity of the data subject.

1) PURPOSES FOR WHICH THE DATA ARE USED

The information collected from you identifies you (name, email address, text message.) to process your requests, in all their nature and form.

2) METHODS OF PROCESSING

The personal data collected will be processed, using predominantly electronic means, lawfully and properly in order to guarantee confidentiality and security through adequate logical, organisational and physical security measures.

3) NATURE OF THE PROVISION DATA

The provision of data is mandatory for the purposes expressed in point 1, in order to allow the provision of the requested services. Without your consent it will not be possible to release the services you requested.

4) COMMUNICATION OF THE DATA

Personal data relating to the processing will not be communicated in any way to third parties.

5) DISTRIBUTION OF THE DATA

The personal data processed, in any way, will be brought to the attention of undetermined subjects.

6) TRANSFER ABROAD

The personal data processed will not be transferred abroad.

7) RIGHTS OF THE DATA SUBJECT (GDPR Articles 15-22)

At any time, the data subject may exercise the right to:

  • ask for confirmation of the existence or otherwise of their personal data;
  • obtain information about the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated, and, where possible, the period of time for which the data will be stored;
  • obtain the rectification or erasure of the data;
  • obtain the restriction of processing;
  • obtain the portability of the data, i.e. receive them from one data controller, in a commonly used, structured format that can be read by an automatic device, and transmit them to another data controller without impediment;
  • object to the processing at any time, including in the case of processing for direct marketing purposes;
  • object to an automated decision-making process relating to individuals, including profiling;
  • file a claim with the Italian Data Protection Supervisor.

8) DATA CONTROLLER

The Data Controller is Azienda Agricola Costa di Bussia Tenuta Arnulfo s.s., Località Bussia, 26 – 12065 Monforte d’Alba CN, info@costadibussia.com

9) DATA PROTECTION OFFICER

The figure of Data Protection Officer (DPO) has not been identified as the author does not process data of natural persons falling within the definition of art. 37 European Regulation GDPR 2016/679.

10) DATA STORAGE PERIOD

The data collected are stored solely for the time necessary to allow us to provide the requested services.