Subject: Information notice on the processing of personal data pursuant to Art. 13 of EU Regulation 2016/679.
This notice is provided to inform you that your personal data are
processed by our company. The processing is carried out in compliance
with the criteria set out by the European Regulation on the protection
of personal data, Regulation (EU) 2016/679, in force since 25 May 2018
(hereinafter “GDPR”). According to the aforementioned legislation,
personal data must be processed lawfully, fairly and transparently, and
in a manner that ensures the protection of your privacy and rights.
1. Data Controller
The Data Controller is Idealpark Srl, represented by its legal
representative pro tempore, with registered office at Via Enrico Fermi, 9
– 37026 Verona (VR), Italy, tel.: +39 045 6750125, e-mail:
info@idealpark.it.
2. Purpose of processing
The data will be collected with your consent and used for the following purposes:
a. Sending requested information, for which explicit consent is not required (Art. 6.1(b), GDPR);
b. Commercial marketing activities, for which explicit consent is required (Art. 6.1(f), GDPR).
3. Processing methods
Personal data are processed by the Data Controller and by duly appointed
data processors for the proper fulfilment of the purposes indicated in
point 2), using electronic tools and paper archives, as well as
appropriate security measures designed to ensure the confidentiality of
personal data and to prevent unauthorized access.
4. Data communication
Data may be communicated to internal and external parties duly appointed
who carry out activities on behalf of the Data Controller.
No transfer of data to non-EU countries is envisaged, nor is any
dissemination (e.g. via social networks, websites, etc.). The Data
Controller does not use automated decision-making processes, including
profiling, to achieve the purposes set out in this notice.
5. Data retention period
The Data Controller will process personal data for the time necessary to
fulfil the purposes indicated above and in any case for no longer than 2
years from the termination of the relationship for the stated purposes.
6. Rights of the data subject
The data subject has the right to request from the Data Controller
access to their personal data, rectification or erasure thereof,
restriction of processing concerning them, or to object to processing,
as well as the right to data portability.
Requests may be submitted by e-mail, fax, or registered letter with the
subject: “request by the data subject”, specifying the right the data
subject intends to exercise (erasure, rectification, portability, right
to be forgotten), together with a valid e-mail/PEC address to which the
response should be sent.
The Data Controller, or a person appointed by them, will respond to the
request within 30 days of receipt. If the response is particularly
complex, this period may be extended by a further 30 days, with timely
notice to the data subject.
If the data subject considers it appropriate to assert their rights,
they may lodge a complaint with the competent supervisory authority,
corresponding to the national Data Protection Authority (Garante per la
protezione dei dati personali), with registered office at Piazza
Venezia, 11 – 00187 Rome, Italy.