PURSUANT TO ARTICLE 13 OF THE GENERAL DATA PROTECTION REGULATION 2016/679
TechLane s.r.l., with registered office in via Felicita Morandi n. 9, postcode 20127, in Milan (MI), tax code and VAT number 09974200967, in the person of the administrator Mr. Sergio Piatti, as Data Controller, informs the customer, as a natural person, defined as Data Subject, that his data are processed lawfully and fairly and are necessary for the establishment and management of the relationship between the parties as well as for the fulfillment of all legal obligations.
The company, which uses the customer’s identification and contact data, as a rule does not carry out the processing of particular categories of data referred to in Article 9 of the European regulation 2016/679, unless it is provided for on the basis of specific regulations, (such as those issued in the period of epidemiological emergency), and does not make decisions based on automated processes.
The company informs that the data used in the pre-contractual phase will be used by virtue of the legitimate interest in processing them, or at the request of the Data Subject, deleted or pseudonymised.
Informs the customer
It also informs the customer that some external subjects, defined as data processors, the relationships with which are defined in a contract and to whom specific written instructions have been provided, may become aware of his data, which process the data on his behalf; these subjects include, for example, the accountant and the legal consultant. The Data Subject can always ask the Data Controller who the Data Processors are.
There are no other subjects who may become aware of this data, which, if transferred to third countries with respect to the European Union, are treated in such a way that their protection is guaranteed, by virtue of appropriate adequacy clauses.
The Data Controller, having carried out an assessment on the impact that the treatments performed, including those of the customers, have on the rights and freedoms of the Data Subjects, has adopted measures appropriate to the level of risk identified and constantly reviewed and verified, and carries out all the treatments in a manner that complies with regulatory requirements.
The Data Subject, in relation to their data and the treatments performed, may request, if this is not in conflict with legal obligations or contractual clauses, to exercise these rights:
– Access to data (art. 15);
– Correction and updating of data (art. 16);
– Deletion of data (art. 17);
– Limitation of processing (art. 18);
– Data portability (art. 20);
– Opposition to processing (art. 21)
If provided and constitutes the legal basis of the processing, the Data Subject can always revoke the consent (Art. 7, § 3).
Finally, the Data Subject can lodge a complaint with the supervisory authority (Art. 77), using the form available on the website www.garanteprivacy.it.
To exercise these rights, the Data Subject can contact the Data Controller.
All data of the Data Subject, upon termination of the contractual relationship, will be returned to the customer, deleted or pseudonymised, with the exception of those that must be kept in compliance with legal obligations and in this case only until the law requires them to be kept, that is, for ten years.