Back to homepage
PRIVACY POLICY

Privacy policy, updated in accordance with article 13 of Regulation (EU) 2016/679 “GENERAL DATA PROTECTION REGULATION” (“GDPR”)

With this information, we wish to inform you of the ways in which our company, ITALGELATINE S.P.A. (hereinafter also Company or ITALGELATINE) processes your personal data, communicated by you as a customer (or representative in any capacity of a customer) of ITALGELATINE. This information is also available on our website: www.italgel.com. Unless specified, all the articles of law mentioned in this document refer to the GDPR.
1) Data Controller
The Data Controller is ITALGELATINE S.P.A., - S.S. Alba-Bra, 201, Santa Vittoria d’Alba (CN - 12069) – VAT Number: 01743650044.

2) Data Protection Officer
The Data Controller, not falling within the cases indicated by Art. 37 of the GDPR, nor in those indicated in the various interpretations of the Italian Authority, did not consider it necessary to appoint a Data Protection Officer.

3) Subject of data processing
the data subject to processing are:

  1. CONTACT DATA: identification and contact data (for example, name, surname, educational qualification, address, telephone, e-mail, company role) subsequently, "personal data", communicated by you during the preparation, conclusion or execution of supply and service contracts by the Owner.
  2. CREDIT INFORMATION: data possibly relating to the financial reliability aspects of the directors, as a corollary of commercial information required by the Company in the customer validation process.
  3. CREDIT PROTECTION: eventually conferred, even belonging to particular categories, voluntarily as part of credit recovery activities.

4) Purpose of processing, legal basis, nature of the submission
The purpose of the processing referred to in point 3.1 is to make it possible to execute the contract stipulated with the Data Controller. The processing is lawful pursuant to Art. 6, paragraph 1) lett. b) of the GDPR. The provision of data is mandatory, under penalty of the impossibility of correctly managing the contractual aspects.

The purpose of the processing referred to in point 3.2 is the protection of the legitimate interest of the Data Controller (safeguarding of assets). The processing is lawful pursuant to Art. 6, paragraph 1) lett. f).

The purpose of the processing referred to in point 3.3 is the protection of the legitimate interest of the Data Controller (safeguarding of assets). The processing is lawful pursuant to Art. 6, paragraph 1) lett. f) and Article 9, paragraph 2), lett. e).

5) Methods of processing, duration of processing
The processing of your personal data referred to in point 3.1 is carried out by means of the operations indicated in Art. 4 n. 2) of the GDPR and more precisely: collection, registration, organization, storage, consultation, use, blocking, communication, cancellation and destruction. Your personal data are subjected to both paper and electronic and / or automated processing.

All the personal data you provide that have fiscal / civil relevance will be kept in our archives for a period of 10 years, as required by current legislation. All data provided by you that have no tax relevance will be kept, unless otherwise indicated, for a period of 5 years beyond the conclusion of the contract for which they were provided.

The processing of personal data referred to in point 3.2, possibly collected for the purposes referred to in point 4, is carried out by means of the operations indicated in Art. 4 n. 2) GDPR and more precisely: collection, consultation, use, cancellation and destruction. The processing takes place lawfully and any data collected does not exceed the needs of corporate protection, with a view to balancing the interests of the Owner and the protection of the interested parties, with particular reference to what is indicated in Art. 10.

The processing of personal data referred to in point 3.3, possibly collected for the purposes referred to in point 4, is carried out by means of the operations indicated in Art. 4 n. 2) GDPR and more precisely: collection, storage, organization, consultation, use, communication, cancellation and destruction. The processing takes place lawfully and any data collected does not exceed the needs of corporate protection, with a view to balancing the interests of the Data Controller and the protection of the interested parties. The relevant data in the context of the dispute for which they were collected are kept by ITALGELATINE for a period of 10 years beyond the closure of the dispute itself.

6) Personal data access
Your data may be made accessible for the purposes referred to in point 4) to employees and collaborators of the Data Controller, in their capacity as authorized to process and / or system administrators, or to third-party companies or other subjects authorized by the Data Controller, in their capacity. of external data processors. These managers undertake to put into practice all the appropriate security systems to protect your data, and adhere to a protocol of procedures and security policies that the Data Controller has produced and constantly updates.

7) Personal data disclosure
Without the need for express consent (pursuant to Article 6 letter b), c) of the GDPR), the Data Controller may communicate your data to Supervisory Bodies, Judicial Authorities, to insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the accomplishment of the aforementioned purposes. These subjects will process the data in their capacity as independent data controllers. Your data will not be disseminated.

The data referred to in points 3.2 and 3.3 are communicated to the law firms that support ITALGELATINE in the management of the disputes for which they are provided. These law firms assume the role of data processors, on behalf of ITALGELATINE.

8) Data transfer to non-EU countries
The data provided, referred to in point 3) are stored in electronic and / or paper format on servers and / or in archives located at the headquarters of the Data Controller (management software, CRM, folders with restricted access on servers, cabinets) or possibly at datacenters located within the European Union, in the case of use of cloud services (always within the scope of the purposes referred to in point 4).

In any case, the Data Controller, if necessary, will have the right to move the servers even outside the EU, for example in the case of use of Cloud services. In this case, the Data Controller ensures from now on that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission.

9) Rights of the data subject
As an interested party, you have the rights under articles 15, 16, 17, 18, 19, 20, 21 and 22 of the GDPR. In detail:
  • Right of access
  • Right of rectification
  • Right to erasure ("right to be forgotten")
  • Right of restriction of processing
  • Right to notification obligation in the event of rectification or erasure of personal data or restriction of processing
  • Right to data portability
  • Right to object
  • Rights relating to automated individual decision-making, including profiling

10) Procedures for the exercise of the rights of the data subject
You can exercise your rights at any time by sending:
  • a registered letter with return receipt addressed to the Data Controller, referred to in point 1)
  • an e-mail to privacy@italgel.com

Privacy policy, updated in accordance with article 13 of Regulation (EU) 2016/679 “GENERAL DATA PROTECTION REGULATION” (“GDPR”)

With this information, we wish to inform you of the ways in which our company, ITALGELATINE S.P.A. (hereinafter also Company or ITALGELATINE) processes your personal data, communicated by you as a supplier (or representative in any capacity of a supplier) of ITALGELATINE. This information is also available on our website: www.italgel.com. Unless specified, all the articles of law mentioned in this document refer to the GDPR.
1) Data Controller
The Data Controller is ITALGELATINE S.P.A., - S.S. Alba-Bra, 201, Santa Vittoria d’Alba (CN - 12069) – VAT Number: 01743650044.

2) Data Protection Officer
The Data Controller, not falling within the cases indicated by Art. 37 of the GDPR, nor in those indicated in the various interpretations of the Italian Authority, did not consider it necessary to appoint a Data Protection Officer.

3) Subject of data processing
The processing relates to personal, identification and contact data (for example, name, surname, telephone, e-mail) subsequently, "personal data", communicated by you when signing a service or supply contract for the Owner (or in the pre-contractual negotiation).

4) Purpose of processing, legal basis, nature of the submission
The purpose of the processing referred to in point 3 is to make it possible to execute the supply contract stipulated with the Owner. The processing is lawful pursuant to Art. 6, paragraph 1) lett. b) of the GDPR. The provision of data is mandatory, under penalty of the impossibility of correctly managing the contractual aspects.

5) Methods of processing, duration of processing
The processing of your personal data referred to in point 3 is carried out by means of the operations indicated in Art. 4 n. 2) of the GDPR and more precisely: collection, registration, organization, storage, consultation, use, blocking, communication, cancellation and destruction. Your personal data are subjected to both paper and electronic and / or automated processing.

All the data you provide that have fiscal / civil relevance will be kept in our archives for a period of 10 years, as required by current legislation. All data provided by you that have no fiscal relevance will be kept, unless otherwise indicated, for a period of 5 years beyond the conclusion of the supply contract for which they were provided.

6) Personal data access
Your data may be made accessible for the purposes referred to in point 4) to employees and collaborators of the Data Controller, in their capacity as authorized to process and / or system administrators, or to third-party companies or other subjects authorized by the Data Controller, in their capacity. of external data processors. These managers undertake to put into practice all the appropriate security systems to protect your data, and adhere to a protocol of procedures and security policies that the Data Controller has produced and constantly updates.

7) Personal data disclosure
Without the need for express consent (pursuant to Article 6 letter b), c) of the GDPR), the Data Controller may communicate your data to Supervisory Bodies, Judicial Authorities, to insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the accomplishment of the aforementioned purposes. These subjects will process the data in their capacity as independent data controllers. Your data will not be disseminated.

8) Data transfer to non-EU countries
The data provided, referred to in point 3) are stored in electronic and / or paper format on servers and / or in archives located at the headquarters of the Data Controller (management software, CRM, folders with restricted access on servers, cabinets) or possibly at datacenters located within the European Union, in the case of use of cloud services (always within the scope of the purposes referred to in point 4).

In any case, the Data Controller, if necessary, will have the right to move the servers even outside the EU, for example in the case of use of Cloud services. In this case, the Data Controller ensures from now on that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission.

9) Rights of the data subject
As an interested party, you have the rights under articles 15, 16, 17, 18, 19, 20, 21 and 22 of the GDPR. In detail:

  • Right of access
  • Right of rectification
  • Right to erasure ("right to be forgotten")
  • Right of restriction of processing
  • Right to notification obligation in the event of rectification or erasure of personal data or restriction of processing
  • Right to data portability
  • Right to object
  • Rights relating to automated individual decision-making, including profiling

10) Procedures for the exercise of the rights of the data subject
You can exercise your rights at any time by sending:
  • a registered letter with return receipt addressed to the Data Controller, referred to in point 1)
  • an e-mail to privacy@italgel.com

Privacy policy, updated in accordance with article 13 of Regulation (EU) 2016/679 “GENERAL DATA PROTECTION REGULATION” (“GDPR”)

With this information, we wish to inform you of the ways in which our company, ITALGELATINE S.P.A. (hereinafter also Company or ITALGELATINE) processes your personal data, communicated by you as a supplier (or representative in any capacity of a supplier) of ITALGELATINE, at the time of your access to the company facilities, or before it, as a guarantee This information is also available on our website: www.italgel.com. Unless specified, all the articles of law mentioned in this document refer to the GDPR.
1) Data Controller
The Data Controller is ITALGELATINE S.P.A., - S.S. Alba-Bra, 201, Santa Vittoria d’Alba (CN - 12069) – VAT Number: 01743650044.

2) Data Protection Officer
The Data Controller, not falling within the cases indicated by Art. 37 of the GDPR, nor in those indicated in the various interpretations of the Italian Authority, did not consider it necessary to appoint a Data Protection Officer.

3) Subject of data processing
the data subject to processing are:

  1. CONTACT DATA: personal, identification and contact data (for example, name, surname, telephone, e-mail) hereinafter, "personal data", communicated by you when signing a service or supply contract for the Data Controller (or in the pre-contractual negotiation).
  2. VIDEO RECORDINGS: images of your person taken by the video surveillance system installed at the headquarters of the Data Controller.
  3. PROFESSIONAL DATA: documents related to authorizations and certificates (valid under your responsibility, where applicable) necessary to carry out the work covered by the supply contract or for which you have been called.

4) Purpose of processing, legal basis, nature of the submission
The purpose of the processing referred to in point 3.1 is to make it possible to execute the supply contract stipulated with the Owner, or in the absence of this, of the work for which you have been contacted. The processing is lawful pursuant to Art. 6, paragraph 1) lett. b) of the GDPR. The provision of data is mandatory, under penalty of the impossibility of correctly managing the contractual aspects.

The purpose of the processing referred to in point 3.2 is the protection of company assets and the need, for security reasons, to keep track of all the people who are within the company perimeter. The processing is lawful pursuant to Art. 6, paragraph 1), letters c), d), f).

The purposes of the processing referred to in point 3.3 are the protection of company assets and the fulfillment of a legal obligation. The processing is lawful pursuant to Art. 6, paragraph 1), letters b), c). The provision of data is mandatory, under penalty of the impossibility of carrying out the supply contract or the work for which it was contacted.

5) Methods of processing, duration of processing
The processing of your personal data is carried out by means of the operations indicated in Art. 4 n. 2) GDPR and more precisely: collection, registration, storage, communication, cancellation and destruction. Your personal data are subjected to both paper and electronic and / or automated processing.

All the data you provide regarding the treatment referred to in point 3.1, which have accounting / tax relevance, will be kept in accordance with the law for a period of at least 10 years. The records referred to in point 3.2 are kept by law for 48 hours, unless otherwise required by emergency situations.

The data provided in point 3.3 are kept for civil purposes for a period of 10 years, to be exhibited if a legally authorized body requests it to be exhibited.

6) Personal data access
Your data may be made accessible for the purposes referred to in point 4) to employees and collaborators of the Data Controller, in their capacity as authorized to process and / or system administrators, or to third-party companies or other subjects authorized by the Data Controller, in their capacity. of external data processors. These managers undertake to put into practice all the appropriate security systems to protect your data, and adhere to a protocol of procedures and security policies that the Data Controller has produced and constantly updates.

7) Personal data disclosure
Without the need for express consent (pursuant to Article 6 letter b), c) of the GDPR), the Data Controller may communicate your data to Supervisory Bodies, Judicial Authorities, to insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the accomplishment of the aforementioned purposes. These subjects will process the data in their capacity as independent data controllers. Your data will not be disseminated.

8) Data transfer to non-EU countries
The data provided, referred to in point 3) are stored in electronic and / or paper format on servers and / or in archives located at the headquarters of the Data Controller (management software, CRM, folders with restricted access on servers, cabinets) or possibly at datacenters located within the European Union, in the case of use of cloud services (always within the scope of the purposes referred to in point 4).

In any case, the Data Controller, if necessary, will have the right to move the servers even outside the EU, for example in the case of use of Cloud services. In this case, the Data Controller ensures from now on that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission.

9) Rights of the data subject
As an interested party, you have the rights under articles 15, 16, 17, 18, 19, 20, 21 and 22 of the GDPR. In detail:
  • Right of access
  • Right of rectification
  • Right to erasure ("right to be forgotten")
  • Right of restriction of processing
  • Right to notification obligation in the event of rectification or erasure of personal data or restriction of processing
  • Right to data portability
  • Right to object
  • Rights relating to automated individual decision-making, including profiling

10) Procedures for the exercise of the rights of the data subject
You can exercise your rights at any time by sending:
  • a registered letter with return receipt addressed to the Data Controller, referred to in point 1)
  • an e-mail to privacy@italgel.com

Privacy policy, updated in accordance with article 13 of Regulation (EU) 2016/679 “GENERAL DATA PROTECTION REGULATION” (“GDPR”)

With this information, we wish to inform you of the ways in which our company, ITALGELATINE S.P.A. (hereinafter also Company or ITALGELATINE) processes your personal data, communicated by you on the occasion of your visit to ITALGELATINE. This information is also available on our website: www.italgel.com. Unless specified, all the articles of law mentioned in this document refer to the GDPR.
1) Data Controller
The Data Controller is ITALGELATINE S.P.A., - S.S. Alba-Bra, 201, Santa Vittoria d’Alba (CN - 12069) – VAT Number: 01743650044.

2) Data Protection Officer
The Data Controller, not falling within the cases indicated by Art. 37 of the GDPR, nor in those indicated in the various interpretations of the Italian Authority, did not consider it necessary to appoint a Data Protection Officer.

3) Subject of data processing
the data subject to processing are:

  1. CONTACT DATA: personal, identification and contact data (for example, name, surname, telephone, e-mail) hereinafter, "personal data", communicated by you on the occasion of your visit to the headquarters of the Data Controller.
  2. VIDEO RECORDINGS: images of your person taken by the video surveillance system installed at the headquarters of the Data Controller.

4) Purpose of processing, legal basis, nature of the submission
The purposes of the processing referred to in points 3.1 and 3.2 are the protection of company assets and the need, for security reasons, to keep track of all the people who are within the company perimeter. The processing is lawful pursuant to Art. 6, paragraph 1), letters c), d), f). The provision of data is mandatory, under penalty of inability to access the company perimeter.

If you have accessed the company perimeter to load or unload goods, we inform you that the video surveillance system also takes over the loading and unloading areas, with details of the license plate of your vehicle, for safety reasons.

5) Methods of processing, duration of processing
The processing of your personal data is carried out by means of the operations indicated in Art. 4 n. 2) of the GDPR and more precisely: collection, registration, storage, communication, cancellation and destruction. Your personal data are subjected to both paper and electronic and / or automated processing.

All the data you provide regarding the processing referred to in point 3.1 will be kept until 31/12 of the year in which your visit to ITALGELATINE took place, after which the visit log is destroyed. The recordings referred to in point 3.2 are kept by law for 48 hours, unless otherwise required by emergency situations.

6) Personal data access
Your data may be made accessible for the purposes referred to in point 4) to employees and collaborators of the Data Controller, in their capacity as authorized to process and / or system administrators, or to third-party companies or other subjects authorized by the Data Controller, in their capacity. of external data processors. These managers undertake to put into practice all the appropriate security systems to protect your data, and adhere to a protocol of procedures and security policies that the Data Controller has produced and constantly updates.

7) Personal data disclosure
Without the need for express consent (pursuant to Article 6 letter b), c) of the GDPR), the Data Controller may communicate your data to Supervisory Bodies, Judicial Authorities, to insurance companies for the provision of insurance services, as well as to those subjects to whom the communication is mandatory by law for the accomplishment of the aforementioned purposes. These subjects will process the data in their capacity as independent data controllers. Your data will not be disseminated.

8) Data transfer to non-EU countries
The data provided, referred to in point 3.1, are stored in paper format, in a register located at the headquarters of the Data Controller. The data provided referred to in point 3.2 are stored in electronic format, on servers located at the headquarters of the Data Controller.

In any case, the Data Controller, if necessary, will have the right to move the servers even outside the EU, for example in the case of use of Cloud services. In this case, the Data Controller ensures from now on that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission.

9) Rights of the data subject
As an interested party, you have the rights under articles 15, 16, 17, 18, 19, 20, 21 and 22 of the GDPR. In detail:
  • Right of access
  • Right of rectification
  • Right to erasure ("right to be forgotten")
  • Right of restriction of processing
  • Right to notification obligation in the event of rectification or erasure of personal data or restriction of processing
  • Right to data portability
  • Right to object
  • Rights relating to automated individual decision-making, including profiling

10) Procedures for the exercise of the rights of the data subject
You can exercise your rights at any time by sending:
  • a registered letter with return receipt addressed to the Data Controller, referred to in point 1)
  • an e-mail to privacy@italgel.com