Personal information is data that can be used to identify or contact a specific person.
EUROPASS SRL may have received your personal data from other people who have shared their content with you using products EUROPASS SRL. For research and development purposes, we can use data sets containing images or other data that could be associated with a person in order to identify it. When we acquire these data sets, we do so in accordance with the applicable laws in the jurisdiction in which the data set is hosted. During the use of such data sets for research and development, no attempt is made to identify the person to whom the data belongs.
We also collect data that is in a form that does not permit direct association with a specific individual. We may collect, use, transfer and disclose non-personal information for any purpose. The following are some examples of non-personal data collected by us and their use:
EUROPASS SRL may periodically make certain personal data available to strategic partners who collaborate with EUROPASS SRL for the supply of products and services or which help EUROPASS SRL in selling to customers. Personal data will be shared by EUROPASS SRL only to provide or improve its products, services and advertising materials; they will not be shared with third parties for the commercial purposes of the latter.
It may be necessary for EUROPASS SRL (by law, court proceedings, litigation and / or requests by public and governmental authorities within or outside your country of residence) to disclose your personal data. We may also disclose your information if we believe that, for purposes of national security, compliance with the law or other matters of public importance, it is necessary or appropriate to do so.
We may disclose your information if we believe that disclosure is reasonably necessary to apply our terms and conditions or to protect our activities or users. Furthermore, in the event of reorganization, merger or sale, we may transfer all personal data collected by us to third parties affected by such transactions.
EUROPASS SRL takes care of the security of your personal information. For the storage of personal data by EUROPASS SRL, information systems with limited access are used, located in facilities that take physical security measures. The data is stored in encrypted form, even in cases where we use third-party storage solutions.
EUROPASS SRL does not make any decisions regarding the use of algorithms or profiling that significantly affects you.
You can help ensure that your preferences and contact information is accurate, complete and up to date by accessing the site www.europassitalian.com. We will grant you access to the other personal data stored by us and we will provide you with a copy so that you can perform any operation you require, for example requesting to correct the data if it is inaccurate or delete it if EUROPASS SRL is not held to keep them as required by law or for legitimate business purposes. We may refuse to respond to requests that are futile / harassing, damaging the privacy of others, extremely difficult to meet or where access to data is not otherwise covered by local law. EUROPASS SRL may also refuse to comply with requests for deletion or access to data if it considers that fulfilling this request is contrary to the legitimate use of data for anti-fraud purposes and to ensure security, as described previously.
The websites, products, applications and services of EUROPASS SRL may contain links to websites, products and services of third parties.
Data collected by third parties, which may include geographic or contact information, are governed by their respective privacy policies. We encourage you to review the privacy policies of those third parties.
To make sure that your personal data is secure, we communicate our privacy and security guidelines to employees of EUROPASS SRL and strictly apply privacy protection measures within the company.
EUROPASS SRL , P. Iva 04393630480, with registered office in Via S. Egidio, 12, 50122 Florence (hereinafter “Holder”) , as the data controller, informs you pursuant to art. 13 EU Regulation n. 2016/679 (hereinafter, “GDPR”) that information will be treated in a certain manner and for the following purposes:
The holder treats personal identification data (in particular, your name, social security number, name, p. Iva, e-mail, PEC, telephone number, IBAN and any information capable of identifying the person concerned, following “Personal data” or “data”) communicated through the first processing.
The personal data will be processed for the following Purposes:
The processing of personal data is carried out by means of the operations indicated in art. 4 n. 2 GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. The personal data of the person of interest shall be processed in both paper and electronic and / or automated.
The Holder will process your personal data for as long as necessary to fulfil the purposes of Article 2. 1 with this information and no later than 10 years from the termination of the relationship and not over 2 years from the collection of personal data for any marketing purposes as per article 2, point 7 of this statement
Your data may be made accessible for the purposes referred to in Article 2:
The management and storage of personal data will be carried out on servers located within the European Union of the Owner and / or third-party companies appointed and duly appointed as Data Processors. Currently the servers are located in Italy. The data will not be transferred to outside the European Union. In any case, it is understood that the Data Controller, where necessary, will have the right to move the server location to Italy and / or the European Union and / or non-EU countries. In this case, the Data Controller hereby ensures that the transfer of non-EU data will take place in accordance with the applicable legal provisions, stipulating, if necessary, agreements that guarantee an adequate level of protection and / or adopting the standard contractual clauses provided for European Commission.
Without express consent (Art. 7 GDPR), the owner can communicate your data for the purposes of art. 2. to Supervisory Bodies, Judicial Authorities and to all the other subjects to whom the communication is mandatory by law for the accomplishment of said purposes. Your data will not be distributed.
In your capacity as an interested party, you have the rights set forth in art. 15 GDPR and precisely the rights of:
the. Obtaining confirmation of whether or not personal data concerning you, even if not yet recorded, and their communication in intelligible form; ii. obtain the indication: a) of the origin of personal data; b) of the purposes and methods of the processing; c) of the logic applied in case of treatment carried out with the aid of electronic instruments; d) of the identification details of the owner, of the responsible persons and, in the case described by the combined disposition of the articles. 3, parag. 2 e. 27, par . 1, GDPR, of the representative established in the Union ; e) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of it in their capacity as designated representative in the territory of the State, managers or agents; iii. obtain: a) updating, rectification or, when interested, integration of data; b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed; c) the attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data has been communicated, except in the case in which this fulfilment proves impossible or involves a use of means manifestly disproportionate to the protected right; iv. object, in whole or in part: a) for legitimate reasons the processing of personal data, pertinent for collection purposes; b) the processing of personal data for purposes of sending advertising materials or direct selling or for carrying out market research or commercial communications through the use of automated calling systems without human intervention by email and / or through traditional marketing methods by telephone and / or paper mail. It should be noted that the right of opposition of the interested party, set out in point b) above, for direct marketing purposes through automated methods extends to traditional ones and that in any case the possibility remains for the data subject to exercise the right to object only partially. Therefore, the interested party can decide to receive only communications using traditional methods or only automated communications or none of the two types of communication. Where applicable, you also have the rights referred to in Articles 16-21 GDPR (Right of rectification, right to be forgotten, right of limitation of treatment, right to data portability, right of opposition), as well as the right of complaint to the Supervisory Authority.
You can at any time exercise the rights referred to in Articles 16-21 of the GDPR by sending:
The data controller is EUROPASS SRL, P. Iva 04393630480, with registered office in Via S. Egidio, 12, 50122 Florence, in person of the legal representative, pt Livolsi Barbara
The updated list of data processors and persons in charge of processing them is kept in the possession of the Data Controller and can be consulted upon written request.
The RPD is Avv. Luca Spaziani, with a studio in Via di Novoli, 33/15, 50127 Florence.
This Information Notice, which consists of four pages, may vary.
The data controller informs you that, pursuant to art. 7, paragraph 3, GDPR, you have the right to withdraw your consent at any time.