REKICO - pausa caffè

Customers / potential customers - Information on the processing of personal data

(Articles 13 and 14 of the EU Regulation 2016/679 concerning the protection of individuals with regard to the processing of personal data - GDPR)

The following information is provided in accordance with the provisions of current legislation on the protection of individuals with regard to the processing of personal data, by the company "Rekico Caffè Srl", as the data controller of personal data.
In general, all personal data and information subsequently generated by the processing of the same will be processed in compliance with the fundamental principles of transparency, correctness, lawfulness, minimization, purpose limitation and conservation, accuracy, integrity and confidentiality.
This information is provided for all personal data processed by the Data Controller in the context of the management of pre-contractual and contractual relations and of current commercial relations and of the legal obligations consequent to the execution of the contracts that envisage the processing of personal data relating to personnel , even if not an employee, of the legal entity client.

1. Data Controller

The following information is provided by the company "Rekico Caffè Srl", with headquarters in Via Pana n. 88 - Faenza (RA), P.Iva: 01355060391, Tel: 054646593, Email: rekico@rekico.com as Data Controller of personal data.

2. Personal data processed

The processing takes place through both IT and paper supports, both possibly organized as databases or archives, and entails, where necessary, the use of telephone communications and / or the sending of IT communications through the contact details provided (telephone number, telephone number, office address, etc.)
The personal data subject to processing relate to the categories: a) name, contact details and other contact information: the company collects and processes the personal data of the persons concerned and other information identifying the personnel, including non-employees, of the customer as legal entity such as, for example , name, surname, email address, telephone number; b) the role and the job of the person concerned in the organization of the client as legal entity.

3. Purpose of the processing and legal basis

The purposes of data processing are as follows:
a) activities related to the negotiation, stipulation and execution of contractual relationships and to fulfill the contractual obligations assumed, by archiving the contractual documentation for the period of time in which disputes are possible concerning the contract with the interested party;
The provision of data for the aforementioned purposes provides the legal basis for the execution of a contract or pre-contractual measures adopted at the request of the client and the fulfillment of legal obligations to which the Data Controller is subject. For this reason, the provision of data is mandatory and the failure, inaccurate or partial provision of data could result in the impossibility to establish or continue the relationship, to the extent that such data is necessary for the execution of the same.
b) fulfillment of the obligations established by the fiscal, accounting and civil law.
c) sending commercial information exclusively by email, to the address indicated, concerning products of the same type of those already purchased.
The provision of data for the aforementioned purposes establishes as the legal basis the legitimate interest of the Data Controller in direct marketing, aimed at sending commercial communications to its customers, concerning services or products similar to those already purchased. The interested party may object to the processing at any time, as detailed below in the section "Rights of the interested party".
d) only with the consent of the interested party, to provide information on our products, as well as send marketing and commercial communications through the use of traditional contact means (postal service, telephone), digital and automated (e-mail, SMS and others digital channels);
The provision of data for the aforementioned purposes provides as a legal basis the consent of the interested party, free and informed. For this reason, the right to revoke this consent at any time is recognized, without prejudice to the lawfulness of consent-based processing prior to revocation and without such revocation causing any detrimental consequence to the data subject.
In any case, if there are Data that are not pertinent to the indicated purpose, the company will refrain from using this information.

4. Recipients

Personal Data will be indicated to or shared with:
a) the authorized Data Controller staff. Those authorized to process data for the purposes indicated above have committed themselves to confidentiality or have received an adequate legal obligation of confidentiality;
b) designated persons responsible for processing the data in compliance with the applicable law who are responsible for processing Data on behalf of the company (for example, companies in charge of managing IT systems and services, platform providers for sending e-mails, etc. .);
c) upon request, to the competent financial offices or to other Public Administrations based on the provisions of current legislation.
d) banks and credit institutions, professional offices, companies, business associations or other entities that provide the Data Controller with certain accounting, legal or tax services, and, in general, to freelancers, institutions, companies or organizations where this is necessary for the correct fulfillment of the obligations deriving from an existing contract and, in general, to suppliers for services strictly related to the service object of the contractual relationship.
Personal data will be processed within the territory of the European Union and the European Economic Area.
The Data is not intended for publication or dissemination.
Any further information can be requested by writing to the following email address rekico@rekico.com

5. Preservation

The Personal Data processed for the purposes indicated will be kept for the time strictly necessary for the management of the contractual relationship, for at least 10 years from the last interruption of the prescription and except for legal provisions that allow storage for longer periods.
The processing for promotional and commercial communication purposes will take place until the consent is revoked or until the interested party is opposed.
Any further information on the timing and conservation criteria may be requested to the data controller, at the addresses indicated.

YOUR RIGHTS

Pursuant to the articles 15 - 22 of the EU Regulation 2016/679 each person is granted a series of rights. Right of Access: the interested party, pursuant to art. 15, has the right to obtain confirmation that a processing of personal data concerning him is being carried out and, if necessary, to obtain a copy. He also has the right to obtain access to personal data concerning him and to further information such as the purpose of processing, categories of recipients, data retention period and exercisable rights. Right of rectification: the interested party, pursuant to art. 16, has the right to obtain the rectification of inaccurate personal data concerning him or the integration of the same. Right to cancellation: the interested party has the right to obtain the cancellation of personal data concerning him, without unjustified delay, if there is one of the reasons provided for by art. 17. Right to limit treatment: the data subject is entitled, in the cases provided for by Article 18 of Regulation 2016/679, to obtain the limitation of the processing. Right to data portability: the data subject has the right to receive in a structured format, commonly used and readable by an automatic device, the personal data concerning him and has the right to transmit such data to another owner without impediment, according to what required by art. 20 of Regulation 2016/679; Right to object to processing: the data subject has the right to object to the processing of personal data concerning him / her as provided by the art. 21 of Regulation 2016/679. The person concerned also has the right to lodge a complaint with the competent control authority, the Privacy Guarantor. The requests referred to in the previous points must be addressed in writing to the Data Controller. The Data Controller will, within the time limits established by current legislation, provide a timely response to requests to exercise the rights of the data subjects. Any clarification or request for clarification can be sent in writing to the Data Controller.