NEWSLETTER POLICY REV.02

This Privacy Policy is produced by the Data Controller in compliance with Article 13 of EU Regulation 2016/679 (General Data Protection Regulation).

1. DATA CONTROLLER

ROTHO BLAAS SRL, with registered offices at Via dell'Adige 2/1, I-39040 Cortaccia (BZ), Italy, VAT No. IT 01433490214, is the Data Controller for the personal data you have provided.
If you wish to make a report, or if you have any requests or wish to exercise the rights referred to in Article 15 et seq. of EU Regulation 679/2016, please contact our Privacy Representative by e-mail at the following address: privacy@rothoblaas.com.

2. TYPE OF DATA PROCESSED, PURPOSES OF DATA PROCESSING AND LEGAL BASIS

Subscription to the newsletter can be completed by completing the appropriate form and, at the same time, consenting to the processing of the personal identification and commercial data that you are providing: name, surname e-mail, residential address, occupation.

The purpose of the data processing is:

The legal basis for the processing is the fulfilment of contractual obligations and the consent of the data subject.

3. NATURE OF THE PROVISION OF THE DATA

The User is at liberty to provide the personal data listed in the site services request form. Failure to provide data that is identified as mandatory however, will prevent the execution of the newsletter service. Failure to provide data that is identified as optional, on the other hand, could lead to the provision of an incomplete service.

4. DISCLOSURE AND DISSEMINATION OF DATA TO THIRD PARTIES

In order to fulfil the specified objectives, some data may be disclosed to Group companies; external parties/companies to whom the disclosure of the personal data proves to be necessary or, in any case, functional for the purpose of performing the requested service or for the management of the contractual relationship with the data subject (hosting companies or services companies and/or professionals providing services for the management of commercial communications) under the control of the Data Controller.
The Data Controller shall not disclose any data deriving from the web services outside the Data Controller’s own organisation, including Group companies, not even any of the above-mentioned individual parties, unless consent has been expressly granted or as required for legal obligations.

5. TRANSFER TO THIRD COUNTRIES

The personal data provided by the data subject may be processed or transferred to a country outside the EU for the above-mentioned purposes in accordance with the applicable legislation in relation to the transfer of data to Third Countries and the relative guarantees as provided therein (Article 44 et seq. of EU Regulation No. 679/2016).

6. DATA PROCESSING METHODS AND RETENTION TIMES

Data processing of the gathered data is carried out through computerised procedures or, in any case, by digital means by internal or external parties specifically appointed and authorised for such purpose and committed to confidentiality terms. Data is processed and stored using appropriate tools to ensure its safety, integrity and confidentiality through the adoption of adequate security measures.
In particular, the newsletter is dispatched using the “MailChimp” platform, on whose server the e-mail address provided by the user is saved.
The personal data provided by the data subject will be kept until such time as consent is revoked by the same data subject.

7. RIGHTS OF DATA SUBJECTS

For any comments, requests and/or for exercising the rights referred to in Article 15 et seq. of EU Regulation 679/2016, Data Subjects can refer to our privacy reference contact by sending a mail to the following address: privacy@rothoblaas.com.
Specifically, the data subject may, at any time, exercise their rights, find out about the data that concerns them, how it was acquired, receive information about the parties or classification of parties to whom their data may be disclosed, verify that their data is accurate, complete, current and safeguarded, receive their data in a commonly used structured format, readable on an automated device, revoke any consent given at any time to process their data, request its deletion, and fully or partially oppose the use of their data. In addition, data subjects shall have the right to revoke consent at any time without prejudice to the legality of the processing based on consent provided before revocation and to file a complaint with the applicable authority, the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali), should they believe that the processing of their data is in violation of the above-mentioned Regulation.