Logo Fiapp
Contact us
scroll_to_top.svg

Privacy Policy

PRIVACY POLICY pursuant to articles. 13 and 14 Reg. EU 2016/679 ( “GDPR”

Fiapp international S.r.l. is very attentive to privacy and the protection of personal data. This information describes the methods of processing of personal data entered by you in the “Contact us” box ”
on the Fiapp website page www.fiapp.com;

Data Controller: The Data Controller is Fiapp international S.r.l (P.IVA 02038930166), with registered office and operational headquarters in Via Alessandro Volta , 10, 24060, S.Paolo D’Argon BG/Italy;
Data processed and processing methods: The data we collect through the contact box, if entered freely and spontaneously by you within the same, are the following:
– identification data (for example: name and surname;
– contact data (for example: address, telephone number telephone, email)
– The data collected is processed in electronic and/or paper form; the data is processed using methods and technical and organizational security measures suitable to ensure that they do not enter the
– availability of unauthorized parties, are not lost and are not modified.

The data collected will not be subjected to automated decision-making procedures pursuant to art. 22 GDPR. If the Data Controller needs to resort to such procedures, it will provide specific information in accordance with the law.

Purpose of the treatment

The data that we collect through the contact box, if you enter it freely and spontaneously within it, are processed for the following purposes:

– contact you.
– answer your questions.
– provide the ‘user the information requested by you.
– The personal data collected through the contact box are also subject to processing, if you provide your specific consent, for commercial contact and/or marketing purposes through the sending of newsletters.

Legal bases of processing

The legal basis of the processing aimed at providing you with the information requested by the same is the fulfillment of pre-contractual obligations or the response to your requests, pursuant to art. 6, par. 1, lett. b) of the GDPR.

The legal basis for processing for commercial contact and/or marketing purposes through the sending of newsletters is consent, pursuant to art. 6, par. 1, lett. a) of the GDPR, that we enable you to provide in an informed, specific, free, revocable and documented manner.

Subjects to whom the data is addressed

Your data will be processed by subjects authorised to process the same by Fiapp international S.r.l. (ad example: employees and/or external collaborators) as they are specifically assigned to personnel selection roles and trained to carry out the related tasks.

Your personal data may be communicated to any qualified subjects who provide Fiapp international S.r.l. with performances or services instrumental to the purposes indicated in this information notice, including: subsidiaries, affiliates and/or associates; IT service providers; consultants who assist in various capacities the Owner with particular reference to legal, tax, social security, accounting, organizational aspects; any other subject
to whom the data must be communicated based on an express provision of law.

Place of processing

The data processed will be processed within the European Economic Area, at the operational headquarters of Fiapp international S.r.l.; any transfer of such data outside of it may only take place to entities that perform services on behalf of the Joint Controllers (e.g. cloud service providers) that adopt legal, technical and organizational security measures that comply with regulatory requirements in force in the
European Economic Area (EU Regulation 2016/679 “GDPR”) and in Italy (Legislative Decree 196/2003, Legislative Decree 101/2018).

Retention period

The data you entered in the contact box will be retained for no more than 24 months.
Upon expiration, the data will be deleted, unless there are additional purposes for the retention of the same, which will be communicated to you and subject to a request for specific consent, where necessary.

Rights of interested parties
You have the right to request access to your data, rectification or erasure of the same, limitation of processing and to oppose their use by us, as well as the right to request the delivery of
some of these, by contacting Fiapp international S.r.l. at the contact details indicated in the Contact details section.

strong>Right of access

The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the
personal data and the following information:

a) the purposes of the processing;

b) the categories of personal data concerned;

c) the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations, and, where that is the case, the existence of appropriate safeguards;

d) where possible, the envisaged period for which the personal data will be stored, or, if that is not possible, the criteria used to determine that period;

e) the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning him or her or to object to such processing;

f) the right to lodge a complaint with a supervisory authority;

(g) where the personal data are not collected from the data subject, any available information as to their source;

(h) the existence of automated decision-making, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

Right to rectification

The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.

Right to erasure

The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:

a) the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;

b) the data subject withdraws consent on which the processing is based and there is no other legal ground for the processing;

c) the data subject objects to the processing, and there are no overriding legitimate grounds for the processing;

d) the personal data have been unlawfully processed;

e) the personal data have to be erased for compliance with a legal obligation in Union law or the law of the Member State to which the controller is subject;

Right to restriction of processing

The data subject shall have the right to obtain from the controller restriction of processing where one of the following applies:

a) the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data;

b) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;

c) the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims;

d) the data subject has objected to the processing, pending the verification whether the legitimate grounds of the controller override those of the data subject.

Right to object

The data subject shall have the right to object at any time to processing of personal data concerning him or her based on the legitimate interest of the controller, including profiling. The data subject shall have the right to object at any time to processing of personal data concerning him or her for direct marketing purposes, which includes profiling to the extent that it is related to such direct marketing.

Right to data portability

The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and shall have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where:

a) the processing is based on consent or on a contract; and

b) the processing is carried out by automated means.

In exercising his or her right to data portability, the data subject shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible.

Right to lodge a complaint with a Supervisory Authority

Any complaints may be submitted to the Personal Data Protection Authority, which can be found at the following contacts or to your competent supervisory authority:

Personal Data Protection Authority
Piazza Venezia n. 11
00187 Rome
Fax: (+39) 06.69677.3785
Tel: (+39) 06.696771
E-mail: garante@gpdp.it
Certified mail: protocollo@pec.gpdp.it

Contact details

The Data Controller can be contacted at the following addresses:

Fiapp international S.r.l.: email: fiapp@fiapp.com PEC: fiappinternational@ticertifica.it

This Privacy Policy may be subject to changes and updates. Any changes will, in any case, guarantee full protection of your rights. If changes are made that may limit the guarantees for the protection of your data or your rights with respect to the current version, before the processing of your data begins according to the new methods, you will be promptly informed through the contacts.