Pursuant to art. 13 of Legislative Decree 196/2003 (hereinafter “Privacy Code”) and art. 13 of Regulation 2016/679/EU (hereinafter “Regulation”) Octagona S.r.l. a socio unico, based in Via Giovanni Falcone, 3 41012 Carpi (MO), C.F. and P.IVA 02969820360 in its capacity as Data Controller, informs you in relation to the processing of your personal data.

The Regulations stipulate, first of all, that those who process personal data are obliged to inform the data subject about what data are being processed and about certain qualifying elements of the processing: it must be done with fairness lawfulness and transparency, protecting your confidentiality and your rights.

In observance of this standard, the Owner provides you with the following information:

Nature of data processed

The Controller processes your personal data (first name, last name, date and place of birth, social security number, telephone number, email), as well as data of an economic and patrimonial nature that are necessary for the performance of contractual relations, existing or future.

Purpose of processing

Your personal data will be processed for the following purposes:

1. Performance of contractual obligations relating to the provision of the requested service;
2. accounting-administrative purposes, for the purpose of managing relations with the financial administration and credit institutions, as well as to fulfill any obligations required by law;
3. Direct marketing activities.

Method of treatment

The processing of data is carried out through the use of appropriate tools and procedures to ensure their security, confidentiality and may be carried out either by means of paper media or through the use of computer media.

Legal Basis

The legal basis for processing for purpose (a) is that of Article 6 c. 1 lett. b) of the Regulation, as the processing is based on the performance of a contract or pre-contractual measures.

The legal basis for processing for the purpose b) is that of Article 6 c. 1 lett. c) of the Regulations, as the processing is necessary for the performance of legal obligations.

The legal basis for processing for purpose (c) is that of Article 6 c. 1 lett. a) of the Regulations, as the processing is based on the consent freely given by the data subject.

Scope of knowledge of your data

The following categories of individuals may become aware of your data, as Data Processors, appointed by the Data Controller:

•  consultants involved in projects related to the divisions of the writer;
•  secretary;
•  Accounting and billing clerks;
•  general affairs officers;
•  Service marketers;
•  outside consultants (for example, accountants and labor consultants).

Communication and outreach

Your data will not be disseminated by the Data Controller, by which term is meant the giving of knowledge to unspecified parties in any way, including by making them available or consulting them.

Your data may be communicated by the Controller, by which term is meant the giving of knowledge to one or more specified parties, in the following terms:

•  to subjects who can access the data by virtue of a provision of the law, regulation or EU legislation, within the limits provided by these rules;
•  to parties who need access to your data for purposes ancillary to the relationship between you and the Controller, to the extent strictly necessary to carry out the ancillary tasks (credit institutions are mentioned as examples);
•  to consultants of the Owner, to the extent necessary to carry out their assignment in the Owner's organization, subject to an assignment letter imposing a duty of confidentiality and security.

Your Rights

The Holder specifies that you can exercise the following rights:

•  Request from the Controller access to, rectification or deletion of personal data or restriction of processing;
•  oppose, in whole or in part, for legitimate reasons, the processing of personal data concerning you, even if relevant to the purpose of collection;
•  object, in whole or in part, to the processing of personal data concerning you for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication;
•  Request data portability from the Data Controller;
•  Obtain an indication of the logic applied in processing carried out with the aid of electronic instruments;
•  Propose a complaint to a supervisory authority.