Pursuant to Article 13 of Regulation 2016/679/EU (hereinafter “Regulation”), Octagona S.r.l. a socio unico, with registered office at Via Giovanni Falcone, 3 41012 Carpi (MO), Tax Code and VAT number 02969820360, in its capacity as Data Controller, hereby informs you that your personal data will be processed for:

a) allow the Data Controller to manage the organization of events (workshops, training courses) for which the data are collected;

b) allow the Data Controller to send newsletters, commercial communications, and/or informational material about the products and services offered via email, mail, and/or telephone contacts;

c) consent to the Data Controller the use of images, name, and voice through photographic and/or audiovisual recordings for educational and promotional purposes, both through channels prepared for this use and via the website or social networks.

The legal basis is legitimate interest for the purposes referred to in point a).

The legal basis is the freely given consent of the data subject for the purposes referred to in points b) and c): any refusal, in whole or in part, to provide the data or the inexact or untruthful provision of the same will make it impossible to process the data.

The treatment may concern all operations indicated by art. 4, no. 2 of the “Regulation”.

In all cases, the principles and limits of fairness, lawfulness, purpose, quality, relevance, nonexcessiveness and transparency will be observed.

Personal data will be processed directly by the Owner's organization with automated tools for the time strictly necessary for the purposes mentioned in points (a), (b) and (c) of this policy and will be kept in electronic and/or paper files for a period of 5 years.

The data will not be disclosed to third parties, except in the case of point c) for which the processing will be carried out with logic strictly related to the stated purposes and in a manner that ensures confidentiality.

The data subject has the right to:

• request access to personal data from the Data Controller, rectification or erasure of such data, or restriction of processing;
• object to their treatment;
• Request data portability from the Data Controller;
• withdraw consent at any time without prejudice to the lawfulness of the processing based on the consent previously given;
• file a complaint with a supervisory authority;
• knowledge of the existence of automated decision-making, information about the logic used, and the intended consequences of processing.