Data privacy notice for customers

MATIC PLAST MILANO s.r.l.

DATA PRIVACY NOTICE FOR CUSTOMERS
Notice pursuant to Article 13, UE Regulation 2016/679
(General Data Protection Regulation)

Dear customer, MATIC PLAST MILANO S.R.L., located in via G. Garibaldi, 62, 20061, CARUGATE (MI), VAT identification number IT06964710963, as Controller of the processing of your personal data pursuant to Article 13 of the EU General Data Protection Regulation 2016/679 (hereinafter “GDPR”) informs you that your personal data will be processed on the basis of the following ways and purposes:

 

1. Definitions

For the purposes of this privacy notice:

  •  “Personal data” (hereinafter “Data”) means any information relating to the customer in its quality as natural person who can be identified, directly or indirectly by reference to a name, an identification number, or to one or more characteristics of its physical, economic or social identity;
  • “Processing” means any operation performed on personal Data, whether or not by automatic systems applied to the Data, such as collecting, recording, extracting, consulting or communication of the mentioned Data by transmission, cancellation etc…;
  • “Controller” means the legal person which determines the purposes and the means of Processing of Data (in this case, MATIC PLAST MILANO S.R.L. is the Controller);
  • “Legitimate Interest”: the interest of the Controller or of a third party which is appropriate to legitimate Processing of Data of customers, provided that the interests or the  fundamental rights and freedoms of customers are not overriding, taking into consideration the reasonable expectations of customers based on their contractual relationship with the Controller.

 

2. Identity and address of the Controller

The Controller is the company MATIC PLAST MILANO SRL – Via G. Garibaldi, 62 – 20061, CARUGATE (MI) – VAT identification number IT06964710963 in the person of the legal representative pro tempore.

 

3. Data subject to Processing

The Controller processes the Data you have communicated for the following purposes:

  • negotiations of commercial agreements;
  • drafting of selling offers/subscription of selling agreements;
  • management of customers orders.

 

4. Purpose of Processing

Processing of Data you have communicated only aims to the following activities:

  • execution of obligations arising from a contract to which the customer is party or in order to fulfill specific requests of the customer, before or after the execution of the contract;
  • management of customers (contracts, orders, invoices, or any other accountant documentation);
  • management of litigation (breaches of contract, injunctions, transactions, debt collection, arbitrations, legal disputes);
  • fulfillment of legal obligations of administrative, civil, accounting and fiscal nature arising from national, supranational and EU legal framework.

 

5. Legal basis of Processing and non-communication of Data

Except for the fulfillment of legal obligations, which is an independent legal basis, the legal basis of Processing of your Data is the legitimate Interest of the Controller to process these Data for the purposes mentioned in the paragraph above, taking into account that, according to the careful evaluation of the Controller, this Processing, for its purposes and modalities, can’t cause a violation of the interests or the fundamental rights and freedom of customers. Furthermore, customers can reasonably expect this kind of Processing with regard to the object and the purpose of their contractual relationship with the Controller.

The non-communication of Data for the mentioned purposes prevents the finalization of the
contractual relationship as well as further obligations connected to the contractual relationship.

 

6. Modalities of Processing and Data storage

With regard to the mentioned purposes, Processing of Data will be carry out in accordance with the provisions of the GDPR and of the legislative decree n. 196/03 and subsequent amendments. In particular, Processing operations will be carry out in a fairly, lawfully and transparent manner, ensuring the logical and physical security and the data confidentiality through both procedural and electronic measures. Data will be subject to Processing in paper and electronic form. Data won’t be subject to decision based solely on automated Processing. The Controller will store your Data, as provided for in law in force, for the period strictly necessary with regard to specific purposes Data have been collected for.

 

7. Recipients or categories of recipients of Data

Processing will be carry out by staff members specifically assigned in relation to their tasks.
Furthermore, Data may be communicated to:

  • third parties in charge for Processing on behalf of the Controller (such as accountant, shippers, carriers) and assigned to specific Processing operations
  • third parties who have the right to access Data under law or regulation provisionsall natural and legal persons and public authorities in case the communication is necessary or
  • functional in relation to business activities according to the modalities and purposes mentioned above.

Your Data won’t be spread.

 

8. Rights of Customers

Customers may exercise, at all times, the rights referred to in following Articles of the GDPR:

  • 15 (right of access)
  • 16 (right to rectification)
  • 17 (right to erasure – right to be forgotten)
  • 18 (right to restriction of processing)
  • 20 (right to Data portability)
  • 21 (right to object)

 

9. Modalities for the exercise of rights

Customers may exercise their rights listed in the previous paragraph sending:

 

10. Right to lodge a complaint with a supervisory authority

Customers shall have the right to lodge a complaint, addressing the “Garante per la protezione dei dati personali” (Data Protection Supervisor), if they consider that Processing of Data relating to them infringes the GDPR. Further information is available on the website www.garanteprivacy.it.

Il Presidente, Giovanni Patti