DISCLOSURE ON THE PROCESSING OF PERSONAL DATA PURSUANT TO ARTICLE 13 OF REGULATION EU 2016/679 (HEREINAFTER THE “GDPR”)
(1) Quid Informatica S.p.a., in compliance with the principles of personal data protection under Regulation EU 2016/679 or GDPR, hereby provides users with the following information pursuant to Article 13 of the GDPR, such information being valid only for the www.quidinfo.it website to the exclusion of any other website that may be visited by the user through links
(2) The Data Controller is the undersigned company Quid Informatica S.p.a., having its registered office in Florence Via Pratese 162 Email: email@example.com
(3) The Data Protection Officer is Mr Marco Iozzi who can be contacted at firstname.lastname@example.org.
(4) More specifically, Quid Informatica S.p.a. informs the users (hereinafter referred to as the “data subjects”, under Article 4(1) of the GDPR) that personal data (first name, last name, email address of users) shall be collected through the services available in the sections of the www.quidinfo.it website as listed below:
Quid News – Subscribe to our newsletter
Contacts – Contact Quid Informatica S.p.a.
Careers – Send your CV and Current Job Openings
All data are processed lawfully, fairly and in a transparent manner in relation to the data subject, in accordance with the general principles set out in Article 5 of the GDPR.
The Data Controller shall adopt specific security measures to prevent the loss of data, illegal or inappropriate use of and unauthorised access to personal data.
The processing shall be carried out using electronic means and organisational methods related to the purposes of processing the services offered as specified below.
In addition to the Data Controller, the data collected shall be processed by Quid Informatica S.p.a. staff who are duly authorised and trained in accordance with Article 29 of the GDPR. The aforesaid data may also be processed by external parties appointed as Data Processors by the Data Controller in accordance with Article 28 of the GDPR. The updated list of Data Processors can be requested from the Data Controller.
(5) “Subscribe to our newsletter” service
The newsletter of Quid Informatica S.p.a. allows users to receive information about news in the ICT field.
The following personal data (first name, last name and email address) shall be required for subscription to the newsletter. The request shall have the sole purpose of allowing Quid Informatica S.p.a., to send the newsletter to the email address as specified. Registration shall be subject to the provision of specific, free and informed consent, as required under Article 6(1)(a) of EU Regulation 2016/679.
The data shall be processed in electronic and paper-based format exclusively by personnel duly authorised and instructed by the Data Controller in accordance with the provisions of Article 29 of the GDPR. The data may be accessed for maintenance purposes only by the company that supplies the Bitvark technological platform and by its authorised staff. The data shall not be disseminated or transferred to non-EU countries.
The data shall be stored until a request for cancellation from the newsletter service is submitted, which request can be made at any time by following the appropriate link in the newsletter.
The provision of data shall be optional and the service offered through the newsletter is free. Failure to provide the email address and failure to consent to the processing of data will make it impossible for Quid Informatica S.p.a. to send the newsletter and for the person concerned to receive it. Data processing does not involve user profiling.
(6) “Contact Quid Informatica S.p.a” Service
This page allows data subjects to ask Quid Informatica S.p.a. Secretary’s Office to be contacted. Individually identifiable information and email address shall be required. The purpose of such request is to allow Quid Informatica S.p.a. to respond to inquiries made by data subjects via the form on the web page.
Submitting a request shall be subject to specific, free and informed consent (Article 6(1)(a) of the GDPR) as signified by selecting the appropriate checkbox (Article 7(1) of the GDPR).
The data shall be processed exclusively by staff duly authorised and trained in the processing of data as under Article 29 of the GDPR. The data shall not be disseminated or transferred to non-EU countries. The data shall be stored for a period of time consistent with the purpose of collection. Providing the data in the required fields shall be deemed to be necessary in order to obtain a response, while the optional fields shall be intended to provide the staff of Quid Informatica S.p.a. with additional information to expedite contact. No profiling shall be done
(7) “Send your Curriculum” and “Job Openings” service
By accessing dedicated web pages, users may, if they wish, send their curriculum to submit their professional application to Quid Informatica S.p.a. User shall be entirely responsible for the relevance and accuracy of the data sent. The CV shall be sent through the Allibo platform provided by Alliance Software s.r.l. and shall be subject to specific, free and informed consent to the processing of personal data in accordance with Article 6(1)(a) of the GDPR as signified by selecting the appropriate checkbox (Article 7(1) of the GDPR). Alliance Software s.r.l., has been appointed by Quid Informatica S.p.a., as Data Processor and shall be allowed to perform processing operations only for software maintenance activities. The data relating to CVs shall be processed by Quid Informatica S.p.a. for recruiting purposes only by personnel duly authorised and trained in the processing of data under Article 29 of the GDPR. The data shall not be disseminated or transferred to non-EU countries. The data shall be stored for a period of time consistent with the purpose of collection. Providing the data in the required fields shall be deemed to be necessary in order to successfully submit the form, while the optional fields shall be intended to provide the staff of Quid Informatica S.p.a. with additional information to expedite contact.
(8) Cookies and navigation data
(9) User Rights
Users can exercise all the rights under Articles 15-21 of the GDPR (right of access, rectification, cancellation, restriction, portability, opposition), and they may revoke a consent previously given. In case of failure to respond to their requests, data subjects may lodge a complaint with the Supervisory Authority for the protection of personal data (Article 13(2)(d) of the GDPR) by sending an email to the Data Controller at email@example.com.
(10) Policy update