Pursuant to articles 13 and 14 of European Regulation 679/2016 on personal data protection, the so-called “General Data Protection Regulation” (“GDPR”) and art. 13 of Legislative Decree (D. Lgs.) No. 196/2003, we wish to inform you that this application collects some Personal Data of its Users.
DS Group, with registered office in Corso Venezia, No. 36, 20121 – Milan (MI), and represented by its acting legal representative is the Controller of your Personal Data.
The Controller can also be contacted at the following e-mail address: firstname.lastname@example.org, in addition to the postal address indicated above for all information and/or request regarding the processing of personal data performed by the Company.
Personal Data may be freely provided by the User or, in the case of usage data, automatically collected during the use of this Site.
The computer systems and software procedures used to operate this site acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
These data, necessary for the use of web services, are also processed for the purpose of:
– obtain statistical information on the use of the services (most visited pages, number of visitors per time slot or per day, geographical areas of origin, etc.);
– monitor the proper functioning of the services offered.
Browsing data are not retained for more than seven days (except in the case of criminal investigations by judicial authorities).
Sending messages and/or CVs via the appropriate forms on the Site (e.g. ‘Contact Us’ or ‘Join Us’ forms) entails the subsequent acquisition of the data provided by the User.
Finally, the Data Controller processes data posted on the Data Controller’s social pages that the Data Controller has access to through social media features that the User enabled when registering on such platforms. The Data Controller may use and republish data that the User posts online publicly, through social media sharing tools, in accordance with the GDPR and the social media terms and conditions of use that the User has agreed to.
The Data Controller takes appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of personal data. The processing is carried out using computer and/or telematic instruments, with organisational methods and logics strictly related to the purposes indicated. The data are processed by persons authorised to process the data involved in the organisation of this Site (e.g. administrative, sales, marketing, legal, system administrators) or by external parties (e.g. third party technical service providers, hosting providers, IT companies, communication agencies) also appointed, if necessary, as data processors (hereinafter, “Data Processors“) by the Data Controller (pursuant to Article 28 of the GDPR). The updated list of Data Processors can always be requested to the Data Controller. Personal Data may also be disclosed, in accordance with the law, to police forces, judicial authorities, information and security bodies or other public entities for purposes of defence or state security or the prevention, detection or repression of crimes.
The Data are processed at the Data Controller’s offices and in any other place where the parties involved in the processing are located. Users’ Personal Data may be transferred to third countries that do not guarantee an adequate level of security in respect to European standards and for which no adequacy decision has been issued by the European Commission pursuant to Article 45 GDPR. For this reason, the Data Controller has signed with third parties intending to transfer data to such countries standard contractual clauses or another appropriate instrument pursuant to Article 46 GDPR, as well as any additional security measures.
The Controller processes the Personal Data relating to the User if one of the following conditions applies:
Note: in some legal systems the Controller may be authorised to process Personal Data without requiring the User’s consent or another of the legal bases specified below, until the User objects to such treatment (“opt-out”). Nevertheless, this is not applicable if the processing of Personal Data is governed by European legislation on Personal Data protection. However, it is always possible to request the Controller to clarify the solid legal basis for each processing operation, and in particular, to specify whether the processing is: based on the law, envisaged by a contract or necessary to conclude a contract.
The User’s Data are collected to enable the Controller to provide its Services, as well as for the purposes detailed below and where for some purposes you are required to give your consent, without which, for example, it would not be possible for us to contact you and to follow up your additional requests (for example: to inform you regarding any new services):
The provision of data for the purposes set out in paragraph b) and c) above is mandatory and is functional to the pursuit of the purposes described in paragraph 3 above. Any refusal by the User to provide such data would therefore make it impossible to reply to the User’s request for information or to follow up the User’s evaluation process for the purposes of possible employment.
Please enter your e-mail address in the form provided on this page in order to stop receiving thenewsletter, and then click the “Cancel subscription” button. An e-mail notice may be sent to the following address in the case of technical problems (normally to the party that provides the service): email@example.com.
The User is guaranteed the rights set out in Articles 15 et seq. of the GDPR, consisting essentially of the right to receive information from the Data Controller regarding the existence of the processing of one’s personal data, as well as to access one’s own data, to have them corrected, supplemented, updated or deleted; each data subject shall also have the right to obtain a copy of his/her data, to obtain a restriction of the processing and/or to object to their processing, as well as the right to data portability and to lodge a complaint with the competent supervisory authorities under the conditions and within the limits indicated in Article 13 GDPR.
Exercising the rights
To exercise these rights, the User may send a communication to the Data Controller at the address indicated in the header of the page by registered letter with acknowledgement of receipt or by e-mail to the address: firstname.lastname@example.org or by contacting the Data Protection Officer at email@example.com.