For Aquatechnik Group S.p.A., confidentiality and the protection of personal data of those who rely on our services have always been an absolute priority.
In this document you will find described the principles on which we are based, as Data Controller of your data, in compliance with current legislation and the provisions of the European Regulation 679/2016.
Guiding principles of processing
Lawfulness of processing towards the Data Subject. Processing is lawful only when:
- the Data Subject has given informed consent;
- such processing is necessary for the implementation of a contract of which the Data Subject is a party;
- such processing is necessary to fulfil a legal obligation to which the Data Controller is subject;
- such processing is necessary for the protection of the vital interests of the Data Subject or of another natural person;
- such processing is necessary for the performance of a task of public interest or for the pursuit of the legitimate interest of the Data Controller.
Limitation of data purposes: The Data Controller undertakes to ensure that the data of the Data Subjects are collected only for specific, explicit and legitimate purposes and that processing is carried out in a manner which is compatible and consistent with these purposes.
Transparency: transparency is a quality required in the ways in which personal data are collected and used. The Data Controller, in particular, ensures that the data collected are easily accessible and that the communications relating to the processing are understandable.
Data minimisation: The Data Controller undertakes to ensure that data processing is adequate, relevant and proportional to what is necessary for the pursuit of the purposes for which such data are collected.
Data accuracy: The Owner undertakes to ensure that the data collected is correct and, where necessary, updated. Therefore, the Data Controller takes all reasonable measures to promptly delete or rectify any inaccurate data, upon notification by the Data Subject, with respect to the purposes for which they are processed.
Limitation of storage: The Data Controller undertakes to ensure that data are kept exclusively for the period necessary for the pursuit of the purposes for which they are processed.
Integrity and confidentiality: The Data Controller undertakes to ensure that data processing is accompanied by technical and organisational security measures aimed at protecting the data from unauthorised or illegal processing, from their loss, destruction or accidental damage.
Rights of Data Subjects
In compliance with EU Regulation 679/2016, you are entitled to the following: ask the Data Controller to access your personal data (art. 15), to amend them (art. 16), to delete the same or to be forgotten (art. 17), to limit the processing of personal data concerning yourself (art. 18), to the right to data portability (art. 20) or to oppose their processing (art. 21), as well as to the right not to be subjected to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or which significantly affects your person in the same way (art. 22). If the processing of personal data is based on the express consent you have provided, in compliance with art. 7 paragraph 3 of the Regulations, you are entitled, at any time, to withdraw from the newsletter reception service.
You are also entitled to lodge a complaint with the supervisory authority in charge (art. 77 of the Regulations) if you believe that the processing carried out by the Data Controller is not compliant.
Changes to this policy
The Data Controller reserves the right to modify this policy as necessary. We invite you to check this page periodically to take note of any changes.
The exercise of rights and any request that the Data Subject intends to submit to the attention of the Data Controller must be addressed to firstname.lastname@example.org.