FOR PERSONS WORKING WITHIN PUBLIC ENTITIES
PURSUANT TO ART. 13 and 14
OF THE REGULATION (EU) 2016/679 (GDPR)
DATA TYPES AND SOURCE OF DATA
Your personal data are made up of common data such as personal data, the employer details (Public Entity), the registered and employment office, the competent offices of the individual business, your digital and telephone details. Personal data may be processed for the following purposes:
- participation in tender procedures, projects promoted by public entities, requests for funding and other projects involving public entities
- legal obligations related to the above purposes or to the general conducting of business operations
- cyber security
- any defensive needs.
Your data may be collected directly from you, or from your employer in documents concerning us, public documents or on the entity’s institutional Web site where such data are made available for the sole purpose of facilitating communication with public subjects.
The processing’s legal basis is constituted by the legitimate interest of ITALTEL to pursue its core business and, more generally, its business activities.
PROCESSING METHODS AND PROTECTION
The processing will be done using manual and/or computerized and digital instruments, suitable to guarantee the security and confidentiality of the data. The data will be processed for timebarred period to not only allow for the realization of the activities in which they were collected as indicated above but also to provide proof of the implementation of the same to all the competent authorities. The period of data retention, then, will depend exclusively on the legal obligations on the behalf of the Data Controller.
The provision of data is optional but necessary to allow ITALTEL to pursue the purposes for which they are collected, or for the participation in tenders, project financing and other natures in which ITALTEL intends to participate, fulfilment of legal obligations related to the above activities, as well as to general company activities. The treatment could also be carried out in the presence of defensive needs, in this case, there is a legitimate interest of the Date Controller. In the presence of processing carried out by the Data Controller to pursue its legitimate interests, the data subject always has the right to object. The Data Controller, in the event of exercising the right to object by the data subject , refrains from further processing of personal data unless he/she demonstrates compelling legitimate grounds for the processing that overrides the interests, rights and freedoms of the data subject for the assessment, exercise or defence of a legal claim.
Your data can be transferred to:
- public administrations for legal compliance
- third parties to ensure the right of defence, or to judicial authorities in compliance with similar orders.
These subjects will work as autonomous Data Controllers. The data in question may be communicated to other parties only if necessary for the purposes of the prevention, detection or repression of crime in compliance with the regulations governing the matter.
Your data will not be transferred abroad.
At any time, you may exercise your rights towards the Data Controller referred to in Chapter III of the GDPR, such as the right of access, rectification, integration, erasure, processing restriction, portability and the right to object in the presence of the legal conditions.
The right to object (opt-out) the processing for direct marketing can be invoked at any time to the processing inherent in the purpose of promotion.
In order to assert your rights, you shall send a communication to the registered address of ITALTEL by specifying the subject “Privacy” to the recipient. Alternatively, such communication can be transmitted via email to the email address firstname.lastname@example.org, or by contacting the Data Protection Officer (DPO) by sending an email to the email address email@example.com. In the same manner, you can request the list of internal and external processors.
Finally, please remember that you may lodge a complaint before the Guarantor for the protection of personal data (www.garanteprivacy.it).
Settimo Milanese, 25 May 2018