PERSONAL DATA PROTECTION POLICY

In compliance with the obligations deriving from the national legislation (Personal Data Protection Code, coordinated and updated, most recently, with the amendments made by Law no. 160 of 27 December 2019, Legislative Decree no. 53 of 14 June 2019, Ministerial Decree of 15 March 2019 and Legislative Decree of 10 August 2018 no. 101) and European legislation (General Regulation for the Protection of Personal Data 2016/679), we wish to inform you that the personal data that you, as a “data subject”, have already provided or acquired and that you may provide in the future will be processed in accordance with the aforementioned legislation and the confidentiality obligations to which Soc Coop U.A.R.A. is committed.

Data Controller and Data protection officer

The Data Controller and Data Protection Officer is:
Soc Coop U.A.R.A.
Registered Office: Viale Giulio Cesare, 71 – 00192 Rome
P.IVA 01272541002 – C.F. 03992920581
E-mail: info@limousineuara.com – Telephone: +39 06.67.92.320

Purpose of the data processing

The personal data you provide is necessary for

1. Sending information on the services marketed by the data controller
2. Sending commercial offers for services marketed by the data controller
3. Management of contractual or pre-contractual administrative data

They are collected and processed electronically and/or mechanically for the purpose of:

1. Activating and maintaining against the Client the procedures for the execution of what is requested;
2. Creating and maintaining a private customer file;
3. Creating and maintaining a public works archive (which may show: images of works, Client’s business name, Client’s web address);
4. Profiling activities to send personalized communications or to offer products or services responding to the user’s consumption habits

If not provided they will not allow the fulfillment of what has been requested;

They are processed by the Supplier itself or by its appointees for the sole purpose of ensuring the performance of the agreed services;

They may be communicated, in order to ensure the execution of the contract, to third parties, but will not be sold or exchanged.

Legal basis for data processing

Soc Coop U.A.R.A. processes your personal data lawfully, when the processing:

- is necessary for the performance of a mandate, a contract to which you are a party or the performance of pre-contractual measures taken upon request;
- is necessary to comply with a legal obligation incumbent on the controller; or
- is based on express consent for the purposes of sending newsletters, profiling activities, sending personalised communications or offering products or services tailored to the user’s consumption habits.

Processing and Storage methods

The processing is carried out by automated and/or manual means, in compliance with the provisions of Art. 32 of GDPR 2016/679 regarding security measures, by specially appointed persons and in compliance with the provisions of Art. 29 of GDPR 2016/679. There is no automated decision-making, including fully automated profiling as referred to in Article 22(1) and (4) of EU Regulation 2016/679.

We point out that, in accordance with the principles of lawfulness, purpose limitation and data minimisation, pursuant to Art. 5 GDPR 2016/679, and subject to your free and explicit consent expressed at the foot of this notice, your personal data will be kept for the period necessary to achieve the purposes for which they were collected and processed, and in any case no longer than the periods established by the relevant tax, labour and social security regulations and the Civil Code, and for a further ten years.

Scope of communication and diffusion

We would also like to inform you that the data collected will never be disseminated or communicated without your express consent, except for necessary communications that may involve the transfer of data to public bodies, consultants expressly appointed and instructed by the data controller or other parties for the fulfilment of contractual and legal obligations.

Personal data may be communicated to third parties such as:

- Facebook and Instagram (Meta Platforms, Inc.)
- WhatsApp Web and WhatsApp Business (WhatsApp, LLC)
- X
- Google LLC: (including: Google Analytics, Google Drive, Google Maps, YouTube, Android, Google Search, Google Ads, Google My Business, Google Calendar, Google Photos, Google Image Search, Google Chrome, Gmail, Google Translator, ReCaptcha, Chrome OS, etc.)
- Google Fonts: Regarding the Google Fonts service, it is clarified that this site guarantees its local use, downloading fonts from the Google Fonts library on the site’s server, thus avoiding the reading and collection of your personal data by Google.
- 123formbuilder (123 Formbuilder S.r.l)
- Aruba Business s.r.l.
- G.A.S.P.
- Aruba Electronic Invoicing
- Hosting per te (Armada di Mascio Fabio)

In this case, the use by third parties will take place in full compliance with the principle of fairness and the provisions of the law. As for Your images (photos or audio-video footage), they may be processed on the Google Image Search site or other search engines.

Erroneous or non-communication

The data controller informs you that any failure to provide, or inaccurate provision of, any of the mandatory data will have the effect of making it impossible for the data controller to ensure that the processing itself is in compliance with the contractual agreements for which it is carried out. With regard to personal data related to the execution of the contract to which you are a party or related to the fulfilment of a legal obligation (e.g. obligations related to the keeping of accounting and tax records), the failure to communicate personal data prevents the execution of the contractual relationship itself.

Communication of personal data

Soc Coop U.A.R.A. may transfer your personal data to third parties located in countries outside the European Union or the European Economic Area.In this case, such third parties will be appointed as data processors in accordance with and for the purposes of Article 28 of the GDPR and the transfer of your personal data to such parties, limited to the performance of specific processing activities, will be regulated in accordance with the provisions of Chapter V of the GDPR.

Therefore, all necessary precautions will be taken to ensure adequate protection of your personal data by relying on: (a) adequacy decisions of third country recipients expressed by the European Commission; (b) adequate safeguards expressed by the third country recipient in accordance with Article 46 of the GDPR; and (c) the adoption of binding corporate rules. Users can request information on such safeguards by sending a request to info@limousineuara.com

Following the judgment of the Court of Justice of the European Union of 16 July 2020 in Case C-311/18, with regard to third countries that are not recipients of one of the adequacy decisions of the European Commission, Soc Coop U.A.R.A. is making specific assessments regarding the additional guarantees to be adopted in order to prevent interference by local public authorities that could undermine the level of essential equivalence of data protection transferred there, compared to the level enjoyed under European law.

Special categories of personal data

Pursuant to Articles 9 and 10 of the EU Regulation No. 2016/679, You may provide, to the data controller, data that qualify as “special categories of personal data” and namely those data revealing “racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data intended to uniquely identify a natural person, data relating to the health or sex life or sexual orientation of the person.” These categories of data may be processed only with your free and explicit consent, given in writing at the foot of this notice.

Existence of automated decision-making, including profiling

The data controller does not use automated decision making, including profiling, as referred to in Article 22(1) and (4) of EU Regulation No 679/2016.

Redirect to external websites

The website may use social plug-ins. Social plug-ins are special tools that allow social networking features to be embedded directly into the Website (e.g. Facebook’s “like” function).

All social plugins on the website are marked with the logo of the social networking platform (e.g. Facebook, Google, Twitter, Linkedin, Instagram, WhatsApp).

When you visit a page on our site and interact with the plugin (e.g. by clicking the “Like” button) or decide to leave a comment, the corresponding information is transmitted directly from your browser to the social networking platform and stored there.

For information about the purpose, nature and manner of collection, processing, use and storage of personal data by the social networking platform, as well as how to exercise your rights, please refer to the privacy policy of the individual social networking platform.

Cookie Policy

This website uses technical cookies to ensure the correct functioning of procedures and to improve the experience of using online applications. Technical cookies that do not require consent. However, your consent is required for so-called profiling cookies, for which you can modify or revoke your consent in whole or in part. For full information on the use of cookies and how to manage them, please click here

Rights of the data subject under Articles 15, 16, 17 18, 20, 21 and 22 of EU REG. 2016/679

We would like to inform you that as a data subject, in addition to the right to lodge a complaint with a supervisory authority, you also have the rights listed below, which you may exercise by making a written request to the data controllers.

Article 15 – Right of access
The data subject shall have the right to obtain from the data controllers confirmation as to whether or not personal data concerning him or her are being processed and, if so, access to such personal data and information concerning the processing.

Article 16 – Right of rectification
The data subject shall have the right to obtain from the data controllers the rectification of inaccurate personal data concerning him or her without undue delay. Taking into account the purposes of the processing, the data subject has the right to obtain the integration of incomplete personal data, including by means of a supplementary declaration.Article 17 – Right to erasure (right to be forgotten)

The data subject shall have the right to obtain from data controllers the erasure of personal data concerning him or her without undue delay, and data controllers shall be obliged to erase personal data without undue delay.

Article 18 – Right to limitation of processing
The data subject shall have the right to obtain from controllers the restriction of processing in any of the following cases (b) the processing is unlawful and the data subject objects to the erasure of the personal data and requests instead that their use be restricted; (c) although the controllers no longer need the personal data for the purposes of the processing, the personal data are necessary for the establishment, exercise or defence of legal claims; (d) the data subject has objected to the processing in accordance with Article 21(1) pending verification of whether the controller’s legitimate grounds prevail over those of the data subject.

Article 20 – Right to data portability
The data subject shall have the right to obtain in a structured, commonly used and machine-readable format personal data concerning him or her which have been made available to a controller and the right to transmit those data to another controller without hindrance from the controller to whom he or she has made them available. When exercising his or her right to data portability under paragraph 1, the data subject shall have the right to obtain the direct transmission of personal data from one controller to another, where technically feasible.

Article 21 – Right to object
The data subject shall have the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her under Article 6(1)(e) or (f), including any profiling carried out on the basis of those provisions.

Article 22 – Right not to be subject to automated decision making, including profiling
The data subject shall have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or which affects him or her in a similarly significant way. To exercise your rights under Articles 15 et seq. of Regulation 2016/679, please write to info@limousineuara.com for the attention of the Data Controller.

You may exercise your rights by sending a written request to Soc Coop U.A.R.A. at the postal address of its registered office or at the e-mail address info@limousineuara.com.

Right to lodge a complaint (Art. 13.2.d Regulation 679/2016/EU)

The data subject is advised that they have the right to lodge a complaint with a supervisory authority (especially the Italian Data Protection Authority www.garanteprivacy.it).

Changes to the information notice

The possible entry into force of new industry regulations, as well as the constant review and updating of services to the user, may result in the need to change the methods and terms described in this Policy. It is therefore possible that this document may change over time. We therefore encourage you to consult this page periodically. We will post any changes to this Policy on this page and, if the changes are material, we will provide you with a more visible notification.

Having been informed:

– Of the identity of the data controller
– Of the identity of the data protection officer
– Of the extent, manner in which the processing takes place
– Of the purposes of the processing for which the personal data are intended

◻ I give my consent ◻ I do NOT give my consent

pursuant to and for the purposes of Article 7 et seq. of Regulation (EU) 2016/679 to the processing of personal data in the manner and within the limits set forth in the attached information including those considered as special categories of data.

Privacy Policy