Privacy Policy

  1. Home
  2. Privacy Policy

Privacy Policy

Privacy Policy  - Users Section

The undersigned company, Sirec S.p.A., owner of the website https://www.sirec.it/ (hereinafter referred to as the "Site"), in its capacity as data controller of the personal data of the users of the Site (hereinafter referred to as the "Users"), hereby provides the following privacy policy in accordance with Article 13 of EU Regulation 2016/679 of 27 April 2016 (hereinafter referred to as the "Regulation" or the "Applicable Law").

This Site and the services that may be offered through the Site are reserved to subjects who have reached the age of eighteen. The Data Controller therefore does not collect personal data relating to individuals under the age of 18. At Users’ request, the Data Controller will promptly delete all personal data involuntarily collected relating to individuals under the age of 18.

The Data Controller takes the right to privacy and the protection of its Users' personal data into the utmost consideration. For any information related to this privacy policy, Users may contact the Controller at any time, using the following methods:

  • By sending a registered letter with return receipt to the Holder's registered office in Via Sacca, 60/1 Colorno (Parma)
  • By sending an e-mail message to the following addresses: PEC sirecspa@legalmail.it; e-mail sirec@sirec.it

1. Category of processed data:

The data subject to this processing are the following:

  • all personal data whose transmission is implicit in the use of Internet communication protocols, which the computer systems and software procedures used to operate the Site acquire in the course of their normal operation: IP addresses or domain names of the computers used by Users, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User's operating system and computer environment; the User's operating system and computer environment; the data obtained by the Site and the data processing system used to process the request. ) and other parameters relating to the User's operating system and computer environment;
  • personal identification data (e.g. first name, surname, e-mail address, telephone number, country, company name, location, IP address, log files, ect);
  • any further data of the User that may be voluntarily published in the ‘contact us’ section;
  • further data, including those pursuant to Article 10 GDPR, possibly and voluntarily entered in the personnel search and selection form.

2. Purpose of processing

Users' personal data will be lawfully processed by the Controller in accordance with Art. 6 of the Regulation for the following purposes:

  • provision of the service, i.e. to allow the User to browse the Site. The User's data collected by the Owner for this purpose include all data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to allow it to function properly. Without prejudice to what is provided for elsewhere in this privacy policy, under no circumstances will the Data Controller make Users' personal data accessible to other Users and/or third parties.
  • to process the User's request via the contact form: the personal data of Users are collected and processed by the Controller for the sole purpose of processing their request. The User's data collected by the Controller for this purpose include: first name, last name, role, company, province, address, email and telephone number published in the ‘contacts’ section. No other processing will be carried out by the Controller in relation to Users' personal data. Without prejudice to what is provided for elsewhere in this privacy policy, under no circumstances will the Controller make Users' personal data accessible to other Users and/or third parties.
  • processing Work with Us requests: activities connected with or instrumental to the company's internal selection processes in order to assess the candidates' profiles in relation to employees, trainees or collaborators who have been assigned professional work assignments; evaluation and preservation of CVs.
  • newsletter subscription: the User shall receive from the Controller, subject to his/her free consent, a periodic newsletter containing information in relation to news relevant to the sector concerning the Controller's activities or, to present offers, promotions and commercial opportunities of the Controller. For the activation of the aforementioned service, users' personal data will be requested and used, including: name, surname, company, role, telephone and email.
  • administrative-accounting purposes, i.e. to carry out activities of an organisational, administrative, financial and accounting nature, such as internal organisational activities and activities functional to the fulfilment of contractual and pre-contractual obligations.
  • legal obligations, i.e. to comply with obligations laid down by law, authority, regulation or legislation and to ascertain liability in the event of hypothetical computer crimes against the Site
  • execution of a contract, where the processing is necessary for the performance of a contract with the User and/or the execution of pre-contractual measures

However, it is always possible to ask the Controller to clarify the concrete legal basis of each processing operation and in particular to verify whether the processing is based on law, required by a contract or necessary to conclude a contract.

The provision of personal data for the above-mentioned processing purposes is optional but necessary, as failure to provide such data will make it impossible for the User to make his/her request to the Controller.

Personal data that are necessary for the pursuit of the processing purposes described in this point 2) are indicated with an asterisk in the request form.

3. Data processing methods and storage times

The Data Controller will process the Users' personal data by means of manual and computerised tools, with criteria strictly related to the purposes themselves and, in any case, in such a way as to guarantee the security and confidentiality of the data.

The personal data of the Site's Users will be kept for the time strictly necessary to fulfil the primary purposes set out in point 2) above, or in any case as long as necessary to protect the interests of both the Users and the Data Controller under civil law.

4. Scope of communication and disclosure of data

The subjects in charge of managing the Site and the Users‘ requests may become aware of the Users’ personal data. These subjects, who have been instructed to do so by the Data Controller pursuant to Article 29 of the Regulations, will process the User's data exclusively for the purposes indicated in this information notice and in compliance with the provisions of the Applicable Regulations..

Users' personal data may also be disclosed to third parties who may process personal data on behalf of the Data Controller in the capacity of “External Data Processors”, such as, by way of example, suppliers of IT and logistics services functional to the operation of the Site, suppliers of outsourcing or cloud computing services, professionals and consultants.

Users have the right to obtain a list of any External Processors appointed by the Controller by making a request to the Controller in the manner indicated in point 6) below

5.Data transfer

Data collected in connection with the aforementioned purposes are not transferred to non-EU countries. The data controller, however, reserves the right to use cloud services; in which case, the service providers will be selected from among those who provide adequate guarantees, as provided for in Article 46 of EU Regulation 2016/679.

6. Rights of Interested Parties

Users may exercise the rights guaranteed to them by the Applicable Legislation by contacting the Data Controller in the following ways:

  • By sending a registered letter with return receipt to the Holder's registered office in Via Sacca, 60/1 Colorno (Parma)
  • By sending an e-mail message to the following addresses: PEC sirecspa@legalmail.it; e-mail sirec@sirec.it
  • access to personal data in order to know (‘responsive transparency’) the purposes of the processing, the categories of personal data collected, the recipients of the data communication, in particular if they are recipients from third countries or international organisations, the period of data retention provided for (art. 15)
  • obtain rectification (Art. 16);
  • the right to obtain the deletion of personal data if they are no longer necessary in relation to the purposes for which they were collected and if there is no further legal need for their storage (Art. 17 GDPR);
  • request restriction of processing (Art. 18);
  • request data portability (Art. 20);
  • right to object to processing for reasons related to your particular situation (Art. 21 GDPR). In this case, we will refrain from further processing your data unless you demonstrate the existence of compelling legitimate grounds for processing (e.g. for the defence of your rights in court).
  • not to be subject to automated decision-making, including profiling (Art. 22);
  • to withdraw consent at any time without prejudice to the lawfulness of the processing based on consent given before the revocation (Art. 7).

Finally, the data subject shall have the right to file a complaint with the Supervisory Authority pursuant to Article 13(2)(d) of the aforementioned Regulation as well as pursuant to Article 77 of the Regulation.

The Italian Data Protection Authority is the Garante per la protezione dei dati personali, with head office in Piazza Venezia 11, 00186 - Rome(http://www.garanteprivacy.it/).

For anything not provided for in this information notice, please refer to Regulation (EU) 2016/679 to Legislative Decree 196/03 as amended by Legislative Decree 101/2018 as amended, as well as any other measure issued by the Italian Data Protection Authority (‘Garante’).

The Data Controller is not responsible for updating all the links displayed in this Privacy Policy, therefore whenever a link is not working and/or updated, Users acknowledge and accept that they must always refer to the document and/or section of the websites referred to by said link. In case of non-acceptance of the changes made to this Privacy Policy, the User shall cease using https://www.sirec.it/ and may request the Data Controller to remove his/her Personal Data. Unless otherwise specified, the previous privacy policy shall continue to apply to the Personal Data collected up to that point.

.

Informative

We and selected third parties use cookies or similar technologies for technical purposes and, with your consent, also for other purposes as specified in the cookie policy. If you close this banner by ticking or clicking on "Decline", only technical cookies will be used. If you want to select the cookies to be installed, click on "Customize". If you prefer, you can consent to the use of all cookies, including those other than technical, by clicking on "Accept all". You can change your choice at any time.