Privacy Policy pursuant to Regulation (EU) 2016/679 (GDPR)
Leonardo Network S.r.l. (hereinafter referred to as "Leonardo Network" or "the Company"), with registered office in Via dell'Argento 13, 58023 Gavorrano, Grosseto, Italy, Tel. 05661966359, VAT and C.F. 01749180533 contact mail info@leonardonetwork.eu, as Data Controller, hereby informs you, pursuant to Article 13 of EU Regulation No. 2016/679 (hereinafter, "GDPR"), that your data will be processed in the following manner and for the following purposes.
1. Data controller
The Data Controller is Leonardo Network S.r.l., with registered office in Via dell'Argento 13, 58023 Gavorrano, Grosseto, Italy. For any questions or requests regarding the processing of your personal data, please contact the Data Controller at the following email address info@leonardonetwork.eu or at the telephone number 05661966359.
2. Type of data processed
Leonardo Network collects and processes the following personal data:
- Identifying dataname, surname, address, telephone, email;
- Navigation dataIP address, operating system, browser used, website navigation data;
- Contact details: telephone number, email address;
- Other personal data possibly provided by the data subject via the contact form or other means of communication.
3. Purpose of processing and legal basis
The personal data provided will be processed for the following purposes:
- Execution of a contractto fulfil the data subject's requests and to provide the requested services;
- Legal Obligationsin order to comply with obligations laid down by law, regulation, EU legislation or an order of the Authority;
- Legitimate interestfor the exercise of the holder's rights, e.g. the right of defence in court;
- Consentto send marketing and promotional communications, where the data subject has given specific consent.
4. Modalities of processing
The processing of your personal data is carried out by means of the operations indicated in Art. 4 no. 2) GDPR, namely: collection, recording, organisation, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, deletion and destruction of data. Your personal data are subject to both paper and electronic and/or automated processing.
5. Data retention period
Personal data will be processed for the time necessary to fulfil the above purposes and in any case for no longer than 10 years after termination of the relationship for service purposes and for no longer than 2 years after data collection for marketing purposes.
6. Access to data
Your data may be made accessible for the above-mentioned purposes:
- employees and collaborators of the Controller or the companies of the Leonardo Network group, in their capacity as persons in charge and/or internal processors and/or system administrators;
- to third-party companies or other entities (by way of example, credit institutions, professional firms, consultants, insurance companies for the provision of insurance services, etc.) that perform outsourcing activities on behalf of the Controller, in their capacity as external data processors.
7. Communication of data
Without the need for express consent (pursuant to Art. 6 letters b) and c) GDPR), the Data Controller may communicate your data for the purposes set out in Art. 3 to supervisory bodies, judicial authorities, insurance companies for the provision of insurance services, as well as to those subjects to whom communication is compulsory by law for the fulfilment of the aforementioned purposes. These subjects will process the data in their capacity as autonomous data controllers.
8. Transfer of data
Personal data are stored on servers located within the European Union. In any case, it is understood that the Data Controller may also move the servers outside the EU if necessary. In this case, the Data Controller assures as of now that the transfer of data outside the EU will take place in compliance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided for by the European Commission.
9. Rights of the data subject
As a data subject, you have the rights under Article 15 GDPR, namely the rights to:
- obtain confirmation of the existence or otherwise of personal data concerning you;
- obtain information on: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applied in the event of processing carried out with the aid of electronic instruments; d) the identity of the data controller, data processors and the representative appointed under Article 3(1) of the GDPR; e) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of the data in their capacity as designated representative in the State territory, data processors or persons in charge of processing;
- obtain: a) the updating, rectification or, where interested therein, integration of the data; b) the cancellation, transformation into anonymous form or blocking of data processed in breach of the law; c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
- to object, in whole or in part: a) on legitimate grounds, to the processing of personal data concerning you, even though they are relevant to the purpose of the collection; b) to the processing of personal data concerning you for the purpose of sending advertising materials or direct selling or for the performance of market or commercial communication surveys, by automated calling systems without the intervention of an operator, by email and/or by traditional marketing methods by telephone and/or by post. It should be noted that the data subject's right to object, as set out in point b) above, for direct marketing purposes by automated means extends to traditional marketing methods and that, in any case, the data subject's right to object may also be exercised in part. Therefore, the data subject may decide to receive only communications by traditional means or only automated communications or neither type of communication.
10. Methods of exercising rights
You may exercise your rights at any time by sending:
- a registered letter with return receipt to Leonardo Network S.r.l., Via dell'Argento 13, 58023 Gavorrano, Grosseto, Italy;
- an e-mail to info@leonardonetwork.eu.
11. Minors
This Site and the Owner's Services are not intended for children under the age of 18, and the Owner does not knowingly collect personal information about minors. In the event that information about minors is unintentionally recorded, the Owner will delete it in a timely manner at the request of users.
12. Amendments to this Policy
This Policy is subject to change. We therefore recommend that you check this Policy regularly and refer to the most up-to-date version.
Date of last update: 17/06/2024