Policy pursuant to article 13 of the italian legislative decree 30 june 2003 n. 196 (“code”) and to eu regulations 679/2016 (GDPR)
Subject to the Code and the GDPR, Mashfrog S.p.A., referred to below as "Controller" of data processing, herewith provides information about the use of any personal data conferred by users visiting and/or interacting with the website.
Purpose of data processing
The user is free to provide his/her personal data, for example, to send a CV, to request informational material or for other communications. The processing of personal data can only be carried out in order to respond to requests received, under article 6.1, lett. b) of the GDPR. The provision of this data is optional, but failure to provide it may result in the request being unfulfilled.
Modality of Data Processing
Personal data is processed using manual, computerised and telematic tools, in such as way as to guarantee the safety and confidentiality of the data itself. Prevention and protection systems are used, and are continuously updated and verified for reliability.
Categories of Recipients to whoam data may be Disclosed
For the abovementioned purposes, Mashfrog SpA needs to communicate personal data to its "officers" and to “responsible” external parties. A complete list of supervisors is available at the offices of the Controller.
The data controller is Mashfrog S.p.A., located in Via Giacomo Peroni, 400 - 00131 Rome, fiscal code and VAT number 05842731001.
Rights of Data Subjects
Under article 7 of the Privacy Code and articles 15 and ss. of the GDPR, you have the right to obtain:
the confirmation of the existence or lack thereof of personal data pertaining to you, even if not yet registered, and the communication of this in an intelligible form;
a copy of your personal data;
the correction of any personal data that may be incorrect;
the deletion of your personal data;
limitations in the processing of your personal data;
in a structured format, in common use and legible by automatic device, the personal data that you provided to us or that you created yourself– excluding the judgements created by the Controller and/or by its agents, according art. 4 of the Privacy Code / by persons authorised to process data in the name of and on behalf of the Controller, according to art. 4 of the GDPR - and to transmit them, directly or through the Controller, to another data controller;
a) the origin of personal data;
b) the categories of personal data processed;
c) the purposes and modality of the processing;
d) the logic applied in case of processing carried out with the help of electronic tools;
e) the identification details of the Controller and any responsible parties;
f) the retention period of your personal data or the criteria for determining this period;
g) the subjects of categories of subjects to which personal data may be communicated or that may learn about it as appointed representative in the territory of the State, of supervisors or agents, according to art. 4 of the Privacy Code / persons authorised to process the data in the name of and on behalf of the Controller, according art. 4 of the GDPR;
h) the update, correction or, when interested, integration of data;
i) the transformation into anonymous form or the blocking of data processed in violation of the law, including that which does not need to be retained for the purposes for which the data was collected or subsequently processed;
j) the attestation that the operations referred to in letters a) and b) have been brought up, also with regard to their content, of those to whom the data has been communicated or disseminated, except in the case in which this proves impossible or involves the use of means clearly disproportionate to the protected right.
8. Furthermore, you have the right to object, in whole or in part, to:
a) for legitimate reasons, the processing of your personal data, even if pertinent to the purpose of collection;
b) the processing of your personal data for advertising materials or direct sales or for market research or commercial communication.
To exercise the abovementioned rights, you can send a message to the email address privacy@Mashfrog.com with the subject "Privacy – exercise of rights pursuant to art. 7 of the Leg. 196/2003 and art. 15 and ss. of the GDPR".
We inform you, finally, that if you feel your rights have been violated by the Controller and/or by a third party, you have the right to file a complaint with the Guarantor for the Protection of Personal Data and/or with another competent supervising authority under the GDPR.
DPO Gruppo mashfrog: Luigi Costantini