Dear Customer,

We would like to inform you that, pursuant to Article 13 of Legislative Decree 196/2003 (Privacy Code) and Article 13 of EU Regulation 2016/679 (General Data Protection Regulation – hereinafter “GDPR 2016/679”), containing provisions for the protection of individuals and other subjects regarding the processing of personal data, the personal data you provide will be processed by ALIVER srl.

The processing of personal data will be carried out in compliance with the aforementioned regulations, particularly according to the principles of lawfulness, fairness, transparency, and the protection of your privacy and rights, with specific reference to integrity, confidentiality, personal identity, and the right to personal data protection.

Data Controller
The data controller is ALIVER srl with registered office at Viale Leopardi, 66 – 73100 Lecce. Email address for contacting the data controller: info@d-absolutedesign.it

Types of Data Collected
Providing personal data is necessary for the conclusion of contracts, their amendments, and any other relationship with ALIVER srl.

Among the personal data collected are identification data, contact details, and any data necessary for the delivery of goods.

Purpose of Data Processing
The personal data you provide will be used for the following purposes:

  • To comply with legal obligations, regulations, community legislation, and civil and tax laws;
  • To provide the requested services, fulfill any contractual obligations, and enable effective management of the relationship with the counterpart to respond to requests for information, assistance, suggestions, and/or needs you have indicated.
  • Nature of Data Provision and Legal Basis for Processing

Providing personal data is necessary for the conclusion and execution of contracts.

Any refusal to provide such data will make it impossible to proceed with the working relationship or hinder/obstruct the continuation of existing relationships.

Processing MethodsProcessing will be carried out in an automated and/or manual form, with methods and tools that respect the security measures outlined in Article 32 of GDPR 2016/679 and Annex B of the Privacy Code (Articles 33-36 of the Code), by specifically appointed subjects, in compliance with Article 29 of GDPR 2016/679. Security measures will be employed to ensure the confidentiality of the data subject to whom such data refer and to prevent unauthorized access by third parties and/or unauthorized personnel.

The data controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of personal data.

Data RetentionIn compliance with the principles of lawfulness, purpose limitation, and data minimization (pursuant to Article 5 of GDPR 2016/679), the retention period of your personal data is set for a duration not exceeding the achievement of the purposes for which they are collected and processed, while respecting the legal time limits (normally set at 10 years).

At the end of the retention period, personal data will be deleted. Therefore, after this term expires, the rights of access, deletion, rectification, and the right to data portability cannot be exercised.

Communication and Dissemination Scope
The collected data will not be disseminated. Personal data, in relation to the above purposes, may be communicated to the following categories of recipients:

  • Public entities to which data must be communicated by law (e.g., social security and welfare institutions, tax offices, etc.);
  • Public or private entities where communication is necessary or functional for our activities;
  • Our consultants, within the necessary limits to carry out their professional duties on behalf of our company.
  • Transfer of Data to Non-EU Countries

The data controller does not transfer personal data to non-EU countries; however, it reserves the right to use cloud services, and in such case, service providers will be selected among those who provide adequate guarantees as provided by Article 46 GDPR 2016/679.

Data Subject’s Rights
At any time, you may exercise, pursuant to Article 7 of the Privacy Code and Articles 15-22 of GDPR 2016/679, the right to:

  • Request confirmation of the existence of personal data concerning you;
  • Obtain information on the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom personal data have been or will be communicated, and, where possible, the retention period;
  • Obtain the rectification and deletion of data;
  • Obtain the restriction of processing;
  • Obtain data portability, i.e., receive them from a data controller in a structured, commonly used, and machine-readable format, and transmit them to another data controller without hindrance;
  • Object to processing at any time and also in the case of processing for direct marketing purposes;
  • Object to automated individual decision-making, including profiling;
  • Lodge a complaint with a supervisory authority (Privacy Authority).
  • Information Not Contained in This Policy

Further information regarding the processing of personal data may be requested at any time from the data controller using the contact details provided.