Working Hours Mon - Sat 0900 - 1900

Users Privacy Policy

Home  |  Users Privacy Policy

PRIVACY

PURSUANT TO ART. 13 EU REG. 2016/679 (GDPR)

Mod. Website User Information REV. 00 of 12/19/2024

Dear User,

Enter Med S.r.l. provides information on the processing of personal data acquired, including verbally, directly or through third parties, relating to you, necessary for the performance of administrative, accounting, management and contractual services connected with or deriving from the execution of the contract. This information is provided pursuant to the provisions of art. 13 of EU Reg. 2016/679 (so-called “Tax Return”). GDPR).

  1. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER.

The Data Controller (hereinafter also referred to as the “Data Controller”) is Enter med S.r.l., with registered office in Palermo (90142 – PA) Via Guido Jung, 14, P.IVA 06005330821, tel. +39 0917713000, e-mail gdpr@entermed.it , PEC entermedsrl@cgn.legalmail.it

  1. PURPOSE OF DATA PROCESSING.

Your personal data will be processed for the following purposes:

  1. replying to messages sent through the form on the website and/or through the additional contacts published or, possibly, stipulating and executing a contract and all the activities related to it, such as, by way of example, invoicing, credit protection, administrative, managerial, organisational and functional services to the contractual relationship (including the fulfilment of pre- and/or post-contractual obligations);
  2. fulfilment of obligations under national and/or EU laws, regulations, regulations on contractual, accounting and tax matters and to achieve effective management of commercial relations and other provisions issued by authorities appointed by law and by supervisory and control bodies;
  3. if necessary, to ascertain, exercise or defend the rights of the Data Controller in court (“Security Purposes”).
  1. LEGAL BASIS OF THE PROCESSING.
  • Given that the processing of data is necessary to follow up on a request sent through the forms or contacts on the site, as well as for the possible execution of a contract to which you are a party or the execution of other pre-contractual measures adopted at your request, the legal basis of the processing is that provided for in art. 6 para. 1 lit. B) GDPR and therefore the fulfilment of a contract, as well as art. 6, para. 1 lit. C) GDPR with regard to the fulfilment of legal obligations inherent in or arising from the contract.
  • For the Security Purposes, the legal basis is the legitimate interest pursuant to Article 6, paragraph 1, letter F) to be able to ascertain, exercise and defend a right in court.
  1. METHODS OF DATA PROCESSING.

The processing will be carried out using electronic, computerised or automated tools, as well as paper tools.

The processing is carried out by the Data Controller and by the Data Controller’s collaborators and/or employees as data processors, by the system administrator, as well as by the data processors specifically identified in writing, within the scope of their respective functions and in accordance with the instructions given by the Data Controller, ensuring the use of suitable measures for the security of the data processed and guaranteeing their confidentiality.

According to the rules of the Regulation, the processing carried out by the data controller will be based on the principles of lawfulness, fairness, transparency, limitation of purposes and storage, data minimization, accuracy, integrity and confidentiality.

The data will always be processed in full compliance with the principle of confidentiality even in the case of management of the same by third parties expressly appointed by the Data Controller.

Your data is not subject to any automated decision-making.

  1. RETENTION PERIOD.

Your personal data will be stored during the execution of the contract and for a period of ten years following the termination/completion of the same in order to comply with tax and accounting obligations, as well as for judicial protection in the event of disputes arising from the contract itself.

This is without prejudice to cases in which the rights deriving from the contract should be asserted in court; in which case the personal data of the Data Subject, exclusively those necessary for these purposes, will be processed for the time necessary for their pursuit.

For the Security Purpose, the data will be stored until the same is pursued, except for further storage if it is necessary for the defense of the rights of the Data Controller.

After the expiry of the storage terms indicated above, the data will be destroyed, deleted or made anonymous, compatibly with the technical procedures of deletion and backup.

This information will also be considered valid for subsequent contacts that may be concluded with the Data Controller.

  1. RECIPIENTS OF PERSONAL DATA.

The personal data you provide may come to the knowledge of the Data Controller, the persons in charge and/or the data processors. The list of Data Processors, where appointed, is available on request.

The communication of the Data Subject’s personal data takes place mainly to third parties and/or recipients whose activity is necessary for the performance of the activities inherent in the execution of the contractual relationship established and to respond to certain legal obligations, such as, by way of example, subjects who process the data in execution of specific legal obligations (national and government bodies,  etc.), any trade associations to which the company has belonged, credit institutions, financial companies and other credit intermediaries that provide services functional to the purposes described above, software and hardware assistance companies, companies or professionals for the judicial or extrajudicial protection of the rights of the Data Controller.

  1. DISSEMINATION OF DATA.

Unless you specifically request in writing, or precise order of the General Manager/regulatory obligation, the personal data you provide are not subject to dissemination.

  1. TRANSFER OF DATA ABROAD.

The data collected will not be transferred to third countries or international organizations.

  1. RIGHTS OF THE DATA SUBJECT.

The legislation grants the Data Subject the exercise of specific rights listed in art. 15 to 22 of the GDPR, including the right to obtain from the Data Controller confirmation, or not, of the existence of personal data (i.e. access), their provision in intelligible form, as well as the rectification or erasure of the same, or to limit the processing of personal data in whole or in part or to object to the same for legitimate reasons and/or to withdraw consent to the processing at any time (without prejudice to the consequences indicated),  or to request the portability of their data with regard to the data subject to specific consent, or even to update it.

The data subject has the right to know the origin of the data, the purpose and methods of processing, the logic applied to the processing, the identification details of the data controller and the subjects to whom the data may be communicated.

The Data Subject also has the right to request the transformation into anonymous form, limitation or blocking of data processed in violation of the law; he or she may also lodge a complaint regarding the unauthorized processing of data provided to the Guarantor for the Protection of Personal Data in the manner published on the website of the said authority (http://www.garanteprivacy.it/).

Requests relating to the exercise of the aforementioned rights may be addressed to the Data Controller, at the addresses indicated above, without formalities or, alternatively, using the form provided by the Guarantor for the Protection of Personal Data available on the Website: http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/1089924.

The exercise of the aforementioned rights can be exercised by written communication to be sent by certified email or by registered letter with return receipt addressed to the aforementioned structure.

  1. PROVISION OF DATA AND CONSEQUENCES OF REFUSAL.

The provision of personal data is not mandatory, however it is necessary for the exact execution of contractual and pre-contractual obligations. The provision of contact details for commercial activities is not mandatory, but it is necessary if you intend to receive communications relating to the services and promotions offered by the Data Controller. Failure by the data subject to provide the data will make it impossible to enter into the contract as well as to carry out the required pre-contractual measures, and to carry out the fulfilment of contractual obligations in an exact manner, as well as the obligations (including legal obligations) arising from or connected to the contract and, more generally, the impossibility of fulfilling the purposes indicated above.

The Data Controller specifies that you will only be asked for the data strictly necessary for the conclusion of the contract and for the execution of the obligations or legal obligations deriving from it.

  1. PROVISION OF DATA AND CONSEQUENCES OF REFUSAL.

For information on the use of cookies, please refer to the information.