TRENTINO MARKETING S.R.L. (from here on referred to as “TM”), with registered offices in Trento, Via Romagnosi n 11, represented by its legal representative pro tempore, as Controller of the personal data you have voluntarily supplied (verbally, by email, through the website, etc.), provides the following information on the processing of your personal data, in compliance with article 13 of GDPR (from here on referred to as the “Information Notice”).

1. Identity and contact information of the Data Controller

Trentino Marketing S.r.l.
Via Romagnosi, n. 11 - 38122 Trento
Email: privacy@trentinomarketing.org
Tax Code and VAT Number: 02341860225
Tel. (0461) 2190300

2. Contact information for the Data Protection Officer

Data Protection Officer
(“DPO”)
Via G. Gilli, n. 2 - 38121 Trento
Email: dpo@trentinomarketing.org
Tax Code and VAT Number: SRTPLG70B12Z133W
Tel. (0461) 800111

3. Purpose of the processing of your personal data and corresponding legal grounds

Your personal data will be processed:

1. with your consent (article 7 GDPR), for the following purposes:

• Marketing activities of various kinds, including the distribution of information and promotional material, and the sending of newsletters and publications.

• Management of surveys and questionnaires, also regarding customer satisfaction levels.

2. Without your consent (article 6, letters b, c, f, GDPR), for the following purposes:

• Complying with legal (national and EU) requirements and regulations, or carrying out an order by the Judicial Authorities or Supervisory boards to whom the Joint Controllers are subject.

The supply of data for the purposes described in section a) above is optional, with the consequence that you may decide not to provide your consent, or to revoke it at any time.
The supply of data for the purposes mentioned in section b) is mandatory. A lack of data and/or the possible explicit objection to their processing may constitute a violation of the requirements put forward by the designated Authorities.

4. Categories of processed personal data

As concerns the purposes of the processing identified in the previous paragraph 3, the only personal data that will be processed are those concerning, for example, name and surname, tax code, VAT number, residence, domicile, workplace, email address or PEC – Certified Electronic email address, telephone and fax numbers, employer, role and/or position in the company, etc.

5. Categories of recipients of the personal data

For the purposes mentioned in paragraph 3, subsect. b) above, the personal data you provide may be made accessible:

• To judicial or supervisory authorities, administrations, and public entities and bodies (both national and foreign).

If you have expressed your consent to the use of your personal data for the purposes mentioned in paragraph 3, subsect. a) above, the data may be made accessible to the subjects indicated in the previous points.

6. Preserving and transferring personal data abroad

Management and preservation of personal data takes place in a cloud and on servers located within the European Union, either owned by and/or available to the Owner and/or to designated third party companies, duly appointed as Data Processors.
Your personal data will not be shared.

7. Period of preservation of the personal data

Personal data collected for the purposes indicated in the previous paragraph 3, subsect. b) will be processed and preserved for the entire duration of our relationship.
Starting from the date of termination of said relationship, whatever the reason or cause, the data will be kept for the duration indicated by legal requirements.
Personal data collected for the purposes indicated in paragraph 3, subsect. a) above will be processed and preserved for the time necessary to fulfil these purposes, and anyway until the user erases them.

8. Exercisable rights

In compliance with what is indicated in articles from 15 to 22 of the GDPR, you may exercise the rights indicated therein, and in particular:

• Right of access, i.e. to obtain confirmation as to whether or not there are ongoing processes involving data that concern you and, in this case, to obtain information about, in particular: the purpose of the process, the categories of personal data processed and the period of preservation, as well as the recipients to whom these data may be communicated (article 15, GDPR).

• Right of rectification, i.e. to obtain, without undue delay, the rectification of inaccurate personal data concerning you, and to have incomplete personal data completed (article 16, GDPR).

• Right to erasure, i.e. to obtain, without undue delay, the erasure of personal data concerning you in the cases indicated by the GDPR (article 17, GDPR).

• Right to restriction of processing, i.e. to obtain, from the Joint Controllers, a restriction of processing in the cases indicated by the GDPR (article 18, GDPR).

• Right to data portability, i.e. to receive the personal data concerning you in a structured, commonly used and machine-readable format, as well as to obtain their transfer to another Controller without hindrance in the cases indicated by the GDPR (article 20, GDPR).

• Right to objection, i.e. to object to the processing of personal data that concern you, unless there are legitimate grounds for the Joint Controllers to continue the process (article 21, GDPR).

• Right to lodge a complaint with a supervisory authority, i.e. to lodge a complaint with the Supervisory Authority for the protection of your personal data.

You may exercise these rights by simply sending a request to the Data Protection Officer indicated above.

9. Processing Procedures

Your personal data is processed by means of the operations indicated in article 4, para. 2) of the GDPR – carried out with or without the help of computerised systems - and precisely: collection, recording, organisation, structuring, updating, storage, adaptation or alteration, retrieval and analysis, consultation, use, disclosure by transmission, comparison, interconnection, restriction, erasure or destruction.
In any case, the logical and physical safety of your data will be guaranteed as well as, in general, the confidentiality, completeness and availability of the processed personal data, implementing all the necessary/suitable technical and organisational measures.