Brera Advisory SpA recognizes the importance of the protection of personal data, it commits to respect the privacy of the users, to treat private data with caution and confidentiality and not to use them for purposes other than those specified below.
To this end, this policy describes how to manage the website in relation to the processing of personal data of the users who consult it.
This is a notice made, also according to the Article 13 of EU Regulation 679/2016, to those who interact with the web services of Brera Advisory SpA:
This Policy may be amended or updated at any time by Brera Advisory S.p.A.
The notice is provided only for this website and not for other websites that may be consulted by the user through links except those indicated above.
Owner of data processing
The owner of data processing is: Brera Advisory S.p.A., Via Agnello, 8 20121
Fiscal Code: 09716630968, henceforth also“Brera Advisory”.
Data and processing purposes
Brera Advisory informs the users of the website that the data collected will be used exclusively for the purposes specified below. The data being processed are browsing data and data provided voluntarily by the user
The computer systems used to operate the website acquire some data necessary for the operation of the platform and information whose transmission is implicit in the protocols used for internet connection and browsing.
Some information related to the browser session and generic data related to the device used by the user are also acquired. All data are acquired anonymously and not referable, however, to a specific user or for profiling purposes
2.Data voluntarily provided by the user
The user, in order to access some services of the website provides to Brera Advisory different types of data in spontaneous form after having read this notice and possible consent to data processing for one or more purposes expected and listed below.
Brera Advisory will use the collected data for:
a) purposes related to the use of the services offered by the website (website navigation);
b)activities strictly connected to managing relationships with customers and potential collaborators (contact requests);
c) to send information concerning the activities carried out by the company;
d) to process the data related to curricula for evaluation of job applications.
The provision of data for the purposes referred to at the letters c) d) is optional and revocable at any time.
Data processing will be carried out according to Art. 4 n. 2) of the GDPR, by means of the following operations: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data.
The data will be submitted to both paper and electronic and / or automated processing.
Starting from their receipt/update, the data will be stored for a reasonable period of time with respect to the purposes of the treatment described above. For more information regarding data retention terms, please write to email@example.com.
Communication and data transfer
The data, object of the processing, will not be diffused; they may, for the purposes indicated in this notice, be communicated to third parties, among which business partners, consultants and freelancers, banks and credit institutions, insurance companies, financial companies, factoring, leasing, services, management and credit recovery, auditors, debt collection companies, public authorities, auditing or supervisory bodies, to fulfill obligations deriving from the law, regulations, community regulations or for aspects concerning the management and execution of the legal relationship with you, occurring or occurred.
The data will be processed by the following subjects:
- Employees of companies that operate as people authorized to process data according to the tasks performed and adequately educated.
- External Managers under Article 28 of the GDPR.
The list of the external managers for the processing of personal data is available at the registered office of Brera Advisory.
For all the purposes indicated in this notice, the data may be communicated also abroad, inside and outside the European Union, in compliance with the rights and guarantees provided by the current legislation, subject to verification that the country in question guarantees an “adequate” level of protection in accordance with the provisions of the GDPR.
Rights of people involved
It is specified that in the quality of people involved, at any time it may be requested
a) the access to personal data;
b) their correction in case of inaccuracy;
d) the limitation of processing;
e) the right to oppose to the processing of data where the conditions are met;
f) the right to data portability, i.e. to receive the personal data provided in a structured format that is commonly and automatically readable by an automatic device.
Although not expressly provided for by the provisions referred to above, reference should be entirely made to the effective legislation on the subject of Privacy and specifically to articles 15, 16, 17, 18, 20 and 21 of the GDPR.
In case of violation it is possible to lodge a complaint to the supervizory authority (art. 13.II lett. d) GDPR).
Withdrawal of consent
Consent may be revoked at any time without this being able to:
- prejudice the lawfulness of the processing based on the consent given before the withdrawal;
- prejudice further processing of the same data based on other legal bases such as contractual or legal obligations.
For further information about this notice or on any privacy topic, or in case you wish to exercise the above mentioned rights or withdraw consent, you can write to: firstname.lastname@example.org