Data Privacy Notice

/Data Privacy Notice
Data Privacy Notice 2018-06-08T07:44:19+00:00

Personal Data Protection Policy

Giorgio Gori srl (hereafter referred to as the “Gori”), with registered office at Loc. Stagno, Via Lepori, 9 Tax code 00803490499, as Data Controller informs you as follows with regard to the processing of your personal data pursuant to Art. 13 of General Data Protection Regulation (GDPR) (EU) 2016/679 (hereafter referred to as the “Regulation).

The Company will process personal data collected at the time the Customer/Consignor assigns a shipment, and/or the data of the recipient of the shipment (e.g. personal data, fiscal data, street and email addresses, telephone number, additional contact data etc.), and their subsequent rectification, in order to properly and timeously carry out the activity, as well as to fulfill fiscal and accounting procedures and to monitor the quality of the services provided, after-sales service and the level of customer satisfaction.
Personal data processing will be carried out in compliance with the principles of fairness, lawfulness and transparency, and protection of your confidentiality and your rights.
Communication and processing of your data constitute a necessary requisite for the fulfillment of legal and contractual obligations related to the relationship between you and the Company. The main consequence of any lack of or erroneous communication on your part of any the information needed by us will be the Company’s inability to fulfill its obligations deriving from the contract.
Further purposes
Furthermore, your personal data may be processed, with your permission, for marketing purposes, namely, promotional activities, marketing initiatives, presentation of new products, services and offers, to carry out market research and statistical analysis.
Providing your personal data for the marketing purposes described above is optional, and any refusal will not have any consequences on your ability to receive the services, information and after-sales services requested by you.

The Company will process your personal data, with or without the aid of electronic means, on the basis of logics and procedures consistent with the purposes described and in compliance with the Regulation, including the confidentiality and security profiles. Furthermore, we inform you that the Company will not use automated decision-making and profiling processes pursuant to article 22 of the Regulation.
The Company will process your personal data, with or without the aid of electronic means, on the basis of logics and procedures consistent with the purposes described and in compliance with the Regulation, including the confidentiality and security profiles. Furthermore, we inform you that the Company will not use automated decision-making and profiling processes pursuant to article 22 of the Regulation.
The Company will process your personal data on the basis of the following criteria of legitimacy:

  • Your consent
  • A legitimate interest of the Company
  • Fulfillment of obligations deriving from a contract between you and the Company
  • Fulfillment of legal obligations

Personal data is accessible to our duly authorized personnel on a need-to-know basis and may be communicated and transferred, within the national territory, to the following categories of entities: Public Bodies, Judicial Authorities, Law Enforcement Agencies and Insurance Companies, as well as to third parties legally commissioned by the Company to perform specific activities (e.g. transport services, customer care services, after-sales monitoring services, invoicing services) and to other companies in the Deutsche Post DHL Group (hereafter referred to as “DPDHL”). We wish to make it clear that where your data is processed on our behalf by third party companies, the Company will take steps to ensure that such third parties operate in scrupulous compliance with the current legislation.
The Company will not communicate your data to third parties in order that they may use it for their own marketing or profiling purposes.

If personal data is transferred to other Companies in the DPDHL Group located in so-called “third” countries, the transfer will be carried out in full compliance with the DPDHL GROUP Data Privacy Policy and in line with the provisions of the Regulation. The DPHL Group’s Data Privacy Policy has been approved by the competent European Control Authority as a set of Binding Corporate Rules (“BCR”). In any event, the Company will adopt the necessary precautions for a legal transfer of data to “third” countries (e.g. through implementation of the Standard Contractual Clauses approved by the European Commission).

Your personal data is stored by the Company for the time strictly necessary to achieve the purposes for which it has been collected and for the fulfillment of legal obligations, where applicable.

The Data Controller is Giorgio Gori srl, with offices in Loc. Stagno, Via Lepori, 9. For all and any requests, write to gdprinfo@it.ggori.com

7. Your Rights Consistent with Consistent with the needs to process set out in this policy, you have the right to request access to your personal data and their rectification, erasure or the limitation of processing of data which concerns you, or to object to its being processed. You also have the right to revoke your consent at any time, without prejudice to the lawfulness of processing carried out based on consent given before the revocation, as well as the right to data portability.

 

We also advise you that you have the right to lodge a complaint with the Italian Control Authority: Autorità Garante per la protezione dei dati personali (Italian Data Protection Authority)

Piazza di Monte Citorio n. 121, 00186, ROMA
Fax: (+39) 06.69677.3785
Telephone switchboard: (+39) 06.696771
E-mail: garante@gpdp.it
Certified E-mail: protocollo@pec.gpdp.it