Privacy Policy

The protection of personal data is a value to us, which is why we are committed to processing it fairly, lawfully and transparently so as to protect the confidentiality and rights of our users, in accordance with Regulation (EU) 2016/679, Italian Legislative Decree Dlgs 196/2003 and the applicable provisions.

We wish to inform users that Dea System S.p.a. acquires personal data through the contact forms available on our website - www.deasystem.com -, so please be informed about the following.

Data Controller - The Data Controller of the users’ personal data is Dea System S.p.a., with registered office in Via della Tecnica no. 6, 36013 Piovene Rocchette (Vicenza, Italy), VAT no. 02946290240, REA reg. no. VI-286746. Should the user wish to exercise his/her rights, we can be contacted at any time at our e-mail address info@deasystem.com and/or certified e-mail address deasystem@pec.it, or at our phone number +39 0445550789.

Legal basis for the processing of data

The Data Controller processes the user’s data in order to provide him/her with information, to perform contracts, to fulfil legal obligations or, prior receiving the user’s consent, for one or more specific purposes that will be indicated from time to time before processing.

Types of data processed

Contact details - When the user clicks the “contacts” or “contact us” or “support” link and writes us a message, we will process his/her personal, fiscal, professional or economic data that are necessary to implement administrative and commercial relations between the user and Dea System s.p.a. If the user sends us his/her Curriculum Vitae using the “Contacts” form, we will store his/her data for future research or personnel recruitment. We do not process any special data, whether sensitive or legal, but, should this need arise, we will only do so after receiving the user’s consent or upon request of a Judicial Authority.

Navigation data - Log files: while running, the computer systems and applications used to operate our website - http://www.deasystem.com/en- detect certain data (the transmission of which is implicit in the use of the Internet communication protocols) that are not associated with directly identifiable users. The data collected include the IP addresses and domain names of the computers used, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the feedback file, the numerical code indicating the status of the response given by the server (successful, error, etc.), as well as other parameters regarding the operating system and the computer environment used by the User. These data are processed for as long as strictly necessary, for the sole purpose of obtaining anonymous statistical information on the use of the website and to check whether it operates regularly.

Data provided voluntarily by the user - If the user sends us e-mails to the addresses indicated in the access channels of our website - www.deasystem.com - and fills in the forms specifically designed for this purpose, we collect his/her e-mail address and other data necessary to respond to his/her requests and/or to provide the service he/she requests. Specific summary policies may be provided or displayed on the pages of the website set up for particular on-demand services.

Cookies - We do not use computer techniques for the direct acquisition of personal data identifying the user nor tracking or profiling systems. Our systems do not use any type of persistent cookies, but only statistical tools and technical session cookies for the transmission of personal information which is not retained after the end of the session. Dea System s.p.a. is committed to implementing all possible technical measures to deactivate or neutralise third-party cookies on our website, although these files may sometimes still be activated using functions that allow interaction with the social networks, which may thus process the user’s personal data and track the user’s navigation. This is, for instance, the case with Facebook, Youtube, Google, Pinterest sharing functions normally found on the pages or with video clips that may be embedded on our website and the user plays. For this reason, we encourage users to always refer to the privacy policies made available by the social networks they are using.

Disclosure and dissemination - We do not disseminate the data the users disclose to us, but we may disclose them to the following entities: a) authorised employees within our company, in particular administrative staff; b) entities who can access the data by virtue of regulations or legal provisions; c) entities who need access to the data for purposes ancillary to our relationship with the user(s) (e.g. professional firms, entities responsible for administering accounts, chartered accountants, payroll offices, computer system operators or credit institutions); d) other entities working in or outside Dea System S.p.A. who are required to know the data; e) companies controlled by us, pursuant to art. 2359 of the Italian Civil Code, always in compliance with the regulations on the protection of personal data and the directives outlined in this Privacy Policy; f) entities with whom interaction is necessary for the provision of the services requested (e.g. hosting providers, credit institutions, etc.); g) entities required for the provision of the services offered by the website, including, but not limited to the sending of e-mails and the analysis of website operation. Users’ personal data may be disclosed to Judicial Authorities and Police Forces only in cases where this is required by law and used by the Data Controller for the purposes of defence of legal claims, where strictly necessary.

Processing methods - Data processing is carried out through the use of tools and procedures that guarantee a high level of security and confidentiality, and can be done both through our website and other electronic tools, sometimes also by telephone or with the help of paper media. The data collected may also be transferred abroad, including outside the European Union, in the forms and manners provided for by current legislation, provided that an adequate level of protection is in any case guaranteed. Whatever the case, however, personal data will never be disseminated.

Purposes of processing and period for which the personal data are stored - If the user contacts us, his/her personal data will be processed to provide the services he/she has requested, for pre-contractual and contractual requirements in our legal relations, including remotely, and the fulfilment of the resulting legal and fiscal obligations. The user’s data will be processed for the entire duration of the relationship and also after termination, in compliance with the legal obligations and for administrative and commercial purposes. They will also be processed to respond to requests for information and, in general, to contact the user, to manage the CVs the user wishes to send us and for personnel recruitment processes, to archive, host and manage the backend infrastructure of the website, to manage interactions with the social networks and external platforms, statistics and cookies, to prevent and detect abuses in website use or any fraudulent activity in order for the Data Controller to defend legal claims. The data will be kept for as long as strictly necessary to manage the purposes, in accordance with the regulations in force and the principle of minimisation.

Obligation or option to provide data and consequences of refusal - National laws, EU regulations, provisions of the Authorities or of supervisory and control bodies require that we become aware of some data in order to fulfil the obligations they provide for. If data are necessary for the implementation of the relationship, failure by the user(s) to provide such data will make it impossible to either establish or continue the relationship. Where no obligation is vested on us to become aware of the data, failure by the user to provide his/her data will be evaluated on the basis of the relevance that non-provided data would have for the purposes of our contacts.

Rights of the data subject - The data subject may exercise the following rights against us: a) to receive confirmation that personal data concerning him/her exist, even if not yet recorded, and disclosure in an intelligible form of such data, their origin, the purposes and methods of processing, as well as the logic applied where processing is carried out using electronic instruments; b) to erase, convert into an anonymous form or block data that do not need to be stored in relation to the purposes for which data were collected and processed; c) to update, rectify and have personal data completed; d) to object, in whole or in part and for legitimate reasons, to the processing of data concerning him/her, even where relevant to the purpose of data collection.

Although we are always available to examine the users’ requests and solve any problems that may concern the processing of their personal data, we would also like to remind users that they are always entitled to lodge a complaint with the Italian Data Protection Authority.