Privacy Policy
Personal data processing information pursuant to Articles 13-14 of EU Regulation 2016/679
Data subjects: Clients
The journalistic association firm Stampa Finanziaria, as the Data Controller of your personal data, pursuant to and for the purposes of EU Regulation 2016/679, hereinafter ‘GDPR’, hereby informs you that the aforementioned regulation provides for the protection of data subjects with regard to the processing of personal data. This processing will be based on the principles of fairness, lawfulness, transparency, and protection of your privacy and rights.
Your personal data will be processed in accordance with the provisions of the above-mentioned regulation and the confidentiality obligations therein.
Purpose of processing
In particular, your data will be processed for the following purposes:
- Fulfillment of contractual obligations (commitments, orders, returns, etc.)
- Compliance with legal obligations in the fiscal and accounting fields
- Marketing and commercial communications if explicitly authorized
The processing of data necessary for fulfilling these obligations is essential for the correct management of the relationship, and the provision of your data is mandatory to achieve the purposes mentioned above. The Data Controller also informs you that any failure to communicate, or incorrect communication of, any mandatory information may result in the Data Controller’s inability to ensure the adequacy of the processing.
Processing methods
Your personal data may be processed in the following ways:
- Automated via electronic computing systems
- Manual via paper archives
All processing is carried out in compliance with Articles 6 and 32 of the GDPR and through the adoption of appropriate infrastructural and operational security measures, as described in the privacy document drafted and stored at the business premises, which you may request to receive and review at any time. By way of example and not limitation, security measures include antivirus software capable of detecting viruses and ransomware, scheduled backups maintained both internally and externally, data and backup encryption, maintenance of electrical continuity for devices containing data, firewall settings to prevent unauthorized external access, and complex personal passwords for computer and server authentication.
Communication
Your data will be communicated exclusively to competent and duly appointed subjects necessary for the correct management of the relationship, with a guarantee of protection of the data subject’s rights.
Your data will only be processed by personnel expressly authorized by the Data Controller.
Dissemination
Your personal data will not be disseminated in any way to subjects other than those expressly authorized by the Data Controller.
Retention period
In compliance with the principles of legality, purpose limitation, and data minimization, pursuant to Article 5 of the GDPR, the retention period for your personal data is established for a period no longer than necessary to achieve the purposes for which they are collected and processed, and in compliance with legally required times.
Data controller
The Data Controller, in accordance with the law, is Studio Associato Giornalistico Stampa Finanziaria – Viale Regina Giovanna, 39 – 20129 Milano (MI) – Tel. 024 966 1046
You have the right to obtain from the Data Controller the immediate deletion (right to be forgotten), limitation, updating, correction, listing, portability, and objection to the processing of your personal data, as well as generally exercise all rights provided under Articles 15, 16, 17, 18, 19, 20, 21, and 22 of the GDPR.
Data subject rights
EU Regulation 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22
- The data subject has the right to obtain confirmation of the existence or non-existence of personal data concerning them, even if not yet recorded, and to receive it in an intelligible form.
- The data subject has the right to obtain information on:
- the source of the personal data;
- the purposes and methods of processing;
- the logic applied in case of processing carried out with the aid of electronic tools;
- the identification details of the Data Controller, data processors, and the designated representative pursuant to Article 5, paragraph 2;
- the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them as designated representatives in the territory of the State, data processors, or persons in charge.
- The data subject has the right to obtain:
- the updating, rectification, or, when interested, the integration of the data;
- the deletion, anonymization, or blocking of data processed unlawfully, including data for which retention is no longer necessary in relation to the purposes for which they were collected or subsequently processed;
- confirmation that the operations mentioned in points 1) and 2) have been communicated, including their content, to those to whom the data has been communicated or disseminated, except where such fulfillment proves impossible or involves a manifestly disproportionate effort compared to the protected right;
- data portability.
- The data subject has the right to object, in whole or in part:
- for legitimate reasons, to the processing of personal data concerning them, even if relevant to the purpose of the collection;
- to the processing of personal data concerning them for the purpose of sending advertising material or for direct sales or for market research or commercial communication.