The European Union with the General Data Protection Regulation (GDPR), which will be effective as of 25 May 2018, wants to protect fundamental privacy rights for every citizen residing within the EU.
EU residents will now have a say in what, how, why, where and when their personal data is used, processed or destroyed. This clarifies how EU personal data laws apply beyond the borders of the EU itself.
IVR S.p.A. fully understands its role in respecting the rights of its users in respect of privacy and data protection and ensures that it complies with the GDPR through its web platform. IVR S.p.A. will endeavour to renew and update your privacy policy regularly in order to ensure that the privacy of your users is protected in accordance with the regulations.
IVR S.P.A. WEB PRIVACY POLICY
IVR S.p.A. may collect information from customers and other users through your website (collectively referred to as "Users").
We are firmly committed to protecting the privacy, confidentiality, accuracy and security of your personal information.
Personal information collected includes any factual or subjective information, whether or not recorded, about an identifiable individual.
This includes information in any form.
Personal information does not include aggregate information that cannot be associated with a specific person or the name, title, business address and telephone number of an employee of an organisation.
Principle 1 - Responsibility
IVR S.p.A. is responsible for the protection of all personal information in its possession or under its control, including personal information that has been transferred to third parties for any purpose.
We will not sell, trade or rent any of our users' personal information to third parties without your consent.
Principle 2 - Identifying Purposes
The purpose(s) for collecting any information from our users will be made clear before the information is collected.
In general, IVR S.p.A. collects personal information only for the following purposes:
To provide requested information.
To establish and maintain responsible business relationships with customers to provide ongoing service.
To understand customer needs and preferences. For example, to maintain a record of IVR products purchased in the past.
To meet legal and regulatory requirements. For example, IVR S.p.A. may collect personal information to comply with government regulations.
Additional purposes for collecting personal information may be identified by an individual before or at the time of collection.
If you would like to be added to or removed from our e-mail list, please send us an e-mail to: privacy@ivrvalvole.it
Principle 3 - Consent
IVR S.p.A. requests permission to use the information collected for business development and marketing purposes.
Personal information such as name, address and email address is collected on a voluntary and consensual basis.
We will always obtain permission via an OPT IN consent from our users before sending them our newsletter and other materials.
IVR S.p.A. will obtain consent, either before or at the time the information is collected, for the use or disclosure of personal information about an individual.
An individual may provide consent to the collection, use and disclosure of personal information about themselves expressly or by implication.
Principle 4 - Limited Collection
Any personal information we collect from Users will be limited to the purposes necessary for the identified purpose.
We will not collect more information than is necessary to fulfil the purpose identified by Users.
Principle 5 - Limit use, disclosure and retention
Your personal information will not be used or disclosed for purposes other than those for which it was collected, except with your consent or as required by law.
We will retain your personal information only as long as necessary to fulfill the purpose identified to you or until you contact IVR SpA at privacy@ivrvalvole.it to remove your information from our database or marketing list.
In order to opt-out of receiving any future communications or service offers you may contact us by email at privacy@ivrvalvole.it
Principle 6 - Accuracy
We will keep our Users' personal information accurate, complete and up to date as necessary for the purposes for which such information will be used.
We give you the opportunity to update the personal information you have provided.
If you need to change the personal information you have previously provided, please contact us at privacy@ivrvalvole.it.
Principle 7 - Safeguards
Users' personal information must be protected with appropriate security measures due to the level of sensitivity of the information.
Our employees are required to comply with our policy on the security of personal information.
In addition, all employees are required to comply with the privacy standards we have established.
Unauthorised access and/or disclosure of your personal information by an employee of IVR S.p.A. is strictly prohibited.
Principle 8 - Openness
We will provide and make readily available to Users, information about our policies, procedures and practices relating to how we handle personal information.
Principle 9 - User Access
Upon request, a User shall be informed of the existence, use and disclosure of his/her personal information and shall have access to that information.
A User may verify the accuracy and completeness of the information and amend it as appropriate. If you request access to personal information you have previously provided, kindly contact privacy@ivrvalvole.it.
Principle 10 - Compliance
A user may forward any questions or requests regarding compliance with these privacy principles to our privacy contact at privacy@ivrvalvole.it
PRIVACY POLICY FOR CUSTOMERS/SUPPLIERS
Purpose and methods of processing
The company IVR S.p.A. informs, pursuant to articles 15 to 22 of EU Regulation 2016/679, that the common and sensitive personal data concerning your company in our possession and collected in the context of processing offers, issuing orders and reports of supply will be processed for management, statistical, commercial, marketing, promotional, credit protection, credit management and transfer purposes.
The data processing will be carried out both manually and with the aid of electronic means, including insertion into databases and processing using computerized procedures by specifically appointed personnel or by third parties in the context of a regular contractual relationship with IVR S.p.A., with methods designed to guarantee their safety.
It is specified that the provision of the requested data is optional, but essential for the purposes of stipulating and maintaining supply relationships.
Communication and dissemination
Without prejudice to communications made in compliance with legal obligations, the aforementioned requested data may be communicated to companies, bodies, consortia, banks and associations operating in Italy and abroad with commercial, market research, marketing and product management purposes. information, insurance, financial intermediation, factoring and debt collection systems.
Furthermore, your company data can be viewed by those in charge of data processing in the sales and purchasing offices of IVR S.p.A.
Storage of Personal Data
The data are processed and stored at our company, with headquarters in Via Brughiera III, 1 - Loc. Piano Rosa 28010 Boca (NO), for a period of time no less than that prescribed by civil and fiscal regulations and, in any case, for a maximum period of 10 years from the end of the contractual and/or commercial relationship, after which the data will be deleted or made anonymous.
Owner and data controller
The owner of the above data processing is: IVR S.p.A. with registered office in via Francesco Melzi d'Eril n.7 – 20154 Milano (MI)
Rights of interested parties
Based on articles 15 to 22 of the European Regulation 2016/679 (Information and access to personal data), it is the right of the subjects to whom the personal data refers:
1. Obtain confirmation of the existence or otherwise of personal data concerning him, even if not yet registered, and their communication in an intelligible form;
2. Get the indication:
• The origin of the personal data,
• The purposes and methods of processing,
• The logic applied in case of processing carried out with the aid of electronic instruments,
• The identification details of the owner, managers and designated representative,
• Of the subjects or categories of subjects to whom the data can be communicated or who can become aware of them as designated representatives in the territory of the State, managers or appointees;
3. Get:
• The updating, rectification or, when interested, integration of the data,
• The cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed,
• The certification that the operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible or involves the use of means that are manifestly disproportionate to the protected right;
4. Object for legitimate reasons, in whole or in part:
• To the processing of personal data concerning him, even if pertinent to the purpose of collection,
• To the processing of personal data concerning him for the purposes of sending advertising or direct sales material or for carrying out market research or commercial communication.
INFORMATIVA PRIVACY PER CANDIDATI
Information on candidates in the case of CVs spontaneously transmitted according to Regulation (EU) 2016/679
We provide you with the necessary information regarding the purposes and methods of processing your personal data, as well as the scope of communication and dissemination of the same, the nature of the data in our possession and their provision.
Owner and data controller
IVR S.p.A. is the owner of all processing of your data. The processing may concern the collection, recording, organisation, conservation, consultation, processing, modification, selection, extraction, cancellation and destruction of your data for the purposes of selection, evaluation and research of the staff for your organizational structure.
Purpose of the processing
The information referred to in Article 13 of the Regulation, in cases of receipt of CVs spontaneously sent by interested parties, for the purpose of establishing an employment relationship, is provided at the time of the first useful contact, following the sending of the CV itself. Within the limits of the purposes referred to in Article 6, paragraph 1, letter b) of the Regulation, consent to the processing of personal data present in CVs is not required.
Lawfulness of the processing
The Processing of your Personal Data for the purposes indicated above may be carried out on the basis of the legitimate interest of the Data Controller, regardless of your consent and in any case until you object to such Processing.
We do not intend to collect sensitive information unless we are legally required to do so. Examples of sensitive information include race or ethnicity; political opinions; religious or philosophical beliefs; union membership; physical or mental health; genetic data; biometric data; sexual life or sexual orientation; and criminal records. We ask that you not provide sensitive information of this type, if for any reason you choose to provide us with sensitive information, the act of doing so constitutes your express consent.
Treatment methods
The processing of your data:
• will be carried out by appointed and specialized personnel with paper, IT, electronic tools and with any other type of technologically deemed suitable support.
• will take place in full compliance with the principles of confidentiality, correctness, necessity, relevance, lawfulness and transparency in order to guarantee the security and confidentiality of the data, through the adoption of the measures provided for in Article 32 of the Regulation in order to preserve the integrity of the data processed and prevent access to the same by unauthorized parties.
Categories of personal data collected
The Personal Data collected and processed by the Data Controller are data of a "personal" nature (by way of example and not limited to: name, surname, e-mail address, telephone number, data relating to your professional career, data contained in your curriculum vitae ) and "particular" including data relating to health, if present in the Curriculum Vitae and in any case directly provided by you through correspondence/e-mail/ or other contact methods.
Communication, dissemination and conservation
Your Personal Data may be communicated to specific subjects considered recipients, pursuant to and for the purposes of art. 4 point 9 of the Regulation.
In particular, in order to correctly carry out the Processing and pursue the purposes described above, your Personal Data may be processed by employees, collaborators or individual consultants of the Data Controller, who have been entrusted with specific Personal Data processing activities.
Your Personal Data will not be communicated to other external recipients, unless communication is required by binding orders of public and/or judicial authorities. The data will not be disclosed.
Your Personal Data will be kept by the Data Controller limited to what is necessary for the pursuit of the purpose described in this information, up to a maximum period of 18 months from their acquisition or in any case until you communicate your desire to revoke the processing of your data. In exceptional cases (for example in the case of positions not yet closed, positions that will be reopened later) it is however possible to retain the data for longer periods and in any case no longer than is strictly necessary to achieve the purposes for which they were collected.
Rights of interested parties
You have the right at any time to obtain from the data controller information on the processing of your personal data, its methods and purposes and the logic applied to it, as well as:
• Confirmation of the existence of the data, communication of the same and their origin;
• The identification details of the Data Controller as well as the subjects, or categories of subjects, to whom the data can be communicated or who can become aware of it as data processors;
• The updating, rectification and integration of data;
• The cancellation, transformation into anonymous form or to oppose the processing of your data.
IVR S.p.A.
Legal Representative
Piero Giacomini