Information Notice Clients

INFORMATION NOTICE PROVIDED TO THE COMPANY’S CLIENTS

REGARDING THE PROCESSING OF PERSONAL DATA

In compliance with the rights recognized by the European Regulation no. 679/2016 (also known as the “GDPR”), we provide you with the following information on the processing carried out with your personal data.

1) Data Controller
The Data Controller is FaultBuster srl, with registered office in Trento (postcode 38123), Strada delle Novaline 11, VAT no. 02712330220 – certified email (pec): faultbuster@pec.it Email: info@faultbuster.it Website: www.faultbuster.it

2) Legal Basis and Purposes of the processing
The processing of personal data carried out by the Data Controller within the framework of commercial relationships already in place or being finalized has the following purposes: a) before the establishment of the commercial relationship, the processing is aimed at the exchange of promotional or commercial information and the preparation of proposals and quotes, and the management of the pre-contractual negotiation, as well as b) subsequent to the purchase of our services, the processing is directed towards invoicing and therefore the consequent fulfillment of contractual obligations or those provided for by laws, regulations, or EU legislation, concerning tax matters and the keeping of accounting records, as well as verifying the degree of customer satisfaction and promoting new services or facilities connected to the services. The legal basis for the processing is therefore: a) the execution of pre-contractual negotiations; b) the execution of the contract to which the client is a party as the data subject; c) the fulfillment of a legal obligation to which the Data Controller is subject; d) the legitimate interest in managing the degree of customer satisfaction and promoting the company’s business, including online.

3) Provision of data and possible refusal
In the pre-contractual phase, the provision of data is optional. In the contractual phase, the provision is mandatory. Any refusal makes it impossible to continue the commercial relationship. In case of activation of promotional communications, you will always be allowed to stop receiving further advertising emails in the future.

4) Nature of the processed data
The processing concerns only so-called common personal data (such as the name and surname or the company name, the tax code (c.f.) or VAT number (p.iva), the address or registered office, contact details, corporate contact persons’ details and role, bank details, SDI code).

5) Methods of data processing
The data will be processed in electronic and paper format, in compliance with company security measures adopted in accordance with art. 32 GDPR.

6) Communication and dissemination of data
Personal data are not subject to dissemination but may be subject, for the performance of the requested activities, to communication to the following entities:

banking institutions;
external consultants, who assist the Data Controller in managing regulatory compliance;
public administrations;
electronic invoicing system, if applicable; In the event that the processing is carried out through the continuous professional contribution of third parties, these will be appointed as Data Processors, whose names are available at the registered office.

Rights of the data subject The Regulation recognizes the following rights to the data subject, i.e., the person to whom the processed data refers. They can obtain confirmation from the Data Controller as to whether or not their personal data exists, be informed of the origin of such data, as well as know the characteristics of the processing; they can also obtain erasure, as well as the update, rectification or integration of the data. They can also object to the processing and obtain data portability, where the legal requirements exist. Requests must be sent by registered letter to the company’s registered office or via certified email (PEC). The data subject also has the right to lodge a complaint with the supervisory authorities, the Guarantor for the protection of personal data (www.garanteprivacy.it), based in Rome, in the manner provided for by the regulation if they believe their rights have been violated.

Transfer of data abroad The Data Controller does not transfer the personal data of its clients to countries that do not guarantee an adequate level of personal data protection. Should such a transfer be essential for the performance of the contract to which the client is a party, the transfer would take place pursuant to art. 49, paragraph 1 letter b.

Retention period The data will be processed for the time necessary to achieve the purposes indicated above. In particular, for tax purposes, the Client’s personal data will be kept for at least 5 years from the closure of the individual contract to comply with tax and fiscal obligations. The data will be stored at the Data Controller’s office and at the external processor responsible for managing accounting and declarations.

Profiling The Data Controller does not carry out any automated processing or so-called profiling of personal data relating to clients.

Trento, 2023 version