The privacy notice is a document mandated by law that must be submitted to the concerned entity and fulfilled in order to legally start the aware collection of eventual personal data. In case of personal data that have not been directly collected from the concerned entity, the notice must be submitted within a reasonable date or when communicating the data (to third parties or to the concerned entity).

ACKNOWLEDGMENT

Through the voluntary registration on LANGA Account all documents about the privacy notice [langa_mod.2] in all its parts, for you and/or the commercial entity you are officially representing, are accepted.

In compliance with our simple company transparency, the consultation concerning everything related to use of personal data is available on the main site www.langa.tv to allow users to analyze much information and more details executed on the devoted modules: privacy policies and data processing, regulation of equipment of video surveillance, authorization to use of media data and eventual task for the person in charge of the processing.

SOURCES AND CATEGORIES OF PERSONAL DATA

In accordance with the General Regulation for the Protection of Personal Data of physical persons (GDPR – Reg.(UE)2016/679), this Organization, owner of the processing, informs you that: The personal data held by this Organization are collected directly from the concerned entities and from third parties (for example on the internet, from public registers, etc.) and they are directly and freely shared by the concerned entities.

This information concerns personal data, contact data, permanent addresses, phone numbers, mail and e-mail addresses. The concerned entities shall be considered as the identified and identifiable third parties having an assignment with this Organization or a contractual counterpart, even potential, such as clients, suppliers, partners, public administrations, associations, etc., with which this Organization has interest or work relationships.

PURPOSES AND JURIDICAL BASES OF THE PROCESSING

Personal data are processed for the communication between this Organization, including its staff, and the concerned entity in the domain of the regular activity aiming at the following goals (for each of them the parenthesis indicate the juridical base through a reference to the articles of the GDPR):

1. a) goals tightly connected to the fulfillment and the implementation of the required services (GDPR art.6(b) and 9(a)), in particular for the management of clients and suppliers, even potential, effectuated through the insertion in the company data banks for the purposes of execution of the normative duties and of the duties planned in the Contract, for the purposes of internal work organization, for statistical purposes and for other purposes that are in anyway related to the execution of the economical activity of this Organization, for example the fulfillments related to civil, fiscal, tax, accounting, remunerative, social security and insurance regulations, etc., including the dispatching of newsletters and public notices related to the activity of the Contract of performance of the required services;
2. b) goals connected to the duties dictated by laws, as well as by instructions given by any authorities and thus legitimated by law (GDPR art. 6(c) e 9(b,g,h)).

CONSEQUENCES OF THE REFUSAL TO COMMUNICATE THE DATA

The communication of the data collected from the concerned entity is facultative but necessary to the elaboration of the data themselves for the purposes of work startup. If the concerned entities do not communicate the necessary data, it will not be possible to proceed to the communication between the staff of this Organization and the concerned entity. About all non necessary data, the communication is facultative.

In default of CONSENT or incomplete communication of the data or erroneous communication of some data, including the sensitive data, the required fulfillments may be incomplete to such an extent that they cause damages in terms of either penalties or loss of benefits, for both the impossibility of guaranteeing the accuracy of the processing itself to duties for which the processing is executed, and the eventual lack of correspondence of the results of the processing itself to the duties dictated by the legal regulations to which it is addressed, as this Organization is exempt from any culpabilities for the eventual penalties or afflictive measures.

DATA PROCESSING METHODS

The expression data processing means the collection, the registration, the organization, the conservation, the elaboration, the modification, the cancellation and the destruction of the data or the combination of two or more of these operations. In relation to the goals indicated above, the processing of personal data is executed on paper and through manual, computer and telematic instruments, even automatized, with the purpose of memorizing and managing the data themselves, with some logics that are tightly correlated to the goals themselves and, anyway, in order to guarantee safety and confidentiality; thus personal data will be processed in compliance with the modalities indicated in the art. 5 Reg.to EU 2016/679, that, by the way, dictates that the data must be processed in a licit and proper way and collected and registered for specific, explicit and legit, exact purposes, and if necessary updated, pertinent, complete purposes that do not exceed the goals of the processing, in respect of the fundamental rights and freedoms, as well as the dignity of the concerned entity with a particular reference to personal confidentiality and personal identity, through measures of protection and safety. This Organization set and will further improve the safety system of access and conservation of the data.

No automatized decisional process (for example of profiling) is performed.

TRANSFERT OUTSIDE THE EUROPEAN UNION

The processing will be mostly performed in Italy and the EU, but it might be performed in countries outside the EUROPEAN UNION and outside the SEE if it is considered functional to the efficient fulfillment of the pursued goals in respect of the guarantees in favor of the concerned entities.

STORAGE PERIOD

Personal data will be in general stored as long as the goals of the processing endure: they will be stored for the whole duration of the contractual relationship and, after its end, until the end of the legal prescription only in case the relationship is not renewed afterwards. While deciding these periods of storage we examine our effective need for collecting personal data and if we think there is an effective need, we store them for the shortest necessary period only to reach the goal of the collection, unless a longer storage period is required by law.

CATEGORY OF ADDRESSEES

The data (just the necessary ones) are communicated to:

• people appointed and in charge of the processing, both inside this Organization and outside IT, who execute specific tasks and operations (internal commercial net or commercial net of agents, societies in charge of market surveys, eventual business partners, third persons entrusted by the society to fulfill in toto or in part the duties accepted with the Contract or related to it, banking institutions and credit enterprises in general, credit bureaux and/or societies that deal with services of commercial information, associations of enterprises and the like);

• in the cases and to the parties envisaged by law.

CONCERNED ENTITIES RIGHTS

The data will not be shared unless legal regulations allow the sharing.

Moreover, without the general Contract allowing the communications of the data of the concerned entity to third parties, we will be authorized to execute only the services that do not include the said communications. If necessary specific and punctual agreements will be required and the parties receiving the data will use them as independent owners.

Any time the concerned entities will be allowed to: exercise their rights (access, rectification, cancellation, limitation, portability, opposition, no automatized process of decision) when expected for the owner of the processing in accordance with the art. from 15 to 22 of the GDPR (reported in the footnote); file a complaint to the Warrantor (www.garanteprivacy.it); if the processing bases on the consent of the concerned entities, revoke the given consent (the revocation of the consent does not compromise the lawfulness of the processing based on the consent before the revocation).