Pursuant to Art. 13 of European Regulation No. 2016/679 (hereinafter " GDPR"), Biesse S.p.A. provides the information relating to the processing of your personal data required to register for the digital events and webinars organised by us.
The Data Controller is Biesse S.p.A., with registered office at Via della Meccanica, 16, Pesaro, Italy, phone number: +39 0721 439100, Tax Code and VAT number IT 00113220412 Companies Register Pesaro Urbino No. 1682 (hereinafter referred to as the 'Company' or ‘ Controller’).
DPO contact details
The DPO can be contacted at firstname.lastname@example.org
Purposes and legal basis of the processing, and storage times
The data you provide when completing the appropriate form will be processed for the purpose indicated below.
Once the above term has concluded, your data will be destroyed or made anonymous in accordance with the technical procedures of erasure and back-up.
Pursuant to Art. 13(2)(e) of the GDPR, we hereby inform you that the provision of data marked with an asterisk is mandatory; therefore any refusal to provide it makes it impossible to follow up on your contact request.
The provision of other data, not marked with an asterisk on the form, is optional.
Parties authorised to process the data
Your personal data will be processed by company employees and/or outside staff who have received adequate operating instructions and who the company has expressly authorised to process it.
Data recipients and transfer outside the EU
Data may be disclosed to Biesse distributors who are assigned the country indicated by you on the form as an exclusive area, including those based outside the EU, who will process it, as autonomous data controllers, for their marketing purposes, if you have given your consent.
In addition, in the case of registration for a physical event, the data may be communicated to affiliated hotels, which will process it as independent Controllers, for reservation purposes.
Your data may also be communicated to independent data controllers such as supervisory and control authorities and bodies and, in general, public or private parties entitled to request/receive the data.
Data is processed by parties providing services Biesse, including those instrumental to the purposes noted in this policy. These parties are designated as data processors by the Company, including those with registered offices outside the EU, and include:
Rights of the data subject
Data Subjects may exercise the rights recognised by Articles 15-22 of the GDPR and in particular may request access to data concerning them and the information referred to in Art. 15 (processing purpose, categories of personal data, etc.), erasure in the cases provided for by Art. 17, rectification of inaccurate data, integration of incomplete data and restriction of processing in the cases provided for by Art. 18  , as well as the right to receive the data in a structured format, commonly used and readable by an automatic device, and, if technically feasible, to have it sent to another data controller without impediment(“right to data portability”).
In order to exercise their rights, the Data Subject may contact the Data Controller by sending a written communication to the above address or an email to email@example.com
Data subjects may, at any time, lodge a complaint with the Personal Data Protection Authority (Art. 77 of the GDPR), as well as take legal action before the appropriate courts (Art.
79 of the GDPR).
 Pursuant to Article 18 of the GDPR, data subjects have the right to obtain restriction of processing from the data controller
a) the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data;
b) the processing is unlawful and the data subject objects to the erasure of the personal data and instead requests the restriction of its use;
c) although the controller no longer needs the personal data for the processing purposes, it is required by the data subject for the establishment, exercise or defence of legal claims;
d) the data subject has objected to processing pursuant to Art. 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
2. Where processing has been restricted under paragraph 1, such personal data shall, with the exception of storage, only be processed with the data subject's consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
3. A data subject who has obtained restriction of processing pursuant to paragraph 1 shall be informed by the controller before the restriction of processing is lifted.