Aeffe S.p.A., with registered offices at San Giovanni in Marignano (RN) via delle Querce 51, Company No. and VAT: 01928480407 , in the person of its legal representative for the time being, as the data controller (hereinafter “Controller”), informs you that, pursuant to art. 13 of Reg. (EU) 2016/679 (hereinafter “GDPR”), it needs to process your personal data in compliance with current regulations and on the basis specified in more detail below.
The present information concerns only the website “www.aeffe.com” and not further website reached by the user through link.
Your Data will be processed both in hard-copy form and electronically and/or automatically.
The Data collected will be processed in full compliance with the law, as well as with the principles of legality, fairness, transparency, limited to what is necessary and protection of your privacy and rights.
The Data of minors of 16 years will not be processed.
The Controller also reserves the right to make accessible the personal data with certain third parties, including: IT companies for the development of systems and technical support; auditors and consultants that check compliance with external and internal requirements; legal entities, agencies responsible for application of the law and parties in legal cases, consistent with the legal obligation to inform and other requirements; any successors or commercial partners of the Controller or a company in the same group as the Controller, in the event of sale, assignment or other special transactions; the police, armed forces and other public administrations in compliance with obligations imposed by law, regulations or EU rules.
Should these parties be established in non-EU countries, the Controller will ensure that the non-EU transfer of Data takes place in compliance with the applicable laws, by employing the standard contractual clauses envisaged by the European Commission.
The Controller will apply all necessary precautions when making the above transfers, in accordance with the current privacy regulations.
The deadline for the reply is one month. The mentioned deadline may be extended for two months in particularly complex cases: if this occurs, within one month the Controller will provide a communication concerning the reasons for the extension.
The Controller has the right to request the information necessary for the identification of the applicant.
Generally, the exercise of rights is free, except in the case of manifestly unfounded or excessive requests, for which the Controller may reserve the right to request the interested party a reasonable contribution based on administrative costs to be incurred.
The Data Protection Officer may be contacted at the following e-mail address: firstname.lastname@example.org
Information about the categories of Processor is available from the registered offices of the Controller.