STAEDEAN informs that, for the establishment of a pre-contract relationship and/or for the correct management of the existing contract relationships, STAEDEAN is required to obtain and process data relating to the interested parties and possibly their family members, classified as personal data pursuant to the regulations indicated in the subject.
These rules provide that anyone who processes personal data is required to inform the interested party of the purposes of the processing and of certain elements qualifying the processing itself.
In compliance with current legislation, therefore, this privacy notice indicates the characteristics of the processing of data carried out by STAEDEAN.
1. Data Controller
The data controller is STAEDEAN, with headquarters in John M. Keynesplein, 10A, 4th floor 1066 EP Amsterdam (The Netherlands), contacts privacy@staedean.com.
The Data Controller may process the data directly, through its employees authorized to do so, or by making use of external collaborators, who in this case assume the role of Data Controllers.
The updated list of Data Processors is made available by the Data Controller upon request.
2. Nature of the data processed and purpose of the processing
These are anagraphic data, multimedia data and ICT data.
The data collected are processed by the data controller in order to contact the interested party for the performance of its institutional tasks, commercial activities with prospect customers to present STAEDEAN products and services and to have direct communication with customers for project management.
3. Legal bases of the data process
The Data Controller processes the personal data of Interested parties under the following legal bases:
1. Execution of a pre-contractual measure at the request of the interested party (GDPR art. 6.1 letter b),
2. Execution of a contract (GDPR art. 6.1 letter b).
4. Particular categories of processed data
Among the information acquired there is no data belonging to particular categories of data (GDPR art. 9).
5. Processing methods
The processing will be carried out using suitable methods and procedures, including IT and telematics, with logic strictly related to the purposes indicated and in any case in such a way as to guarantee the confidentiality and security of personal data.
The video call can be recorded, if the interested party does not want to be captured in video, they should advise the organizer.
6. Obligation or right to provide data
Without prejudice to the autonomy of the interested party, any refusal to provide personal data may lead, depending on the specific nature of the data, to the impossibility, in whole or in part, to establish, continue or correctly execute the activities with the interested party.
7. Communication and dissemination of data
Personal data is not subject to general dissemination. In relation to the processing purposes referred to in point 2 and within the limits strictly relevant to the same, personal data may be communicated to other STAEDEAN entities that will act as independent data controllers.
In particular, data may be transferred to STAEDEAN USA for commercial activities with potential customers to present STAEDEAN products and services or related to project management with STAEDEAN specialists in the USA.
8. Rights of the interested party
The legislation on the protection of personal data (articles 12-22 of EU Regulation 679/2016) guarantees the interested party the right to be informed about data processing and the right to access the data at any time and request its updating, integration and rectification. Where the conditions provided for by the law apply, the interested party can also claim the right to have the data deleted, to limit their processing, to data portability, to object to processing, and not to be subjected to decisions based solely on automated processing.
To exercise their rights and more detailed information on data processing, the interested party may contact the Data Controller by writing to the email address privacy@staedean.com.
If the interested party believes his rights have been violated, he can protect himself by lodging a complaint before the Supervisor authority for the protection of personal data.
9. Data retention
The data will be kept for the period necessary to achieve the purposes indicated in this privacy notice, as well as, following the exhaustion of these purposes, until the limitation period of the rights arising as a consequence of the legal and factual relationships existing between the parties and connected directly or indirectly to the purposes themselves.
The data will therefore be processed for the entire duration of the contractual relationship (if any) and also subsequently, within the limits necessary for the fulfillment of legal obligations and for administrative purposes (10 years).
