LDP Tax & Law (hereinafter LDP or Data Controller) issues to the Data Subject (also the User) that is the person to whom the personal data refer, the following information pursuant to Article 13 of EU Regulation No. 2016/679 of April 27, 2016 (hereinafter GDPR) on the protection of individuals regarding the processing of personal data. The purpose of this information is to describe the characteristics of the processing carried out in relation to the personal data provided by the Data Subject and the measures adopted to protect their rights.
This notice is released on the LDP Tax & Law website (https://ldp-ita.com/ hereinafter the Site), in the section dedicated to the Policy on the processing of personal data on the Home Page.
The Data Controller is LDP Tax & Law, with registered office in Milan, via Michelangelo Buonarroti n. 39 – 20145 – P.IVA 10824440159 – e-mail: email@example.com
Data subject to processing
The Data Controller essentially collects the following personal data:Data identifying the User, such as, for example, IP addresses and computer domain names.
Data relating to the use of the Site by the User.
Data provided voluntarily by the User (identification information) to access certain services offered through the Site, for which please refer to the specific information in the relevant sections.
Cookies. Cookies are text files that are automatically generated in the User’s electronic processor following a visit to certain pages of the Site. Some of these files (session cookies) are automatically removed when the browser is closed. Another type of cookie, on the other hand, is recorded and stored on the User’s computer (e.g. to make the procedure for accessing the reserved area automatic, the User may choose to have his User-id and password stored in one of these files).
Purpose of processing and storage time
Personal data will be processed for the following Purposes:
To manage the proper use of the Site.
To evaluate, in statistical form, the use of the Site by Users.
Both direct and profiled marketing by means of third-party cookies.
Ascertaining any offences committed by Users to the detriment of third parties or to the detriment of the Data Controller.
Compliance with European and Italian legislation, as well as the provisions of the Supervisory Authority.
The data processed for the above purposes will be stored as specified in the relative information (e.g. cookie information).
Lawfulness of processing
The processing is lawful because it is based on the following applies:
legitimate interest of the Data Controller (to manage the correct use of the Site and to ascertain any offences committed by Users to the detriment of third parties or to the detriment of the Data Controller).
Data Subject has given the consent during the browsing experience.
Personal data are processed for the pursuit of the Purposes indicated in this information notice on electronic media.
Mandatory or optional nature of providing data
If the User prefers not to receive cookies, he can prevent their transmission by the Site configuring his internet browser.
In some cases, however, the use of certain parts of the Site may be conditional on cookies being stored on the User’s computer.
Categories of persons to whom personal data may be communicated
The processing of the personal data provided may be carried out:
By Data Controller’s staff, who acts and processes data under the authority and instructions of the Data Controller, pursuant to art. 29 of the GDPR or of the employees appointed by the Data Controller, in accordance with art. 2 quaterdecies of Legislative Decree n. 101/2018.
By individual or legal entities whose right to access to the Data Subject’s personal data of the is recognized by legal provisions provided for by European Union law or Italian law, (e.g. Public Authorities for their institutional purposes).
By individual or legal entities that the Data Controller uses for the performance of the instrumental activities to achieve the Purposes (such as, for example, software suppliers, cloud partners, data centre, IT consultants). Third parties who access the information will do so in compliance with the current legislation on the protection of personal data and the instructions given by the Data Controller and will in any case be appointed by the Data Controller, as Data Processors.
A list of Data Processors is available at the Data Controller’s head office.
The data will not be disseminated under any circumstances.
Rights of the Data Subject
The GDPR guarantees the Data Subject specific rights. For each processing operation, the Data Subject may exercise the following rights:
Right of access: you have the right to obtain a copy of your personal data that is being processed.
Right to rectification: you have the right to have your personal data corrected or amended if what is held is incorrect in some way.
Right to object to the processing of your personal data for commercial purposes: you can request that the Data Controller stop to send commercial communications at any time.
Right to object to decisions based on purely automated processes: You have the right to object to any decision based on totally automated processes: you can ask not to be the recipient of decisions made based on totally automated processes, including profiling activity.
The right to withdraw: you have the right to withdraw your consent at any time and without any consequences for you. This means that in future we may no longer continue to process your personal data.
Right to apply to the Data Protection Authority: you have the right to apply to the Data Protection Authority if you have any doubts about the processing of your personal data by the Data Controller.
The Data Subject may also exercise the following rights under certain circumstances:
Right to erasure: you have the right to obtain the erasure of your personal data stored with us if the purposes of data processing no longer exist and unless their processing remains necessary to comply with a legal obligation or legitimate interest.
Right to object to processing: you may request that the Data Controller cease to carry out a particular processing operation on your personal data.
Right to restrict processing: you have the right to obtain the restriction of the processing of your personal data.
Right to data portability: you have the right to obtain a copy of your data in a structured, commonly used, and machine-readable format and to send them to another data controller.
To exercise each of the rights, the Data Subject may send an e-mail or write to the following address specifying the request and providing the Data Controller with the information necessary to correctly identify the sender (also attaching a copy of the identity document):
by e-mail: firstname.lastname@example.org
by mail: LDP Tax & Law, with registered office in Milan, via Michelangelo Buonarroti n. 39 – 20145
The Data Controller will reply within one month. If for some reason the Data Controller is unable to respond, it will provide a detailed explanation as to why it cannot comply with the request.
This information notice may be subject to changes or additions over time; therefore you are invited to periodically consult the Data Controller’s Site – https://ldp-ita.com/ – to remain constantly updated.