REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016
on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
In accordance with article 13 of the Regulation (EU) 2016/679, also known as General Data Protection Regulation (hereinafter “GDPR”), BLISS CORPORATION S.r.l. informs all the subjects visiting and interacting with the present website that their personal data (hereinafter “Data”) will be processed in compliance with what stated in the GDPR and any applicable law concerning the processing of personal data pursuant to the following policy, communicating which are the purposes and the procedures with which the personal data collected will be treated, the context of their transmission and diffusion, as well as the nature of their contribution
and the rights of individuals in respect of their personal data.
1. Owner of the processing. Responsible of the Data protection.
2. Data Categories
The Data handled by the Owner includes: (i) biographical data (name, surname, age, sex, TAX ID, date and place of birth), home address and contact details (phone number, email address); (ii) bank details and or payment data; (iii) links to personal social network profiles.
3. Purposes of and legal basis for the processing. Legitimate concern.
The Data will be processed to pursue administrative purposes related to the management of the Royalties and will respect the regulatory requirements pursuant to article 6, clause 1, letters b) and c) of GDPR, as well as the prosecution of the legitimate concern of the Owner, according to article 6, clause 1, letter f) of GDPR, with reference to:
In any case, the processing of your Data realized in accordance with the Owner’s legitimate concern will happen, as well as in accordance with Article 6, clause 1, letter f) of GDPR, also according to the provisions described in the recital nr. 47 and to the Opinion n.6/2014 Article 29 Data Protection Working Party, par. III.3.1.
4. Processing procedures
The processing of Data is carried out through computerised procedures or via IT or paper resources by an internal part and/or an external subject authorized for the purpose; such processing is inspired by fair principles, lawfulness, openness and the safeguard of users' rights and privacy. The integration and organisation in databases, pursuant to what has been arranged by the GDPR in relation to security measures, is handled, in any case, in such a way that it ensures the confidentiality of the Data.
5. Addressees or categories of addressees
The personal Data are not communicated, sold or exchanged with third parties, except possible communications to consent operations related to the structure or, if it is essential, to the fulfillment of obligations of each party. In these cases said transmission to third parties will fully respect the fair principles and the law.
6. Retention period
The Data will be stored by BLISS CORPORATION S.r.l. for the period required to carry out the purposes and to guarantee the correct distribution of all the services - with the exception of the necessity of storing them for a longer period, in accordance with the applicable regulation. The Data transmitted to any third party will be processed for the time necessary to the accomplishment of the tasks which they have been given.
7. Access, erasure, restriction
of processing and portability rights.
8. Right to object
9. Right to lodge a complaint with a supervisory authority.
The Owner informs that every user can lodge a complaint with the supervisory authority for the protection of personal Data in case they believe that the rights of which he is owner in the sense of the GDPR or any applicable regulation have been violated, following the procedure pointed out on the Supervisory Authority website: www.garanteprivacy.it.