Information on the processing of personal data BUILDING IMMOBILIARE SAS with registered office in Viale Mazzini 12 / D / R - 50132 Florence VAT / CF 06200080486 (hereinafter, "Data Controller"), as data controller, informs you pursuant to art. 13 D.Lgs. 30.06.2003 n. 196 (hereinafter, "Privacy Code") and art. 13 EU Regulation n. 2016/679 (hereinafter, "GDPR") that your data will be processed in the manner and for the following purposes. 1. Object of the treatment The Data Controller processes personal, identifying and non-sensitive data (for example, but not limited to, name, surname, company name, address, telephone number, e-mail address - hereinafter, "personal data" or even "data") communicated by you upon registration on the website www.buildingimmobiliare.com of the Owner (hereinafter, "Site"). 2. Purpose of the processing Your personal data are processed: A) without your express consent (Article 24 letter a), b), c) Privacy Code and art. 6 lett. b), e) GDPR), for the following Service Purposes: manage and maintain the site; process a contact request; fulfill the obligations established by law, by a regulation, by community legislation or by an order Authority; prevent or detect fraudulent activities or malicious activities harmful to the Site; exercise the rights of the owner, for example the right to exercise a right in court. B) only subject to your specific and distinct consent (articles 23 and 130 of the Privacy Code and article 7 of the GDPR), for the following Other Marketing Purposes / Purposes: send them by e-mail, mail and / or text messages and / or telephone contacts , newsletters, commercial communications and / or advertising material on the services offered by the Owner and detection of the degree of satisfaction with the quality of services; Please note that if you are already a customer, we may send you commercial communications relating to services and products of the Owner similar to those you have already used, subject to your disagreement (Article 130 paragraph 4 of the Privacy Code). 3. Methods of processing The processing of your personal data is carried out by means of the operations indicated in art. 4 of the Privacy Code and art. 4 n. 2) GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. Your personal data are processed (both paper and electronic and / or automated, through the use of website hosted on the SERVICE PROVIDER infrastructure: ARUBA.it). The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes and in any case for non more than 10 years from the termination of the relationship for the purposes of service and no later than 2 years from the collection of data for other purposes. 4. Security The Owner has taken a variety of security measures to protect your data against the risk of loss, misuse or alteration. In particular: has adopted the measures referred to in Articles 32-34 of the Privacy Code and art. 32 GDPR. 5. Access to data Your data may be made accessible for the purposes referred to in art. 2.A) and 2.B): to the employees and collaborators of the Data Controller, in their capacity as persons in charge and / or internal managers of the treatment and / or system administrators; to third-party companies or other entities (as an indication, web site provider, cloud provider, service provider and- payment, suppliers, technicians involved in hardware and software assistance, shippers and carriers, credit institutes, professional offices, etc.) who carry out outsourcing activities on behalf of the Data Controller, in their capacity as data processors. 6. Data communication Without your express consent (pursuant to Article 24 letter a), b), d) Privacy Code and art. 6 lett. b) and c) GDPR), the Owner may communicate your data for the purposes referred to in art. 2.A) to Supervisory Bodies, Judicial Authorities and to all the other subjects to whom the communication is mandatory by law for the accomplishment of said purposes. Your data will not be disclosed. 7. Data transfer The management and storage of personal data will take place on the Server indicated above (Italy) of the Data Controller and / or third-party companies appointed and duly appointed as Data Processors. The Data Controller hereby ensures that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided by the European Commission.