del Torre & Partners
Studio legale associato – Anwaltskanzlei

L’indirizzo del nostro sito web è: https://sviluppo.unidea.works/deltorre.

Information pursuant to art. 13 of the European Regulation 679/2016 (GDPR)

Pursuant to art. 13 of the EU Regulation n. 2016/679 (General Data Protection Regulation, hereinafter GDPR), and with reference to the personal data that will be made available to the law firm when you entrust it with your case, we inform you as follows:

Data Controller and Person Responsible for the Protection of Personal Data

The Data Controller is the law firm Del Torre & Partners, with registered office in Gorizia, Corso Verdi 90, which can be contacted by email at segreteria@euroius.it. In compliance with the legislation in force, any operation concerning the personal data collected will be based on the principles of correctness, lawfulness and transparency.

Type of Data and Purpose of Data Processing

For the purposes of performing the professional mandate, the Data Controller may process personal, identification, financial, particular and judicial data of the Data Subject, his/her family and/or collaborators, and other subjects whose personal data he/she will provide for reasons relating to the protection of his/her rights.

The data will be processed electronically and on paper, for the following purposes:

• Fulfilling the defense, assistance or consultancy mandate specifically conferred.
• Facilitating communication with the Subject.
• Fulfilling the legal obligations as to tax, fiscal, accounting laws, and complying with the requirements set forth by the anti-money laundering legislation.

Legal Basis for the Processing

The Data Controller processes your personal data lawfully, where the processing:

• is necessary for fulfilling the mandate, a contract of which you are a party, or for executing of pre-contractual measures adopted upon request;
• is necessary for fulfilling a legal obligation incumbent upon the professional;
• is based on your express consent.

Consequences of a Failure to Provide Personal Data

With regard to personal data relating to the execution of a contract of which you are a party, or relating to the fulfillment of a regulatory obligation (for example the obligations related to the keeping of accounting and tax records), the failure to provide personal data prevents the implementation of the contractual relationship itself.

Data Storage

Your personal data, being the object of the processing for the purposes listed above, will be kept for the duration of the contract and, subsequently, for the time for which the Data Controller is subject to storage obligations for tax purposes, or for other purposes provided for by law or regulation provisions.

Data Transfer

The data provided for reasons related to the fulfillment of the professional mandate may be accessed by:

• employees of the law firm as internal data processors, trained for this task by the Data Controller;
• colleagues and collaborators of the law firm;

and the data may be transferred to

• service companies, consultants and accountants or other lawyers who provide services that are functional for the purposes listed above;
• banking and insurance institutions that provide services that are functional for the purposes listed above;
• subjects who process data or the fulfillment of specific legal obligations;
• judicial or administrative authorities, for the fulfillment of legal obligations. 

Profiling and Data Disclosure

Profiling and Data Disclosure

Your personal data are not subject to disclosure or to any wholly automated decision-making process, including profiling.

The data collected could be transferred to third countries outside the European Union, for example to foreign judicial authorities, to colleagues and/or collaborators, and/or to experts, technicians and consultants, solely when this is necessary to ascertain, exercise or defend a right of the Data Subject in court, or when this is necessary to perform the professional mandate conferred.

Rights of the Data Subject

The rights of the Data Subject recognized by the GDPR include those of:

• requesting the Data Controller to access your personal data and information related to them; to rectify inaccurate data or to integrate incomplete data; to erase personal data concerning you (upon the occurrence of one of the conditions listed by art.17, paragraph 1 of the GDPR and in compliance with the exceptions provided for by paragraph 3 of the same article); to restrict the processing of your personal data (in the event of one of the hypotheses listed by art.18, paragraph 1 of the GDPR);
• requesting and obtaining from the Data Controller – in the cases in which the legal basis of the processing is the contract or consent, and the same is carried out by automated means – your personal data in a structured format, readable by an automatic device, also for forwarding such data to another data controller (so-called right to the portability of personal data);
• objecting to the processing of your personal data at any time, in the event of particular situations concerning you;
• withdrawing your consent at any time, limited to cases in which the processing is based on your consent for one or more specific purposes and concerns common personal data (for example date and place of birth or place of residence), or particular categories of data (e.g. data revealing your ethnic origin, political views, religious beliefs, health or sex life). The processing based on your consent and carried out prior to the revocation of the same retains, however, its lawfulness;
• lodging a complaint with a supervisory authority (the Italian Authority for the protection of personal data – www.garanteprivacy.it).