PRIVACY POLICY

Go to italian version

GIVA S.p.A. recognizes the importance of the protection of personal data, undertakes to respect the privacy of users, to process personal data with care and confidentiality and not to use them for purposes other than those specified below.
The present policy contains all information regarding the handling of the user's personal data operated by this website. This notice is given also pursuant to Article 13 of EU Regulation 679/2016 for those who interact with the web services of GIVA S.p.A.:

  • www.givagroup.it

This Policy may be amended or updated at any time by GIVA S.p.A. This information applies only to this web site and not to other web sites accessed by the user via links except those indicated above.

Data Controller

The Data Controller is:
GIVA S.p.A.
Via Risorgimento 63, Rho (MI) - 20017
Fiscal Code and VAT number: IT 02917180172
(hereinafter “GIVA”).

Data and purpose of the processing

GIVA informs the website users that the data collected will be used only for the purposes specified below. The personal data being processed are navigation data and data voluntarily provided by the user.

1. Navigation data

The computer systems used to operate the website acquire some personal data necessary for the operation of the platform and information whose transmission is implicit in the protocols used for internet connection and navigation.
Some information related to the browser session and generic data related to the device used by the user are also acquired. All data are acquired anonymously and the acquisition does not refer to a particular user or for profiling purposes.

2. Voluntary data provided by the user

To access some services of the website the user provides to GIVA different types of data in spontaneous form after having read this information and given consent to the processing for one or more of the purposes provided and listed below.
GIVA will use the data collected for:

  • a) purposes related to the use of the website services (website navigation);
  • b) activities strictly connected with and instrumental to the relationships management with customers and potential co-workers (contact requests);
  • c) evaluation of job applications processing data related to resumes.

The provision of data for the purposes referred to in letter c) is optional and is to be undertaken pursuant to Article 7 of GDPR.

Data processing procedures

Data processing is undertaken pursuant to Article 4 no. 2) of the GDPR by means of the following operations: collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction of data.

The personal data are subjected to both paper and electronic and/or automated processing.

Starting with their receipt/ update, your personal data will be stored for a period that is appropriate considered the purposes of the processing indicated above.
For further information about data retention periods, please contact .

Data disclosure and dissemination

Data that are being processed will not be disclosed; however, for the purposes referred to in this statement, data may be disclosed to GIVA Group’s companies and to third parties, including commercial partners, consultants and freelancers, banks and credit institutions, insurance companies, finance companies, factoring companies, leasing companies, service companies, credit management and recovery companies, auditors, debt collection companies, public authorities, audit or supervisory bodies, in order to fulfil obligations deriving from the law, regulations, community legislation or from aspects concerning management and execution of the legal relationship established with you currently or in the past.

Data will be processed by the following parties:

  • Company employees of the GIVA Group, who operate as authorized data processors according to their instructions and the duties they perform.
  • External Processors pursuant Article 28 of the GDPR.

A detailed list of Data Processors is available at the registered office of GIVA.

Rights of the Data Subject

It is specified that, as data subjects, you may request at any time:

  • a) access to personal data;
  • b) data rectification if they are not accurate;
  • c) data erasure (“right to be forgotten”);
  • d) restrict its processing;
  • e) data portability, i.e. the right to receive the personal data provided in a structured format, of common use and readable by an automatic device, and to have the data transferred to another Data Controller without hindrance;
  • f) right to object the processing of personal data.

Although not expressly provided by the provisions referred to in this policy, please refer to the regulations in force for the Privacy subject and specifically to Articles 15, 16, 17, 18, 20 and 21 of the GDPR.