INFORMATION PROVIDED IN ACCORDANCE WITH ARTICLE 13 OF REGULATION (EU) 2016/679

 

PREMISE

In accordance with article no. 13 of Regulation (EU)  2016/679, T.G.R. S.r.l., as "Controller" of personal data processing, is required to provide you with information on the use of your personal data.

 

  1. Name and contact details of the controller

The Controller of your personal data referred to in this information disclosure is TGR SRL, Viale dell’Industria, 5, 29015 Castel San Giovanni (PC). In order to simplify the methods for forwarding data and reducing feedback time, please use the e-mail address privacy@tgrsrl.it. for any requests and/or queries you may have regarding section 9 of this information disclosure.

 

  1. The Personal Data Protection Officer

T.G.R. S.r.l. is not required to appoint a Data Protection Officer (DPO).

 

  1. Processors

The Company may use third parties for performing tasks and for processing personal data of which the company is the controller. In accordance with legislative provisions, such parties are required to ensure adequate levels of expertise, processing capacity and reliability for guaranteeing compliance with the current provisions on processing, including data security.

Instructions, tasks and responsibilities for such third parties are determined on their appointment as "Processors". Such parties undergo periodic audits in order to check that the guaranteed service levels recorded on initial appointment are maintained over time.

 

  1. Parties authorised to process your personal data

Your personal data may only be processed by the organisation appointed for this purpose and by any co-workers previously authorised and appointed as processors that are given appropriate instructions regarding measures, precautions and working methods, all aimed at protecting your personal data in the best way possible.

 

  1. Purposes and lawfulness of processing

Your personal data will be processed for the following purposes: for ascertaining conduct, acts or omissions that harm the public interest or the integrity of TGR. Processing of your personal data will be performed by TGR S.R.L. in compliance with the statutory obligation on the controller, in implementation of Italian Legislative Decree no. 24 of 10 March 2023 concerning "the protection of persons reporting breaches of EU law and containing provisions concerning the protection of persons reporting breaches of national regulatory provisions". 

 

  1. Personal data recipient categories

The Judicial Authority and ANAC (National Anti-Corruption Authority) are recipients of the data collected following a report being made, as appropriate.

Personal data collected will also be processed by company personnel, as shown in section 4 of this information disclosure.

 

  1. Transfer of personal data to non-EU countries

Your personal data will not be transferred outside the European Union.

 

  1. Retention Period

Your personal data will be retained for a period not exceeding that necessary for pursuing the purposes previously described. For such purpose (by various means including periodic checks) ongoing monitoring will be conducted with a view to checking that data retained are strictly relevant, indispensable and not redundant or in excess with respect to the relationship, the performance of a service or any tasks (to be established or previously ceased) in relation to the personal data that you have voluntarily provided. Data that, also as a result of such checks, are deemed redundant, irrelevant or non-essential will not be used, except for any storage of the report and relevant annexed documentation that contains such data and, however, no later than five (5) years from the date of notification of the final outcome of the reporting procedure.

 

  1. Your rights

As a data subject, you are entitled to:

  • access your personal data; • obtain rectification or erasure of your personal data, restrict the processing that concerns you; • oppose processing; • lodge a complaint with the Data Protection Authority, known in Italy as the "Garante".

 

  1. Providing your data

Providing your personal data is optional. It is also possible to make a report anonymously, however without enjoying the whistleblower protections provided under Italian Legislative Decree 24/2023.