Italdesign Giugiaro S.p.A. is always been strongly committed to the protection of personal data: getting compliant to the EU General Regulation 2016/679 on the protection of personal data was only the last step of a process aimed at the definition and continuous improvement of a Management System for Privacy.
Italdesign, as Data Controller, handles personal data of every subject who interacts with the Company (Employees, Customers, Suppliers, Business Partners, etc.) from the first contact with them, in compliance with the principles of lawfulness, correctness and transparency pursuant to art. 5 of the Regulations and always operates in such a way in order to guarantee the confidentiality and security of information.
The Company is keen on ensuring that the information and data collected and used are adequate, relevant and limited to what is necessary with respect to the purposes for which they are collected, in compliance with the Principle of Minimization and that they are always processed in such a way as to guarantee their security, also through adequate technical and organizational measures aimed at avoiding the risk of loss, unauthorized access, illicit use and dissemination thereof, in compliance with the Principle of Accountability.
To this purpose, the Company has adopted a Privacy Organizational Model, containing practical instructions on how to manage the flow of personal data, and has defined a Privacy Organization Chart identifying the subjects that within the Company have duties and responsibilities regarding the protection of personal data. These measures guarantee that access to personal data is permitted only to subjects authorized by the Data Controller, as well as to third parties, who are in any case appointed as Data Processors.
The Company has then created for each category of personal data subjects a specific information identifying in detail the types of data, the purposes and the legal bases of processing. Moreover, the Company has activated a direct channel with the personal data subjects, who can make requests for further information, as well as exercise their rights pursuant to articles. 15 and ss. of the Regulations, writing to firstname.lastname@example.org.
Finally, the decision to appoint a Data Protection Officer (DPO), is a further signal of the particular attention paid by the Company to the protection of personal data. Italdesign’s DPO, in addition to acting as a point of contact for the Italian Privacy Authority (Garante per la protezione dei dati personali), acts as a constant reference for everyone within the Company who is authorized to process personal data, but also for any personal data subject (email@example.com).
The specific information about the processing of personal data of users of this website can be found here.