Privacy Policy

Processing of Personal Data

Information on the Processing of Personal Data pursuant to Art. 13 of Regulation (EU) 2016/679

Multiweb di Vitalii Iarosh (hereinafter referred to as "the Company”, “Multiweb” or “We”), with its registered office at Largo Carducci 34, Trento, provides this Privacy Policy to explain how we process personal data voluntarily shared within the scope of professional engagements and other interactions with us. Please read this information carefully, and feel free to contact us with any questions or concerns.

(a) Identity and Contact Details of the Data Controller

he Data Controller for personal data is Multiweb di Vitalii Iarosh, based at Trento in Largo Carducci 34. You can reach us via email at:
privacy @multiweb.it. The Company has not appointed a Data Protection Officer (DPO).

(b) Purposes and Legal Basis of Processing

Your personal data will be processed:

(i) without requiring your express written consent (Art. 6, letters b, c, f of the GDPR), exclusively for the following purposes:

• Fulfilling all obligations arising from a professional assignment for assistance or consultancy, including preliminary assessments for accepting the assignment,

• Complying with all legal or regulatory requirements imposed on the Company (both national and EU), such as maintaining orderly accounting records, fulfilling tax obligations, conducting due diligence for anti-money laundering purposes, and providing identification and communication as required by judicial or regulatory orders,

• Exercising the Company’s rights for its legal defence.

(ii) solely with your consent (Art. 7, GDPR), for the following purposes:

• Considering requests for collaboration with the Company,

• Organising events, seminars, courses, and other scientific or professional activities unrelated to specific professional engagements; distributing informational materials, requesting reviews, sending questionnaires, newsletters, and publications.

Providing data for the purposes listed in section (i) is essential for executing or evaluating the engagement and is therefore obligatory. Failure to provide this data or refusal to allow processing will prevent the Company from performing the engagement. Providing data for the purposes listed in section (ii) is optional, allowing you to withhold or withdraw your consent at any time.

(c) Categories of Personal Data Processed

For purposes outlined in paragraph (b), (i), data processed may include, but is not limited to, your name, tax code, VAT number, residence, work address, email or certified email, phone and fax numbers, corporate positions, employer information, job title, and other details necessary to provide professional advice or assistance. For purposes outlined in paragraph (b), (ii), only personal details such as your name, tax code, VAT number, residence, work address, email or certified email, and contact numbers will be processed.

(d) Recipients of Personal Data

Data may be shared with authorised employees, legal advisors, third-party professionals involved in operations, judicial authorities, public entities, and external consultants. Personal data will not be disclosed publicly.

(e) Retention and International Transfer of Personal Data

Personal data will be stored for the duration of the professional relationship and as required by law. Specific data may be retained for up to two years based on consent for the stated purposes. No international transfer of personal data is anticipated. Your data will not be disseminated or shared without explicit consent.

(f) Period of Retention for Personal Data

Data collected for purposes specified in paragraph (b), (i) will be retained as long as necessary to fulfil the purpose for which it was collected. Additionally, the Controller may be required to retain personal data for a longer period when necessary to fulfil legal obligations or by order of an authority.

Data collected for purposes specified in paragraph (b), (ii) will be retained for the duration required to fulfil these purposes, but not beyond two years from the date we receive your consent.

(g) Cookie Policy

This website uses tracking tools. For more details, please refer to our Cookie Policy.

(h) Data Subject Rights

In accordance with Chapter III, Section I of the GDPR, you may exercise the following rights:

• Right of Access – Confirm whether your personal data is being processed and, if so, receive relevant information regarding processing purposes, categories of personal data, retention periods, and recipients (Article 15, GDPR).

• Right to Rectification – Obtain correction of inaccurate personal data and supplement incomplete data without undue delay (Article 16, GDPR).

• Right to Erasure – Obtain erasure of your personal data without undue delay in cases specified by the GDPR (Article 17, GDPR).

• Right to Restriction – Request restriction of processing in specific cases (Article 18, GDPR).

• Right to Data Portability – Receive personal data in a structured, commonly used, machine-readable format and request transmission to another controller, where technically feasible (Article 20, GDPR).

• Right to Object – Object to data processing where the Controller has no overriding legitimate grounds to continue processing (Article 21, GDPR).

• Right to Lodge a Complaint – Lodge a complaint with the data protection authority, the Italian Data Protection Authority, at Piazza di Montecitorio 121, 00186, Rome (RM).

You may exercise these rights by simply sending a request via email to the Company at the above contact details.

(j) Amendments to this Privacy Policy

The Company reserves the right to modify this Privacy Policy at any time, notifying Users on this page and, where feasible, within this website and/or by sending a notification using any available contact information. Users are encouraged to check this page frequently, referring to the date of the last modification listed below.

(k) Processing Methods

Your personal data is processed in line with Article 4, No. 2 of the GDPR, using both manual and automated means, and includes collection, recording, organisation, updating, storage, adaptation, extraction, consultation, use, transmission, comparison, interconnection, restriction, erasure, and destruction.

We guarantee logical and physical security for data and the confidentiality of personal data processed, implementing all appropriate technical and organisational measures to safeguard its security.



Date: 5 November 2024

GO TO HOME PAGE