Journalists Policy
Privacy Notice for the Processing of Personal Data of Candidates pursuant to Articles 13 and 14 of Regulation (EU) 2016/679 (“GDPR”)1
1.Contact Details of the Data Controller and Data Protection Officer
| Data Controller | Data Protection Officer (DPO) |
|---|---|
| Pirate Rocket S.r.l. (P.IVA 02644170033), with registered office at 20125, Milan, Via Giovanni Battista Sammartini, 33, email address [email protected], hereinafter referred to as the “Controller” | [email protected] |
2. Data Categories Processed and Data Source
2.1 The data includes your identifying information such as, for example and not exhaustively, name, surname, place and date of birth, tax code, gender, telephone contacts, email address.
2.2 The aforementioned data is collected directly from you as the data subject and/or from publicly accessible sources such as your professional profile within professional social network platforms (within the limits outlined in this notice).
3. Why are your data being processed?
| Perché vengono trattati i suoi dati? | What is the condition that makes the Processing lawful? | For how long do we retain your data? |
|---|---|---|
| 1. Marketing Purposes | 1. Consent of the data subject (Art. 6(1)(a) GDPR); 2. Legitimate interest of the Company (Art. 6(1)(f) GDPR); 3. Performance of re-contractual measures taken at your request (Art. 6(1)(b). |
1. The data will be kept for the period necessary to fulfill the purposes and in any case in compliance with the terms provided by the law regarding prescription and forfeiture. |
5. Data Recipients Categories
5.1 The data may be disclosed to entities acting as independent data controllers (including companies within the Owner's Group, professionals, public entities, auditing or supervisory bodies), also in fulfillment of legal obligations, or processed on behalf of the Owner by subjects designated as Data Processors who are given appropriate operational instructions.
1 Note: The information pursuant to Article 14 of the GDPR may be used in case of data collection from third parties.
6. Authorized Data Processors
6.1 Data may be processed by employees of the company functions or third parties assigned to pursue the aforementioned purposes, who have been expressly authorized for processing and have received adequate operational instructions.
7. Transfer of Data Abroad
7.1 Personal data are stored in computerized archives located both within the European Union and outside it if this is instrumental to achieving the purposes indicated in point a). In the latter case, the Controller ensures that companies outside the European Union are processing personal data with the utmost confidentiality in compliance with the European Commission's adequacy decisions or, if necessary, by entering into agreements ensuring an adequate level of protection.
8. Data Subject Rights
8.1 You may request from the Controller access to the data concerning you, their rectification or erasure, the restriction of processing in cases provided for by Article 18 of the GDPR; to receive the data concerning you in a structured, commonly used, and machine-readable format, and, if technically feasible, to transmit them to another controller without hindrance where the conditions for the exercise of the right to data portability under Article 20 of the GDPR are met (the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) of the GDPR or on a contract pursuant to Article 6(1)(b) of the GDPR).
8.2 For proper handling of the request, the Controller may request further specifications from the Data Subject. The Controller will process the request within 30 days of receiving it; if this deadline cannot be met, it is the responsibility of the Controller to inform the Data Subject and keep them updated on the progress of the communication sent.
8.3 These rights can be exercised by writing to [email protected] and/or [email protected].