Information on the processing of personal data ex art. 13-14 EU 2016/679

Enoteca Regionale di Nizza, in its capacity as the Data Controller of your personal data, pursuant to and in accordance with EU Reg. 2016/679 hereinafter ‘GDPR’, hereby informs you that the aforementioned legislation provides for the protection of data subjects with respect to the processing of personal data and that such processing will be based on the principles of fairness, lawfulness, transparency and protection of the confidentiality and rights of the data subjects.

Personal data, including, subject to consent, contact and/or browsing data (e.g.: first name, last name, e-mail, telephone number, IP address, domain names, Cookies as per the cookie policy) will be processed in accordance with the legislative provisions of the above-mentioned legislation and the confidentiality obligations stipulated therein.

Purposes and legal basis of processing: in particular, personal data will be processed for the following purposes related to the implementation of fulfillments related to legislative obligations:


Methods of processing. Personal data may be processed in the following ways:

entrusting third parties with processing operations;

processing by means of electronic computers;

manual processing by means of paper archives.

All processing is carried out in accordance with the modalities set out in Articles 6, 32 of the GDPR and through the adoption of the appropriate security measures provided.

Personal data will be processed only by competent and duly appointed persons for the performance of the services necessary for the proper management of the relationship, with guaranteed protection of the rights of the data subject, as well as by personnel expressly authorized by the Data Controller.

Data Controller: the Data Controller, according to the Law, is Enoteca Regionale di Nizza, based in Nizza Monferrato (AT) via Crova n. 2, e-mail:, telephone: 0141 439294, mobile 320 1414335;  P.Iva: 01410770059) in the person of its legal representative pro tempore.

The User has the right to obtain from the Controller the deletion (right to be forgotten), limitation, updating, rectification, portability, opposition to the processing of personal data concerning him/her, as well as in general he/she may exercise all the rights provided for in Articles 15, 16, 17, 18, 19, 20, 21, 22 of the GDPR.

EU Reg. 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22 – Rights of the Data Subject

  1. The interested party has the right to obtain confirmation of the existence or non-existence of personal data concerning him/her, even if not yet registered, their communication in intelligible form and the possibility of making complaints to the Control Authority.
  2. The interested party has the right to obtain indication of:

Of the origin of the personal data;

Of the purposes and methods of processing;

of the logic applied in case of processing carried out with the aid of electronic instruments;

of the identification details of the data controller, data processors and the representative designated pursuant to Article 5, paragraph 2;

of the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of them in their capacity as designated representative in the territory of the State, managers or appointees.

  1. The interested party has the right to obtain:

the updating, rectification or, when interested, the integration of data;

the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;

certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;

portability of the data.

  1. The data subject has the right to object, in whole or in part:

on legitimate grounds, to the processing of personal data concerning him/her, even if pertinent to the purpose of collection;

to the processing of personal data concerning him/her for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication.


Non hai un account? Registrati