In accordance with Regulation (EU) 2016/679 (“GDPR”), Competence S.r.l. provides this notice regarding the processing of personal data of users who browse the website https://competencecommunication.com/ (“Website”) and who provide their personal data to access the services offered therein.
This information does not apply to other websites or online services that may be accessed via hyperlinks published on the Website, but that refer to external resources not owned by Competence (such as videos playable through the Vimeo video-sharing platform).

1. Data Controller

The Data Controller is Competence S.r.l. (“Competence”, “Controller”, “Company”), with registered office at Via Antonio Kramer, n. 31, 20129 – Milan (MI), VAT no. 05109310960, Phone: +39 02 367 47 820, Email: info@compcom.it.
For any matter relating to your personal data (including the list of Data Processors) or to exercise your rights, you may write to info@compcom.it.

2. Personal data processed

Competence will process the following user personal data:

  1. Browsing data
    That is, personal data whose transmission is implicit in the use of Internet communication protocols, such as IP addresses and domain names of the computers and terminals used by users, URI/URL (Uniform Resource Identifier/Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the response status given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment. For data processed through the use of cookies, refer to the specific policy (insert hyperlink).
  2. Data provided by the user
    That is, all data that the user decides to share with Competence to access the services available on the Website. In particular, to use the services offered on the Website, users may provide:
    Personal details: first name, last name, company, phone number, email, résumé (for services such as “Let’s Keep in Touch”, “Newsletter”, “Work with Us” and “Join the Club”);
    ◦ Personal data included in messages sent to Competence to request information.
  3. Cookies
    Please refer to the Cookie Policy, available at the following link: https://competencecommunication.com/cookie-policy/.

3. Purpose, data processed, legal basis, and retention period

To deliver the content of the Website, your browsing data and cookies (both technical and analytical) will be processed based on the legitimate interest of the Company. Retention periods are detailed in the cookie policy.
To provide the “Let’s Keep in Touch” service in the “Contact” and “Work with Us” sections of the Website, your personal details, contact information, and résumé will be processed based on your freely given consent. These data will be stored for 6 months from submission unless consent is revoked earlier. After the revocation or the 6-month period, the data will be deleted and no longer used for this purpose.
To provide the “Newsletter” service, your contact information will be processed based on your freely given consent. These data will be stored until consent is revoked, after which they will be deleted and no longer used for this purpose.
To provide the “Join the Club” service, your personal details, contact information, photos, and videos will be processed based on your freely given consent. These data will be stored until consent is revoked, after which they will be deleted and no longer used for this purpose.

4. Data processing methods

Your personal data will be processed using electronic or automated tools, using methods and instruments designed to ensure the security and confidentiality of the personal data.

5. Communication of personal data

Your personal data may be disclosed to public and/or private entities, individuals and/or legal entities (legal, administrative, and tax consulting firms, etc.), where such communication is necessary or functional to comply with legal obligations.
The Data Controller employs employees and/or collaborators, to whom personal data may be communicated for the proper functioning of the Website.
In managing the Website, the Data Controller relies on companies, consultants, or professionals responsible for installing, maintaining, updating, and managing the Controller’s hardware and software systems or systems used to deliver its services. Therefore, solely for these purposes, your data may also be processed by these entities.
For sending communications, the Data Controller uses external companies responsible for this type of communication (CRM platforms), duly appointed as Data Processors, to whom your personal data may be disclosed.

6. Transfer of personal data outside the European Economic Area

Except as provided in the cookie policy (see hyperlink), no transfer of personal data to countries outside the European Economic Area (“EEA”) or to international organizations is foreseen.
Should such a transfer become necessary, the measures provided for by the GDPR will be implemented, and this notice will be updated accordingly.

7. Data subjects’ rights

Pursuant to Articles 15-22 of the GDPR, data subjects may contact the Data Controller to exercise specific rights such as:

  1. Right of access: the right to obtain confirmation from the Controller as to whether or not personal data concerning them are being processed, and, if so, to access the personal data and information about their origin, purpose, categories, recipients, etc.;
  2. Right to rectification: the right to obtain from the Controller the correction of inaccurate personal data without undue delay, and the completion of incomplete data, including by providing a supplementary statement;
  3. Right to erasure: the right to obtain the deletion of personal data without undue delay where:
    ◦ the personal data are no longer necessary in relation to the purposes for which they were collected;
    ◦ the consent on which the processing is based is withdrawn and there is no other legal basis for processing;
    ◦ the data have been unlawfully processed;
    ◦ the personal data must be erased to comply with a legal obligation under Union or Member State law;
  4. Right to object: the right to object at any time, on grounds relating to their particular situation, to processing of personal data pursuant to Article 6(1)(e) or (f) GDPR, including profiling based on those provisions;
  5. Right to restriction of processing: the right to obtain restriction of processing where the accuracy of the data is contested (for the period necessary to verify it), where the processing is unlawful and/or the data subject has objected;
  6. Right to data portability: the right to receive the personal data in a structured, commonly used, and machine-readable format and to transmit those data to another controller, applicable only where the processing is based on consent and carried out by automated means.
    To exercise these rights, make a report, or request clarification on personal data processing, data subjects may contact Competence at the following email address: info@compcom.it.

You are also reminded of your right to lodge a complaint with a supervisory authority. Without prejudice to other administrative or judicial remedies, any data subject who considers that the processing of their personal data infringes the GDPR has the right to lodge a complaint with the supervisory authority of the Member State in which they reside or work, or where the alleged infringement occurred. In Italy, the competent authority is the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali).

8. Social media

Competence uses social media for the purpose of communicating content related to its products and services:

https://www.facebook.com/competencecommunication/
https://www.linkedin.com/company/competence-communication/
https://www.instagram.com/competencecom/

Third-party websites that can be accessed via this Website are not covered by this notice.