Cart

close
  • Menu
  • Search
  • Shop; Bag 0

Reader’s Note

In compliance with the provisions of Article 13 of EU Regulation 2016/679 (GDPR), Lampoon Publishing House S.r.l., in its capacity as Data Controller, hereby informs its Clients about the purposes and methods of processing personal data, including any special or sensitive data that may be collected, the scope of their communication and disclosure, as well as the nature of their provision. 

Personal Data Collected 

  • Identification data (company name or corporate affiliation, or first and last name of individuals) 
  • Email address 

Purpose of Processing 

The data collected from Clients and subject to processing are used directly for purposes instrumental to the performance of activities such as: 

  • execution of the legal relationships established with you or to be established, including commitments related to the sending of editorial newsletters following your subscription;
  • compliance with legal obligations connected to the above-mentioned legal relationships;
  • organizational management of any existing relationship; 
  • possible external professional collaborations necessary for the fulfillment of legal obligations; 
  • protection of legal rights and agreements; 
  • institutional communications. 

In full compliance with the principles of fairness, lawfulness, purpose limitation and proportionality, and in accordance with applicable laws, no profiling of the data subject is carried out. 

Processing Methods 

Data processing is carried out through computerized procedures, telematic means, or paper records by authorized internal personnel. 

Data are stored in electronic and telematic archives, and appropriate security measures are ensured in accordance with EU Regulation 2016/679 (GDPR)

There is no automated decision-making process, including profiling as referred to in Article 22, paragraphs 1 and 4 of EU Regulation 2016/679. 

Communication and/or Disclosure 

Personal data will not be communicated, disclosed, sold, or exchanged with third parties, except where communication is necessary for activities related to the organizational structure or indispensable for the execution of obligations undertaken by the parties or for institutional purposes. 

In such cases, use by third parties will occur in full compliance with the principles of fairness and applicable legal provisions. 

No data transfer outside the European Union is currently foreseen. Should such transfers occur, data subjects will be informed in accordance with Article 13(1)(f) of EU Regulation 2016/679 (GDPR)

Incorrect or Missing Communication 

The Data Controller informs that failure to provide, or the incorrect provision of, mandatory information may result in the inability of the Data Controller to ensure that the processing is consistent with the contractual obligations for which it is carried out. 

Rights of the Data Subject 

Under Articles 15, 16, 17, 18, 20, 21 and 22 of EU Regulation 2016/679, the data subject has the right, in addition to lodging a complaint with a supervisory authority, to exercise the following rights by submitting a written request to the Data Controller. 

Article 15 – Right of Access 

The data subject has the right to obtain confirmation from the Data Controller as to whether or not personal data concerning them are being processed and, if so, access to the personal data and related information. 

Article 16 – Right to Rectification 

The data subject has the right to obtain the rectification of inaccurate personal data without undue delay. Considering the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by providing a supplementary statement. 

Article 17 – Right to Erasure (“Right to be Forgotten”) 

The data subject has the right to obtain the erasure of personal data concerning them without undue delay, and the Data Controller is obliged to erase such data without undue delay where applicable. 

Article 18 – Right to Restriction of Processing 

The data subject has the right to obtain restriction of processing where one of the following applies: 

  • the accuracy of the personal data is contested, for the period necessary for verification;
  • the processing is unlawful and the data subject opposes the erasure of the data and requests restriction instead; 
  • the Data Controller no longer needs the personal data for processing purposes, but they are required by the data subject for the establishment, exercise or defense of legal claims;
  • the data subject has objected to processing pursuant to Article 21(1), pending verification of whether the legitimate grounds of the controller override those of the data subject. 

Article 19 – Notification Obligation 

The Data Controller communicates any rectification, erasure or restriction of processing to each recipient to whom the personal data have been disclosed, unless this proves impossible or involves disproportionate effort. The Data Controller will inform the data subject about these recipients if requested. 

Article 20 – Right to Data Portability 

The data subject has the right to receive the personal data concerning them in a structured, commonly used and machine-readable format and has the right to transmit those data to another Data Controller without hindrance. Where technically feasible, the data subject also has the right to have the personal data transmitted directly from one controller to another. 

Article 21 – Right to Object 

The data subject has the right to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them pursuant to Article 6(1)(e) or (f), including profiling based on those provisions. 

Article 22 – Right Not to Be Subject to Automated Decision-Making 

The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them. 

To exercise the rights provided for by Articles 15 and following of EU Regulation 2016/679, please contact the Data Controller at privacy@lampoon.it

Data Controller, Processors and Data Protection Officer (DPO) 

The Data Controller is Lampoon Publishing House S.r.l., with registered office at Via Bagutta 14, 20121 Milan, Italy

An updated list of Data Processors may be obtained by submitting a written request to the Data Controller. 

The Data Controller has appointed a Data Protection Officer (DPO) pursuant to Article 37 of EU Regulation 2016/679, who can be contacted at privacy@lampoon.it

Data Retention Period 

Data will be retained for the time necessary to fulfill the purposes indicated above and, more specifically: 

  • for accounting and tax purposes, in accordance with applicable law, for a period of 10 years from the date of termination of the established relationship.

Legal Basis and Nature of Consent Pursuant to obligations arising from the existing contractual relationship, consent to the processing of data is not required for the purposes indicated in points 1–6 of paragraph 2, as such data are collected for the execution of the requested service and the obligations deriving from the agreement between the parties.