ESA engineering is committed to safeguarding and respecting everyone’s privacy.

Respecting privacy is essential to us and represents one of our main commitments. Personal information will be suitably protected, according to the terms established by law, avoiding improper or unauthorized use, to protect the dignity, image and privacy of each person, whether internal or external to the Company.

For more information on what personal data we may collect or store, how we may use it, the purposes for which we collect it, who we may share it with, how we protect and keep it safe, the rights you have in relation to these data, we invite you to consult the documents provided below in compliance with the Italian General Regulation for the protection of personal data n. 2016/679.

Information Notice on Personal Data Processing for Clients

In accordance with Art. 13 of the General Data Protection Regulation (GDPR 2016/679)

Pursuant to Art. 13 of the UE 2016/679 Regulation, the company E.S.A. Engineering Srl Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), the Data Controller, shall provide you with the following information on personal data processing concerning natural persons.

Purposes and legal basis for the processing

The persona data of the Client, a natural person, or a person representing a legal entity, and possibly the data of its employees (name and surname, role/job, email and company telephone number) shall be used for:

  • providing quotations or complying with other pre-contractual requests;
  • providing the services set forth in the contract;
  • fulfilling any legal and/or regulatory obligations (e.g. invoicing, book-keeping);
  • protecting the rights of the Company, therefore the legitimate interest of the Data Controller, both in court and out of court;

The data subject may refuse to provide the Data Controller with their personal data for the purposes described in the previous points; however, provision of personal data is necessary for the correct and efficient management of the contractual relationship. Therefore, refusal to provide the data may compromise the contractual relationship wholly or partly.

We also inform you, as our client, that should you consent by signing the form at the end of this document, we will use the email address provided upon sale to send promotional material related to products similar to those we have supplied you with.

For this purpose, your refusal will not affect the provision of the requested products or services. Please be reminded that you can also cancel your authorization at any time with a simple verbal or written communication to the Data Controller. You will find instructions as to unsubscribe from our list at the bottom of the emails that we will send you.

Methods of Processing

Data shall be processed by using suitable tools and procedures to ensure security and confidentiality, and shall be performed either by paper, or with electronic tools.

Scope of Data Processing and Communication

Personal data will be processed by our authorized personnel, and by our consultants within the limits necessary to carry out their professional assignment on behalf of our Company, and identified as the Processors.

To have the complete list of the Processors, you can contact the Data Controller at any time at the addresses provided at the end of this document.

We shall not “disseminate” your personal data, i.e. we shall not made it available to unspecified parties; we may “communicate” it to public and private third parties, that can access the data by virtue of the provisions of law or regulation and within the limits imposed by these rules.

Transfer of Personal Data to Third Countries or International Organizations

No data shall be transferred to countries outside the EU nor to international organizations.

Automated Data Processing

The company does not carry out data processing based on an automated decision-making process, including profiling that produces legal effects concerning a person or that may significantly affect him or her.

Data retention periods

Data shall be processed throughout the duration of the contractual relationships and for the following time required to fulfill all legal obligations. The data provided shall be retained in our archives according to the following parameters:

For administration, accounting, contracting, management of any litigation: from 5 to 10 years as established by the Italian Civil Code and by the rules governing powers and inspections on tax matters, without prejudice to any specific reasons that justify its extension (e.g. in the event of litigation or investigations by the competent authorities).

We will send you promotional messages via email until you elect to stop receiving them by exercising the right to withdrawal at any time and in the manner previously explained.

Rights of the Data Subject

Each data subjects who believes that the processing concerning him or her data infringes the Regulation has the right to lodge a complaint with the Garante (Italian Data Protection Authority), as provided for by art. 77 of the Regulation, or to start judicial proceedings (Article 79 of the Regulation).

Right to Complain

Each data subjects that believes that the processing infringes the Regulation has the right to lodge a complaint with the Garante (Italian Data Protection Authority), as provided for by art. 77 of the Regulation, or to start judicial proceedings (Article 79 of the Regulation).

Contact details for the Data Subject to enforce its or her rights

Data Controller, E.S.A. Engineering Srl, Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), Italy, Tel. +39 055 373949, Fax +39  055 0675863, email: info@esa-engineering.com

Data Protection Officer, HR and General Affairs Manager, Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), Italy, Tel. +39 055 373949, Fax +39 055 0675863, email: privacy@esa-engineering.com

 

Kind Regards.

The Company E.S.A. Engineering Srl

Data Controller

Information Notice on Personal Data Processing for Suppliers

In accordance with Art. 13 of the General Data Protection Regulation (GDPR 2016/679)

Pursuant to Art. 13 of the UE 2016/679 Regulation, the company E.S.A. Engineering Srl Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), the Data Controller, shall provide you with the following information on personal data processing concerning natural persons.

Source of the Data

The personal data being processed generally come from direct contacts with the supplier following our requests, orders or as a result of offers and proposals by the supplier.

Purposes and legal basis for the processing

Your personal data, and possibly the data of your employees shall be used for:

  • precontractual activities, exchanging information for purchasing your products or services, or providing quotations, and or
  • performing contractual obligations, and/or;
  • performing accounting and tax obligations
  • protecting the rights of the Company, therefore the legitimate interest of the Data Controller, both in court and out of court

In pursuing the aforementioned purposes, it may be necessary to know and store the supplier’s personal data, a natural person or, in the case of a legal entity, its legal representatives and possibly its employees (name and surname, role/job, email and company telephone no.).

Refusal to Provide the Data

The data subject may refuse to provide the Data Controller with their personal data.

However, provision of personal data is necessary for the correct and efficient management of the contractual relationship. Therefore, refusal to provide the data may compromise the contractual relationship wholly or partly.

Methods of Processing

Data shall be processed by using suitable tools and procedures to ensure security and confidentiality, and shall be performed either by paper, or with electronic tools.

Scope of Data Processing and Communication

Personal data will be processed by our authorized personnel, and by our consultants within the limits necessary to carry out their professional assignment on behalf of our Company, and identified as the Processors.

To have the complete list of the Processors, you can contact the Data Controller at any time at the addresses provided at the end of this document.

We shall not “disseminate” your personal data, i.e. we shall not made it available to unspecified parties; we may “communicate” it to public and private third parties, that can access the data by virtue of the provisions of law or regulation and within the limits imposed by these rules.

Transfer of Personal Data to Third Countries or International Organizations

No data shall be transferred to countries outside the EU nor to international organizations.

Automated Data Processing

The company does not carry out data processing based on an automated decision-making process, including profiling that produces legal effects concerning a person or that may significantly affect him or her.

Data retention periods

Data shall be processed throughout the duration of the contractual relationships and for the following time required to fulfill all legal obligations. The data provided shall be retained in our archives according to the following parameters:

For administration, accounting, contracting, management of any litigation: from 5 to 10 years as established by the Italian Civil Code and by the rules governing powers and inspections on tax matters, without prejudice to any specific reasons that justify its extension (e.g. in the event of litigation or investigations by the competent authorities).

Rights of the Data Subject

As data subject, natural person, you can enforce your rights as per art. from 15 to 21 of the RGPD 2016/679, summarized below, by contacting the data controller at any time.

Specifically, you may access your personal data, request rectification or erasure of your personal data, or restriction of processing of your personal data, data portability, or object to such processing.

Right to Complain

Each data subjects that believes that the processing infringes the Regulation has the right to lodge a complaint with the Garante (Italian Data Protection Authority), as provided for by art. 77 of the Regulation, or to start judicial proceedings (Article 79 of the Regulation).

Contact details for the Data Subject to enforce its or her rights

Data Controller, E.S.A. Engineering Srl, Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), Italy, Tel. +39 055 373949, Fax +39 055 0675863, email: info@esa-engineering.com

Data Protection Officer, HR and General Affairs Manager, Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), Italy, Tel. +39 055 373949, Fax +39 055 0675863, email: privacy@esa-engineering.com

 

Kind Regards.

The Company E.S.A. Engineering Srl

Data Controller

Information Notice on Personal Data Processing for Job Applicants

in accordance with Art. 13 of the General Data Protection Regulation (GDPR 2016/679)

 

Pursuant to Art. 13 of the UE 2016/679 Regulation, the company E.S.A. Engineering Srl, Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), the Data Controller, shall provide you with the following information on personal data processing concerning natural persons.

Purposes and legal basis for the processing

Personal data provided in your CV shall be processed for the following purposes:

  • assessing if your profile meets our requirements (e.g. job vacancies), and more generally, managing the selection of employees and collaborators, and/or
  • contacting you to plan and conduct job interviews or for selection tests if needed, by using the contact detail you have provided.

The legal basis for processing personal data for the above-mentioned purposes is the implementation of the pre-contractual measures adopted upon your request. Provision of your personal data for these purposes is optional. However, refusal to provide such data may result in our company not being able to evaluate your profile and therefore proceed with the selection process.

However, through your curriculum we could collect special (sensitive) data as defined in art. 9 of the Regulations, such as data revealing, by way of example, racial and ethnic origin, religious, philosophical or other beliefs, political opinions, membership in parties, trade union, or in religious, philosophical or trade union associations or organizations, as well as personal data revealing your health status and sexual life. In this regard, should it not be strictly necessary, unless we believe that this type of data is useful for better classifying your position, especially in relation to belonging to protected groups, please do not provide this type of information; however, if you decide to give it to us, we shall ask you to fill out the consent that you can freely express in the attached form. Should you provide your particular data without the relevant consent, we shall not be able to consider your application. The legal basis of the processing. in case you decide to enter your particular data, is your consent.

For the same purposes, you will also be required to express your specific consent to provide your data to the companies “Esa engineering UK” and “ESA Middle East FZ-LLC”, that together with our company form part of Esa Group (please refer to the final part of this information). In this instance, should you not provide your consent, your application can be considered only by our company and not by the other companies belonging to ESA Group.

Method of Processing

Data shall be processed by using suitable tools and procedures to ensure security and confidentiality, and shall be performed either by paper, or with electronic tools. To have the complete list of the Processors, you can contact the Data Controller and the Data Protection Officer at any time at the addresses provided below.

Scope of Data Processing and Communication

Personal data will be processed by our authorized personnel, and by our consultants within the limits necessary to carry out their professional assignment on behalf of our Company, and identified as the Processors.

To have the complete list of the Processors, you can contact the Data Controller at any time at the addresses provided below

We shall not “disseminate” your personal data, i.e. we shall not made it available to unspecified parties; we may “communicate” it to public and private third parties, that can access the data by virtue of the provisions of law or regulation and within the limits imposed by these rules.

Automated Data Processing

The company does not carry out data processing based on an automated decision-making process, including profiling that produces legal effects concerning a person or that may significantly affect him or her.

Data retention period

Your data shall be retained for 24 months as from the date you have provided it, and may be used to contact you and to arrange interviews. At the end of this period, your data shall be deleted permanently.

Rights of the Data Subject

As data subject, natural person, you can enforce your rights as per art. 15 to 21 of the RGPD 2016/679, summarized below, by contacting the data controller at any time.

Specifically, you may access your personal data, request rectification or erasure of your personal data, or restriction of processing of your personal data, data portability, or object to such processing.

Right to complain

Each data subject that believes that the processing infringes the Regulation has the right to lodge a complaint with the Garante (Italian Data Protection Authority), as provided for by art. 77 of the Regulation, or to start judicial proceedings (Article 79 of the Regulation).

Contact details for the Data Subject to enforce his or her rights

Data Controller, E.S.A. Engineering Srl, Via Mercalli 10/6, 50019 Sesto Fiorentino (FI), Italy, Tel. +39 055 373949, Fax +39 055 9029994, email: info@esa-engineering.com

Data Protection Officer, privacy@esa-engineering.com

Kind regards.

The Company E.S.A. Engineering Srl

Data Controller

Privacy Policy