Privacy Policy
pursuant to and for the purposes of Articles 13 and 14 of Regulation (EU) 2016/679 (GDPR)
1 Data Controller
The Data Controller is Sinte Srl, VAT number and tax code 13295960150, with registered office in Via Gaetano Negri 8 – 20123 Milan (MI).
For any privacy-related requests, you can contact the Data Controller by email at: info@sinte.net.
2. Data Protection Officer (DPO)
The Data Protection Officer (DPO) can be contacted via email at: dpo@sinte.net or by appointment at the company headquarters.
3. Purpose and Legal Basis of Processing
The personal data processed by Sinte Srl may fall into the following categories:
3.1 Processing necessary for the performance of a contract or pre-contractual measures
Pursuant to Article 6(1)(b) and (f) of the GDPR, processing is necessary for the performance of a contract or to fulfill requests from the data subject, including:
• Management of quotes, contracts, and pre-contractual communications;
• Invoicing, accounting, and tax compliance;
• Management of relations with customers, suppliers, and partners;
• Insurance activities and claims management;
• Sending operational and organizational communications.
3.2 Processing necessary for legal obligations
Pursuant to Article 6(1)(c) of the GDPR, Sinte processes data to comply with legal obligations, including:
• Tax, social security, and contribution obligations;
• Health and safety obligations;
• Document storage and archiving;
• Compliance with controls by public authorities.
3.3 Processing based on the explicit consent of the data subject
Pursuant to Article 6(1)(a) of the GDPR, with specific consent, data may be processed for additional purposes such as:
• Sending promotional communications and newsletters;
• Surveys and customer satisfaction activities;
• Non-automated profiling to personalize services.
Consent may be revoked at any time without prejudice to the lawfulness of the previous processing.
3.4 Processing of special categories of personal data
In the event that special data pursuant to Article 9 of the GDPR (e.g., health data, trade union data) is processed, this will only take place in the presence of a specific legal basis, including the written consent of the data subject or other regulatory requirements.
3.5 Judicial data
Sinte Srl does not process judicial data pursuant to Article 10 of the GDPR (e.g., pending charges, criminal convictions), except in cases expressly provided for by law.
4. Processing Methods
The processing is carried out using paper, computer, and telematic tools, according to logic related to the stated purposes and with appropriate measures to ensure data security, confidentiality, and integrity.
5. Data Retention
Personal data will be retained for the time necessary to achieve the purposes indicated and in compliance with current regulations, including limitation periods and tax/administrative obligations.
6. Data Provision
The data provision:
Failure to provide the personal data requested for the purposes referred to in points 3.1 and 3.2 will make it impossible for the Data Controller to comply with the data subject's requests, as well as to establish or continue the contractual relationship and/or fulfill legal obligations.
Failure to provide data for the purposes referred to in point 3.3, on the other hand, will not affect the use of the main services, but may prevent the sending of informative and promotional communications or the performance of analyses and surveys by the Data Controller.
7. Recipients
The data may be disclosed to qualified third parties, including, but not limited to:
Personal data will not be transferred to third countries outside the European Union or to international organizations. Any future transfers will be carried out in accordance with Chapter V of the GDPR.
9. Rights of the Data Subject
The data subject may exercise the rights provided for in Articles 15-22 of Regulation (EU) 2016/679 and Legislative Decree 101/2018 by contacting the Data Controller by email at info@sinte.net or at the registered office of Sinte Srl.
In particular, the data subject has the right to:
• obtain access to personal data (Article 15 GDPR);
• request rectification (Article 16) or erasure (Article 17);
• obtain restriction of processing (Article 18);
• object to processing based on legitimate interest (Art. 21);
• receive their data in a structured and machine-readable format (portability – Art. 20).
Consent Withdrawal
If the processing is based on consent, the data subject has the right to withdraw it at any time, without prejudice to the lawfulness of the processing carried out prior to the withdrawal.
To exercise your rights or to object to the processing, you can write to info@sinte.net or contact the company's registered office.
10. Changes to the privacy policy
The Data Controller reserves the right to update this policy at any time. The updated version is available on the web page:
https://www.sinte.net/en/action/pagina?id=9
Rev. 2.1 – Data of update : May 15, 2025
1 Data Controller
The Data Controller is Sinte Srl, VAT number and tax code 13295960150, with registered office in Via Gaetano Negri 8 – 20123 Milan (MI).
For any privacy-related requests, you can contact the Data Controller by email at: info@sinte.net.
2. Data Protection Officer (DPO)
The Data Protection Officer (DPO) can be contacted via email at: dpo@sinte.net or by appointment at the company headquarters.
3. Purpose and Legal Basis of Processing
The personal data processed by Sinte Srl may fall into the following categories:
3.1 Processing necessary for the performance of a contract or pre-contractual measures
Pursuant to Article 6(1)(b) and (f) of the GDPR, processing is necessary for the performance of a contract or to fulfill requests from the data subject, including:
• Management of quotes, contracts, and pre-contractual communications;
• Invoicing, accounting, and tax compliance;
• Management of relations with customers, suppliers, and partners;
• Insurance activities and claims management;
• Sending operational and organizational communications.
3.2 Processing necessary for legal obligations
Pursuant to Article 6(1)(c) of the GDPR, Sinte processes data to comply with legal obligations, including:
• Tax, social security, and contribution obligations;
• Health and safety obligations;
• Document storage and archiving;
• Compliance with controls by public authorities.
3.3 Processing based on the explicit consent of the data subject
Pursuant to Article 6(1)(a) of the GDPR, with specific consent, data may be processed for additional purposes such as:
• Sending promotional communications and newsletters;
• Surveys and customer satisfaction activities;
• Non-automated profiling to personalize services.
Consent may be revoked at any time without prejudice to the lawfulness of the previous processing.
3.4 Processing of special categories of personal data
In the event that special data pursuant to Article 9 of the GDPR (e.g., health data, trade union data) is processed, this will only take place in the presence of a specific legal basis, including the written consent of the data subject or other regulatory requirements.
3.5 Judicial data
Sinte Srl does not process judicial data pursuant to Article 10 of the GDPR (e.g., pending charges, criminal convictions), except in cases expressly provided for by law.
4. Processing Methods
The processing is carried out using paper, computer, and telematic tools, according to logic related to the stated purposes and with appropriate measures to ensure data security, confidentiality, and integrity.
5. Data Retention
Personal data will be retained for the time necessary to achieve the purposes indicated and in compliance with current regulations, including limitation periods and tax/administrative obligations.
6. Data Provision
The data provision:
- It is mandatory for the contractual and legal purposes referred to in points 3.1 and 3.2; failure to provide such data may make it impossible to establish or continue the relationship;
- It is optional for the purposes referred to in point 3.3; failure to give consent will have no consequences for the main purposes of the processing.
Failure to provide the personal data requested for the purposes referred to in points 3.1 and 3.2 will make it impossible for the Data Controller to comply with the data subject's requests, as well as to establish or continue the contractual relationship and/or fulfill legal obligations.
Failure to provide data for the purposes referred to in point 3.3, on the other hand, will not affect the use of the main services, but may prevent the sending of informative and promotional communications or the performance of analyses and surveys by the Data Controller.
7. Recipients
The data may be disclosed to qualified third parties, including, but not limited to:
- Professionals and consultants (accountants, lawyers, occupational physicians, IT technicians, etc.);
- Banking and insurance institutions;
- Public authorities and supervisory bodies;
- Cloud service providers or management software providers (located within the EU).
- These parties will act as independent Data Controllers or Data Processors pursuant to Article 28 of the GDPR.
Personal data will not be transferred to third countries outside the European Union or to international organizations. Any future transfers will be carried out in accordance with Chapter V of the GDPR.
9. Rights of the Data Subject
The data subject may exercise the rights provided for in Articles 15-22 of Regulation (EU) 2016/679 and Legislative Decree 101/2018 by contacting the Data Controller by email at info@sinte.net or at the registered office of Sinte Srl.
In particular, the data subject has the right to:
• obtain access to personal data (Article 15 GDPR);
• request rectification (Article 16) or erasure (Article 17);
• obtain restriction of processing (Article 18);
• object to processing based on legitimate interest (Art. 21);
• receive their data in a structured and machine-readable format (portability – Art. 20).
Consent Withdrawal
If the processing is based on consent, the data subject has the right to withdraw it at any time, without prejudice to the lawfulness of the processing carried out prior to the withdrawal.
To exercise your rights or to object to the processing, you can write to info@sinte.net or contact the company's registered office.
10. Changes to the privacy policy
The Data Controller reserves the right to update this policy at any time. The updated version is available on the web page:
https://www.sinte.net/en/action/pagina?id=9
Rev. 2.1 – Data of update : May 15, 2025
