Informative according to art. 13 of Data Protection Code

(Legislative Decree 30 June 2003, n. 196 and annexed Unified Text of norms on person's and other subjects protection issues regarding personal data processing)

Dear Mr./Miss,
we would like to inform you that, according to the article 13 of the Legislative Decree 30 June 2003, n. 196 and the annexed Unified Text of norms on person’s and other subjects protection issues regarding personal data processing (hereinafter “Code”), the information and data provided during the navigation and/or the consultation of the Web Portal tonucci.com (hereinafter “Portal”), and in connection with Portal services, will be processed in comply with the aforementioned provisions and with the confidentiality obligations inspiring Tonucci & Partners' activity.

Personal data processing will be carried out fully complying with what set out in the general opinion of the Ufficio del Garante (Regulatory Authority Office) of 3 June 2004, Prot. N. 22457 – issued together with the Consiglio Nazionale Forense (National Forensic Council) – on personal data protection matters in performing forensic activities (privacy and law firms).

For personal data processing we intend any operation or set of operations, carried out with or without electronic means and concerning the collection, recording, organization, storage, consultation, elaboration, modification, selection, exertion, comparison, use, interconnection, block, communication, diffusion, deletion and destruction of data even when not inserted in a databank.

According to the article 13 of the Code, we provide you with the following information.

You will find listed below our Data Protection policy’s aims. Suitable and comprehensive informative on Data Processing aims will be provided to Users of Portal services and/or general navigation upon agreement on their personal data processing. For Users not requesting for a specific service or whose navigation doesn’t require personal data processing, such operations won’t be carried out, although all possible aims of Data Processing will be herewith specified for their reference. We also remind you that personal data processing regarding Curriculum Vitae (“Careers” section) and general request of information (“Contacts” Section) is subject to specific informative published in the respective sections.

Please have also a look to the specific Privacy Policy Policy adopted by the Data Controller Tonucci & Partners and to the Legislative Decree 30 June 2003, n.196 and the annexed Data Protection Code.

Below, the list of data processing's aims:

1. On-line Consulting Service: receiving requests for on-line consulting; identifying the applicant and the relative request upon compilation of a specific electronic form; operating the Service according to the conditions specified in the proper section; processing on-line payment’s even by providing personal data – when necessary – to the Credit Institute taking care of transactions.
2. Privacy Service: receiving buying requests for the services specified in the relative section; identifying the applicant and the relative request upon compilation of a specific electronic form; operating the Service according to the conditions specified in the proper section; processing on-line payment’s even by providing personal data – when necessary – to the Credit Institute taking care of transactions.
3. E-Commerce Service: receiving buying requests for the services specified in the relative section; identifying the applicant and the relative request upon compilation of a specific electronic form; operate the Service according to the conditions specified in the proper section; processing on-line payment’s even by providing personal data – when necessary – to the Credit Institute taking care of transactions.
4. Monitoring Service: receiving buying requests for the services specified in the relative section; identifying the applicant and the relative request upon compilation of a specific electronic form; operating the Service according to the conditions specified in the proper section; processing on-line payment’s even by providing personal data – when necessary – to the Credit Institute taking care of transactions.
5. Clients – Enterprises Service: receiving the request for posting electronic files containing user’s own activity information – upon compilation of a specific electronic form – in order to provide the Service according to the service conditions specified in the proper section; operate the Service; we inform You that personal data provided when using the Enterprises Service will be accessible by other Registered Users.
6. Newsletters Service: recording registrations to the Service – made through a specific electronic form – operating the Service abiding to the conditions specified in the proper section and sending monthly Newsletters to registered users.
7. Clients Area: management of the account to access Clients Area reserved services.
8. Other Services: managing all the requests received by Tonucci & Partners through the various contact forms and e-mail addresses available on the different sections of the web Portal to ask for specific services and/or request information.

Data processing will be carried out with electronic means. In particular, Your personal data will be stored in proper electronic Databanks to be managed internally by the Data Controller Tonucci & Partners; you may access those Data at any time from the Registered Users Area by inserting user-id and password and autonomously manage the personal information in order to freely integrate, update, or if necessary delete your data.

As provided for in the article 13, paragraph 1, letter d) we inform You, about subjects and categories of subjects whom your personal data could be communicated to, or that could come to know it as Data Processors: Attorneys, secretarial staff, Administrative staff and computer technicians administrating Tonucci & Partners intranet.

We also inform you that Your personal data, if necessary, could be communicated – and you have agreed upon – to external subjects relevant for providing the services: i.e. Credit Institutes managing the on-line payment’s transactions for requested services. Should you need to provide personal data according to law provisions (i.e.: Police, Public Authorities for control, etc.), we inform you that data processing will be carried out respecting all the limitations set out in the Data Protection Code and in the norms regulating time by time the communication needs of the relative information.

We inform you that, except as expressly set in paragraph (e) of the aim’s list for data processing, your data will not be diffused.

We inform you that providing such data for the aforementioned aims is optional, but the eventual refuse to confer it, could prevent us from processing your requests for services or information.

The Data Controller essential data are: Associazione Professionale Tonucci & Partners, Via Principessa Clotilde n.7 CAP 000196 Roma, tel. +39 06 362271 – Fax +39 06 3235161 – e-mail: mail@tonucci.com – Partita IVA (Tax Code) 05008211004.

We also inform you that the referring Bar Association’s Council is the Consiglio dell’Ordine degli Avvocati di Roma and the Data Controller will conform to the Deontological Forensic Code.

The data will be stored at the Data Controller seat of Rome, on a dedicated server, for the length of time prescribed by the referring normative.

Periodically, we will delete from the Data Bank data whose collection purposes have been pursued or whose storage is of no more actual interest, also upon Your request by simply sending a message to: mail@tonucci.com

We would like also to inform you that such data will be collected, processed and stored fully complying with the provisions set out in the articles 31 and subsequent of the Data Protection Code and in the Technical Disciplinary - Code’s Annex B - on minimum safety measures.
With reference to sensitive data processing in connection with the navigation of the Portal and/or the use of services, that is to say all the information that could unveil your racial or ethnic origin, religious, philosophical or other kind of beliefs, political opinions, membership in political parties or labor unions, membership in religious, philosophical, political or labor associations or organizations, as well as data that could unveil your health status or sex life, we inform you that the Data Controller will not proceed with the treatment of data falling in any of the above mentioned categories, except for the treatments specified in the Careers Section’s Informative concerning sensible data in Curricula Vitae.

All personal data will be processed fully abiding to the self-regulation norms on personal data processing provided for in the Deontological Codes in use for the sector.

Technologies and/or techniques to access information stored in user’s or member’s terminal or to monitor user’s operations will be used only for legitimate purposes relative to the technical memorization of data limited to the time required for transmitting communications or processing Your requests. We also remind that users may always disable web navigation tracing/marking systems by modifying browser’s settings, and anyway can oppose such processing by giving notice of it to the Data Controller.

You can contact the Data Controller at any time, without formal obligations (via e-mail, phone or fax) or by using the appropriate form arranged by the Autorità Garante (available on the web-site www.garanteprivacy.it) to assert your rights as set out in the article 7 of the Code, below integrally reproduced for your convenience.

With regard to the exercise of your rights, we inform You that the data recording procedures let always the applicant autonomously manage – in the Registered Users Area - the information previously sent. For example, You will always have the possibility to access such information (upon assignment of an user-id and password) in order to integrate, update, or delete it in full autonomy.

Art. 7 (Access right to personal data and other rights)

1. Concerned subjects have the right to receive confirmation of the existence or not of personal data on them, even if not yet recorded, and communication of the same data in an intelligible form.
   
2. Concerned subjects have the right to obtain indication of:
   1. the origin of personal data;
   2. the purpose and modalities for their processing;
   3. the logic for data processing performed with electronic means;
   4. the essential data of Data Controller, responsible and representative appointed according to the article 5, paragraph 2;
   5. e) the subjects or the categories of subjects to whom personal data could be communicated or that can come to know it as representative appointed in State’s territory, as responsible or data processor.
      
3. The interested subject has the right ask for:
   1. the updating, the rectification or, when interested in, the integration of his own data;
   2. the deletion, the transformation into an anonymous form or the blocking of data processed in violation of the law, including data whose storage is unnecessary in relation to the purposes for their collection;
   3. the statement that operations under letter a) and b) are well known, also for what concerns their content, to all subjects dealing with personal data, except when such obligations involve a financial burden manifestly disproportioned compared to the protected right.
      
4. Concerned subjects has the right to oppose, in whole or partially:
   1. for legitimate reasons, the processing of their personal data although relevant with collection’s purposes;
   2. the processing of their personal data for sending advertising material or direct sale material or for market researches or commercial communications.