Privacy policy

GDPR - Lead information

LEAD PRIVACY INFORMATION PURSUANT TO THE GENERAL DATA PROTECTION REGULATION (GDPR- GENERAL DATA PROTECTION REGULATION) N. 679/2016

AVID TECHNOLOGY S.R.L. PALAZZO T2 STRADA 7 - MILANOFIORI - 20089 - ROZZANO (MI) Telephone: 02.577.897.1 E-Mail: info@avid.it This disclosure intends to communicate to the interested party (here referred to as "Lead" or "Marketing Contact" or " Potential Customer”) the management methods regarding the processing of your personal data, as prescribed by articles 13 and 14 of EU Regulation n. 2016/679 (hereinafter, General Data Protection Regulation or "GDPR") and by current regulations. These are the contents of the information:

0.INTRODUCTION

1. HOLDER OF THE TREATMENT

2. COLLECTION OF PERSONAL DATA AND LEGAL BASES

3. PURPOSE OF THE TREATMENT

4. SECURITY OF PERSONAL DATA

5. DATA RETENTION PERIOD

6. INTERNATIONAL DATA TRANSFER

7. SHARING OF PERSONAL DATA

8. OBLIGATION TO PROVIDE DATA AND POSSIBLE CONSEQUENCES IN THE EVENT OF REFUSAL

9. TYPE OF PERSONAL DATA COLLECTED

10. DATA PROTECTION OFFICER

11. DATA PROTECTION RIGHTS

12. CHANGES TO THE PRIVACY POLICY

13. OPPOSITION CANCELLATIONS AND CORRECTIONS

14. INFORMATION AND REVIEWS

Lead Disclosure - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020

GDPR – Lead information page 2

0. INTRODUCTION The protection of personal data is an opportunity for shared and transparent compliance between AVID TECHNOLOGY S.R.L. (hereinafter, "Company") and the Marketing Contact (Lead or Potential Customer) who entrusts it with its personal data. It is the duty of AVID TECHNOLOGY S.R.L., in fact, to protect them, preserve them from any damage, conserve them and dispose of them according to the treatment lines linked to the existing commercial negotiation. With "personal data" - also called IPI, Identifiable Personal Information - we mean the personal data and identification of the interested party, information on facts and opinions, personal interests, including those of a particular nature, collected before or during the execution of the business negotiation. "Processing" means any operation or set of operations, performed with or without the aid of automated processes and applied to personal data or sets of personal data, such as the collection, registration, organization, structuring, conservation , adaptation or modification, extraction, consultation, use, communication by transmission, diffusion or any other form of making available, comparison or interconnection, limitation, cancellation or destruction.

1. DATA CONTROLLER AVID TECHNOLOGY S.R.L. is the Data Controller of personal data and can be contacted at the following email address info@avid.it or at the telephone number 02.577.897.35, or by writing to the following email address: AVID TECHNOLOGY S.R.L. PALAZZO T2 STRADA 7 - MILANOFIORI - 20089 - ROZZANO (MI) The Data Controller decides on the purposes and methods of processing personal data, as well as their security and the tools used.

2. PERSONAL DATA COLLECTION AND LEGAL BASES The personal data collected concern all the identification and contact information of the interested party in order to allow the promotion and marketing of the Company's products and services. The data are directly and freely provided by the interested party and can be revoked at any time. Contact between the company and the interested party can take place on the initiative of the latter and through the following channels:
-web (institutional site, facebook, linkedin or other social platforms);
- advertising, PPC (pay per click);
- telephone numbers or emails of the Company;
- trade fairs and promotional events;
- participation in webinars, conferences or other events;
-for relationships. Following the collection AVID TECHNOLOGY S.R.L. guarantees that the personal data are also pertinent and not excessive so that this process takes place according to lawfulness and correctness, i.e. for the purposes of the processing, explicit and legitimate, indicated below in this Information.
Lead Disclosure - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Lead information page 3
Data processing takes place with both paper and IT tools and supports, both in compliance with security, conservation and accessibility criteria and procedures, within the limited scope of the purposes expressed. The legal basis for providing the data is the optional, explicit and voluntary consent of the interested party. Furthermore, the Data Controller may exercise a legitimate interest both to activate certain commercial purposes (by balancing the rights of the Data Controller and the rights of the Data Subject, as can be seen from "recital" 47 of the GDPR) and to defend his rights in court in cases of complaints or disputes with the interested party. AVID TECHNOLOGY S.R.L. it is aimed at a target of subjects who inseparably enjoy legal, fiscal and contractual capacity, therefore minor subjects are excluded.
3. PURPOSE OF THE TREATMENT In the context of the commercial negotiation, the management purposes for which the personal data of the Marketing Contact become object of treatment are the following:
- contact the potential customer;
- launch and prepare commercial offers;
- promotion and sale of products and services by sending commercial information and advertising material;
-participation in initiatives and events;
-profiling based on the interests and preferences expressed by the interested party for the preparation of targeted offers;
-detection of the degree of interest in the promoted services;
- market research for the development of marketing strategies;
- analysis of statistical data relating to the type of channel on which the contact was initiated, the type of device used (pc, tablet, mobile), communication and promotion activities, the choices of the interested party regarding the products and services offered, the results of the lead;
-conversion of Lead into Customer.
4. SECURITY OF PERSONAL DATA
AVID TECHNOLOGY S.R.L. treats personal data with scrupulous attention and for this reason it adopts security and protection measures in strict compliance with the GDPR and in line with the ISO 9001 and ISO 27001 standards.
Furthermore, AVID TECHNOLOGY S.R.L. sets in motion valid and appropriate practices and techniques aimed at guaranteeing the following conditions in all treatment processes:
- confidentiality, i.e. protection from unauthorized access;
- integrity, to prevent loss or damage;
- availability, in order to ensure that the Lead has continuous access to his data.
Even in the event that information is transferred to trusted third parties, and for the purposes indicated in this Information, it is the Company's care and attention to ensure that they similarly adopt security measures, operational techniques, according to the same criteria set out above.
Lead Disclosure - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Lead information page 4
5. DATA RETENTION PERIOD
The personal data of the interested party are processed for the time necessary to develop all the purposes of the processing, and in any case no later than a period of three years.
The retention period of personal data and company information, therefore, is determined on the basis of these criteria:
- nature and purpose of data processing;
- regulatory compliance;
- any disputes on complaints;
- management of services connected to the site. Upon expiry of the terms envisaged, the data will be deleted from the current paper and computerized archives, and according to adequate technical procedures and in accordance with Information Security best practices.
6. INTERNATIONAL DATA TRANSFER As of today AVID TECHNOLOGY S.R.L. does not carry out any international data transfer to third countries outside the European Union. In view of the continuous changes and expansions of the business beyond the European borders, it may also happen that the company processes, followed by the personal data of the Marketing Contact, may be subject to transfers to third party suppliers in other non-EU countries. As a result, data from Marketing Contacts may be transferred to third party providers in these countries in the future. In the event that the international transfer of data takes place, everything would take place in compliance with the legitimacy requirements set forth in the articles of the aforementioned Regulation, by the current privacy regulations and by the procedures governing the transfer itself; in this case the Data Controller complies with the conditions described in CHAPTER V (Transfer of personal data to third countries or international organizations - articles 44,45,46,47,48,49,50), without prejudice to the other provisions of this regulation. All the provisions of this chapter will be applied in order to ensure that the level of protection of natural persons guaranteed by the GDPR Regulation is not compromised.
7. SHARING OF PERSONAL DATA The personal data of the interested party will not be shared with other subjects except in cases where it is mandatory, otherwise consent is optional, explicit and voluntary. Access to the data can take place by some internal data processors of the organization for all the operations necessary for administrative and management purposes and for the provision of internal services: these are personnel from the areas of AVID TECHNOLOGY S.R.L., such as administration, marketing and communication, and information systems; principals/customers in the role of data users for processing purposes connected to contractual obligations of services performed by the company.
The same can happen by some external subjects, such as service providers, some of which are managed and controlled as Data Processors. The Data Controller guarantees the training of all those who, within the organization, access the data under his authority in accordance with the specifications of the existing treatment.
Lead Disclosure - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Lead information page 5
For third parties designated as Data Processors, AVID TECHNOLOGY S.R.L. follows the rules of the GDPR on the subject, ensuring that they are compliant and adequate with current regulations.
8. OBLIGATION TO PROVIDE DATA AND POSSIBLE CONSEQUENCES IN THE EVENT OF REFUSAL Any total or partial refusal by the Marketing Contact would compromise the correct execution of the activities connected to the purposes expressed, and this would make it impossible to implement the negotiation commercial.
9. TYPE OF PERSONAL DATA COLLECTED
The personal data being processed are of the following types:
- personal data: name, surname, gender, marital status, date of birth;
- contact details: e-mail, telephone numbers, address, city, country, web contacts;
- profile and preference data: economic activities and profession, preferred products/services, personal interests.
10. DATA PROTECTION MANAGER The Data Controller has not provided for the appointment of a Data Protection Officer (DPO).
11. DATA PROTECTION RIGHTS The Marketing Contact has the right (articles 15-22 GDPR) to know the existence of his personal data collected and processed by the Data Controller, therefore to know its content and origin, verify its accuracy and possibly modify them, integrate them with other information, request their cancellation or transformation into anonymous form, block their use in the event of an alleged violation of the law or even definitively oppose their treatment. All requests for information, and any complaints, may be directed to the Data Controller at the addresses disclosed in this Statement.
12. CHANGES TO THE PRIVACY POLICY This Privacy Policy is subject to any changes and updates in order to implement changes in national and/or community legislation, or to adapt to technological innovations or for organizational reasons of AVID TECHNOLOGY S.R.L. for which it will be her diligence to inform the Marketing Contact about it using the corporate communication tools available. The changes, such as the current one due to the adaptation to the new GDPR Regulation, will continue to apply the rules in force unless the interested party is unfavorable to the proposed changes and requests the cessation of the treatments and consequent cancellation of his data. The Marketing Contact must in any case autonomously and periodically check the update status of this Information, and in any case consult it every time he is informed of the changes that have occurred.
Lead Disclosure - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Lead information page 6
13.CANCELLATIONS, OPPOSITION AND CORRECTIONS At any time, the Marketing Contact may request the rectification, opposition, in whole or in part, and the revocation of the processing of his data, and, if necessary, obtain its cancellation. Once the storage terms indicated above have elapsed, the personal data of the Marketing Contact will in any case be canceled and destroyed through adequate technical procedures. The cases of cancellation are therefore the following:
- personal data are no longer necessary following termination of the relationship with the Data Controller;
- the interested party makes a revocation;
- the interested party opposes the treatment;
- the personal data have been processed unlawfully. Pursuant to art. 77 of the GDPR, the interested party has the right to lodge a complaint with a supervisory authority.
14. INFORMATION AND REVIEWS The Data Controller is responsible for this Privacy Policy (Information). Date of last revision is 16/12/2020.

Site and Cookie Information - Company AVID TECHNOLOGY S.R.L.
GDPR – Site and Cookie Information
PRIVACY INFORMATION SITE AND COOKIES PURSUANT TO THE GENERAL DATA PROTECTION REGULATION (GDPR- GENERAL DATA PROTECTION REGULATION) N. 679/2016
AVID TECHNOLOGY S.R.L. PALAZZO T2 STRADA 7 - MILANOFIORI - 20089 - ROZZANO (MI) Telephone: 02.577.897.1 E-Mail: info@avid.it This disclosure is intended to inform visitors of the website (hereafter "User" and "Interested" ) the management methods regarding the processing of your personal data, as prescribed by articles 13 and 14 of EU Regulation n.2016/679 (hereinafter, General Data Protection Regulation, "GDPR") and by current regulations. These are the contents of the information:
0.INTRODUCTION
1. OWNER OF TREATMENT
2. COLLECTION OF PERSONAL DATA AND LEGAL BASES
3. PURPOSE OF THE TREATMENT
4. SECURITY OF PERSONAL DATA
5. DATA RETENTION PERIOD
6. INTERNATIONAL DATA TRANSFER
7. SHARING OF PERSONAL DATA
8. OBLIGATION TO PROVIDE DATA AND POSSIBLE CONSEQUENCES IN THE EVENT OF REFUSAL
9. TYPE OF PERSONAL DATA COLLECTED
10. DATA PROTECTION OFFICER
11. DATA PROTECTION RIGHTS
12. CHANGES TO THE PRIVACY POLICY
13. OPPOSITION CANCELLATIONS AND CORRECTIONS
14.INFORMATION ON THE PRIVACY POLICY
Site and Cookie Information - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Site and Cookie Information Page 2
0. INTRODUCTION The protection of personal data is an opportunity for shared and transparent compliance between AVID TECHNOLOGY S.R.L. (hereinafter, also "Company") and the User who entrusts it with his personal data. It is the duty of AVID TECHNOLOGY S.R.L., in fact, to protect them, preserve them from any damage, keep them and dispose of them according to the treatment lines linked to the existing relationship with the User. With "personal data" - also called IPI, Identifiable Personal Information - we mean personal data, in case of registration for the request for services, and identification data of navigation on the site in application of control, security and data analytics systems . "Processing" means any operation or set of operations performed with or without the aid of automated processes and applied to personal data or sets of personal data, such as the collection, registration, organization, structuring, conservation, adaptation or modification, extraction, consultation, use, communication by transmission, diffusion or any other form of making available, comparison or interconnection, limitation, cancellation or destruction.
1. DATA CONTROLLER AVID TECHNOLOGY S.R.L. is the Data Controller of personal data and can be contacted at the following e-mail address info@avid.it or at the telephone number 02.577.897.35, or by writing to the following address
2. PERSONAL DATA COLLECTION AND LEGAL BASES The Data Controller processes personal data relating to the User if at least one of the following conditions exists:
- the User has given consent to the processing for one or more purposes;
- the processing is necessary for the provision of services, therefore for the execution of a contract with the User;
- the processing is necessary to fulfill a legal obligation to which the Data Controller is subject. The site of AVID TECHNOLOGY S.R.L. collects user data in the following ways:
- data collected in an automated form, i.e. those data transmitted indirectly by the User when he navigates within the site and therefore leaves digital traces of his passage (IP, browser, name of the network provider) which are recorded by the servers mainly for reasons of security, control and data analysis;
- data delivered on a voluntary and optional basis, i.e. those data transmitted directly by the User with the intention of registering on the site and its services. AVID TECHNOLOGY S.R.L. guarantees that the data collected is also pertinent and not excessive so that this process takes place according to lawfulness and correctness, i.e. for the purposes of the treatment, explicit and legitimate.
Site and Cookie Information - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Site and Cookie Information Page 3
Data processing takes place with both paper and IT tools and supports, both in compliance with security, conservation and accessibility criteria and procedures, within the limited scope of the purposes expressed. The legal basis of the processing is the consent expressed by the interested party to the processing of their personal data for one or more specific purposes highlighted in this Information. Furthermore, the Data Controller may exercise a legitimate interest to defend his rights in court in the event of a complaint or dispute with the interested party. AVID TECHNOLOGY S.R.L. it is aimed at a target of subjects who inseparably enjoy legal, fiscal and contractual capacity, therefore minor subjects are excluded.
3. PURPOSE OF THE TREATMENT The User's data is collected from the website for the following purposes:
- contact the user;
- present and promote the Company's activities;
- promote the site's services and offers by sending commercial messages;
- develop personalized services based on the User's needs;
- manage the registration and sending of the site newsletter, and other information services;
- enable interaction with social platforms, blogs and forums;
- promote participation in events and initiatives;
- collect users' opinions on service satisfaction;
- carry out statistical analyzes on navigation data;
- foster communication and the exchange of experiences with users;
- provide assistance on services;
- collect user feedback to improve the site;
- inform the authorities of any fraud, illegality and incorrect behaviour;
- comply with legal obligations.
4. SECURITY OF PERSONAL DATA AVID TECHNOLOGY S.R.L. treats personal data with scrupulous attention and for this reason it adopts security and protection measures in strict compliance with the GDPR and in line with the ISO 9001 and ISO 27001 standards. Furthermore, AVID TECHNOLOGY S.R.L. sets in motion valid and appropriate practices and techniques aimed at guaranteeing the following conditions in all treatment processes:
- confidentiality, i.e. protection from unauthorized access;
- integrity, to prevent loss or damage;
- availability, in order to ensure that the User has continuous access to his data. Even if the information is transferred to trusted third parties, and for the purposes indicated in this Information, it is the Company's care and attention to ensure that they similarly adopt security, technical and operational measures, according to the same criteria set out above.
Site and Cookie Information - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Site and Cookie Information Page 4
5. DATA CONSERVATION PERIOD The data are processed and stored for the time necessary to perform the services, and related treatments, according to the purposes described in this document. For all other purposes related to legal obligations, data retention provides for a period of time that does not exceed that necessary and required for the fulfillment of these obligations. The retention period of personal data and company information, therefore, is determined on the basis of these criteria:
- nature and purpose of data processing;
- regulatory compliance;
- any disputes on complaints;
- management of services connected to the site. Upon expiry of all the terms envisaged, the User's data will be deleted and destroyed according to adequate technical procedures and in accordance with Information Security best practices.
6. INTERNATIONAL TRANSFER OF DATA As of today AVID TECHNOLOGY S.R.L. does not carry out any international data transfer to third countries outside the European Union. In view of the continuous changes and expansions of the business beyond the European borders, it may also happen that the company processes, followed by the personal data of the Users, may be subject to transfers to third party suppliers in other non-EU countries. Consequently, User data may in the future be shared and/or transferred to third party suppliers in these countries. In the event that the international transfer of data takes place, everything would take place in compliance with the legitimacy requirements set forth in the articles of the aforementioned Regulation, by the current privacy regulations and by the procedures governing the transfer itself; in this case the Data Controller complies with the conditions described in CHAPTER V (Transfer of personal data to third countries or international organizations - articles 44,45,46,47,48,49,50), without prejudice to the other provisions of this regulation. All the provisions of this chapter will be applied in order to ensure that the level of protection of natural persons guaranteed by the GDPR Regulation is not compromised.
7. SHARING OF PERSONAL DATA The personal data of the interested party will not be shared with other subjects except in cases where it is mandatory, otherwise consent is optional, explicit and voluntary. Access to the data can take place by some internal data processors of the organization for all the operations necessary for administrative and management purposes and for the provision of internal services: these are personnel from the areas of AVID TECHNOLOGY S.R.L., such as administration, human resources, legal affairs and information systems; principals/customers in the role of data users for processing purposes connected to contractual obligations of services performed by the company. The same can happen by some external subjects, such as service providers, as Data Processors.
Site and Cookie Information - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Site and Cookie Information Page 5
The Data Controller guarantees the training of all those who, within the organization, access the data under his authority in accordance with the specifications of the existing treatment. For third parties designated as Data Processors, AVID TECHNOLOGY S.R.L. follows the rules of the GDPR on the subject, ensuring that they are compliant and adequate with current regulations.
8. OBLIGATION TO PROVIDE DATA AND POSSIBLE CONSEQUENCES IN THE EVENT OF REFUSAL The User, while browsing and using the site's services, can choose to provide his personal data, giving or not giving consent. Any total or partial refusal would compromise the correct execution of the activities connected to the provision of the website services, and this would make it impossible to provide these services.
9. TYPE OF PERSONAL DATA COLLECTED As regards the data collected in an automated form, this is information recorded on the site's servers and stored in the "log files", in detail:
- IP, “internet protocol” address;
- parameters of the device used to connect to the site (pc, tablet, smartphone);
- traceability in anonymous form of the pages consulted and clicks made;
- name of the internet service provider (ISP);
- browser type;
- date and time of start and end of navigation;
- references to the originating web page (referral) and to the exit web page;
- registration of cookies (for details, see the "Cookie Policy - Extended information on the use of cookies"). The data collected is used in aggregate form, and for statistical purposes only, to allow the Company to carry out market analyzes related to the management and development strategies of the site. The IP address, identifier of the device connecting to the internet, is treated for security purposes, excluding aggregations with other data that can identify the User. With regard to the data delivered on a voluntary and optional basis, however, the user of the site can request the initiation of contacts to receive information material by providing their personal data and consent to the processing. This treatment is necessary for the purpose of providing the services offered by the site, and takes place through the use of forms or registration forms filled in by the User in which he himself enters his personal and identification data, including the e-mail and other contact details.
10. DATA PROTECTION MANAGER The Data Controller has not provided for the appointment of a Data Protection Officer (DPO).
11. DATA PROTECTION RIGHTS It is the interested party's right (articles 15-22 GDPR) to know the existence of his personal data collected and processed by the Data Controller, therefore to know its content and origin, verify its accuracy and
Site and Cookie Information - Company AVID TECHNOLOGY S.R.L. Version 3.4 of 16.12.2020
GDPR – Site and Cookie Information Page 6
possibly modify them, integrate them with other information, request their cancellation or transformation into anonymous form, block their use in the event of an alleged violation of the law or even definitively oppose their treatment. All requests for information and any complaints may be directed to the Data Controller at the addresses disclosed in this Statement.
12. CHANGES TO THE PRIVACY INFORMATION This Information is subject to possible modifications and updates in order to incorporate changes in national and/or community legislation, or to adapt to technological innovations or for organizational reasons of AVID TECHNOLOGY S.R.L. therefore it will be his diligence to inform the User about it by sending him communications using the corporate communication tools available or promptly update this information and the site's interaction tools (registration form, cookie consent software, extended information on cookies, etc. .). The changes, such as the current one due to the adaptation to the new GDPR Regulation, will continue to apply the rules in force unless the interested party is unfavorable to the proposed changes and requests the cessation of the treatments and consequent cancellation of his data. The User must in any case autonomously and periodically check the update status of this Information, and in any case consult it every time he is informed of the changes that have occurred.
13. CANCELLATIONS, OPPOSITION AND CORRECTIONS At any time the User can request the rectification, opposition, in whole or in part, and the revocation of the processing of his data, and, if necessary, obtain its cancellation. Once the storage terms indicated above have elapsed, the User's personal data will in any case be canceled and destroyed through adequate technical procedures. The cases of cancellation are therefore the following:
- personal data are no longer necessary following termination of the relationship with the Data Controller;
- the interested party makes a revocation;
- the interested party opposes the treatment;
- the storage terms have expired. Pursuant to art. 77 of the GDPR, the interested party has the right to lodge a complaint with a supervisory authority.
14. INFORMATION ON THE PRIVACY POLICY The Data Controller is responsible for this Privacy Policy (Information). Date of last revision is 16/12/2020.

Customer Information - Company AVID TECHNOLOGY S.R.L.
GDPR - Customer Information
CUSTOMER PRIVACY INFORMATION PURSUANT TO THE GENERAL DATA PROTECTION REGULATION (GDPR- GENERAL DATA PROTECTION REGULATION) N. 679/2016
AVID TECHNOLOGY S.R.L. PALAZZO T2 STRADA 7 -MILANOFIORI - 20089 - ROZZANO (MI) Telephone: 02.577.897.1 E-Mail: info@avid.it With this information we intend to communicate to the interested party (here called "Customer") the management methods with regard to the treatment of your personal data, as prescribed by articles 13 and 14 of EU Regulation n. 2016/679 (hereinafter, General Data Protection Regulation or "GDPR") and by current regulations. These are the contents of the information:
0.INTRODUCTION
1. HOLDER OF THE TREATMENT
2. COLLECTION OF PERSONAL DATA AND LEGAL BASES
3. PURPOSE OF THE TREATMENT
4. SECURITY OF PERSONAL DATA
5. DATA RETENTION PERIOD
6. INTERNATIONAL DATA TRANSFER
7. SHARING OF PERSONAL DATA
8. OBLIGATION TO PROVIDE DATA AND POSSIBLE CONSEQUENCES IN THE EVENT OF REFUSAL
9. TYPE OF PERSONAL DATA COLLECTED
10. DATA PROTECTION OFFICER
11. DATA PROTECTION RIGHTS
12. CHANGES TO THE PRIVACY POLICY
13. OPPOSITION CANCELLATIONS AND CORRECTIONS
14. INFORMATION AND REVIEWS

Customer Information - Company AVID TECHNOLOGY S.R.L.
GDPR - Customer Information
0. INTRODUCTION The protection of personal data is an opportunity for shared and transparent compliance between AVID TECHNOLOGY S.R.L. (hereinafter, "Company") and the Customer who entrusts it with his personal data. Indeed, it is the duty of AVID TECHNOLOGY S.R.L. to protect them, preserve them from any damage, preserve them and dispose of them according to the treatment lines in the context of commercial negotiations, the life cycle of contracts and partnerships. With "personal data" - also called IPI, Identifiable Personal Information - we mean the personal data and identification of the interested party, information on facts and opinions, personal interests, including those of a particular nature, for the performance of the activities envisaged by this treatment . "Processing" means any operation or set of operations, performed with or without the aid of automated processes and applied to personal data or sets of personal data, such as the collection, registration, organization, structuring, conservation , adaptation or modification, extraction, consultation, use, communication by transmission, diffusion or any other form of making available, comparison or interconnection, limitation, cancellation or destruction.
1. OWNER OF THE TREATMENT
AVID TECHNOLOGY S.R.L. is the Data Controller of personal data and can be contacted at the following email address info@avid.it or at the telephone number 02.577.897.35, or by writing to the following email address:
AVID TECHNOLOGY S.R.L.
BUILDING T2 STREET 7 - MILANOFIORI - 20089 - ROZZANO (MI)
The Data Controller decides on the purposes and methods of processing personal data, as well as their security and the tools used
2. COLLECTION OF PERSONAL DATA AND LEGAL BASES The personal data collected concern all the identification and contact information of the customer in order to allow the sales, assistance and contractual activities developed during the life cycle of the Company's products and services . Their treatment is made necessary for the correct performance of the contractual relationship and to comply with the obligations established by the legislation for accounting and tax purposes. The data are directly and freely provided by the interested party or by previous Company sources or external to the Company. The data can be modified at the request of the same in case of error or changes. The data collection of the interested party can take place through the following channels:
- from the corporate CRM;
- web (institutional site, facebook, linkedin or other social platforms);
- advertising, PPC (pay per click);
- telephone numbers or emails of the Company;
- trade fairs and promotional events;
- participation in webinars, conferences or other events;
- for relationships.
Customer Information - Company AVID TECHNOLOGY S.R.L. Version 3.5 dated 22.09.2021
GDPR – Customer information page 3
Following the collection AVID TECHNOLOGY S.R.L. guarantees that the personal data are also pertinent and not excessive so that this process takes place according to lawfulness and correctness, i.e. for the purposes of the processing, explicit and legitimate, indicated below in this Information. Data processing takes place with both paper and IT tools and supports, both in compliance with security, conservation and accessibility criteria and procedures, within the limited scope of the purposes expressed. The legal basis for providing the data is the contractual fulfillment between the Company and the Customer. In the case of pre-contractual phases (preparations or negotiations before entering into a contract) the legal basis is based on the consent, collected or in said phases or by inheriting the consent connected to the processing of leads. Furthermore, the Data Controller may exercise a legitimate interest to defend his rights in court in the event of a complaint or dispute with the interested party. AVID TECHNOLOGY S.R.L. it is aimed at a target of subjects who inseparably enjoy legal, fiscal and contractual capacity, therefore minor subjects are excluded.
3. PURPOSE OF THE TREATMENT In the context of the pre-contractual and contractual phases, the management purposes for which the Customer's personal data become object of treatment are the following: 1. Essential and mandatory purposes for the execution of orders and contracts:
- order management (preparation and negotiation, receipt and registration, assistance and guarantee);
- administrative and fiscal management of the contractual and/or pre-contractual relationship, on the basis of national, community or non-community legislation;
- management of payment reminders;
- management of particular data deriving from the security measures and prevention of biological risk caused by COVID-19 (SARS-CoV-2) in accordance with Legislative Decree no. 81/2008 and other current legislative devices;
- inform the authorities of any fraud, illegality and incorrect behaviour;
- comply with legal obligations;
- comply with warranty and support obligations, 2. Optional purposes for which explicit consent is required:
- after-sales assistance outside the warranty period;
- participation in initiatives and events;
- profiling based on the interests and preferences expressed by the Customer;
- detection of the degree of interest and satisfaction with the services promoted;
- market research for the development of marketing strategies;
- analysis of statistical data relating to the type of channel used for contacts, the type of device (pc, tablet, mobile), communication and promotion activities, the Customer's choices regarding the products and services offered.
Customer Information - Company AVID TECHNOLOGY S.R.L. Version 3.5 dated 22.09.2021
GDPR – Customer information page 4
4. SECURITY OF PERSONAL DATA
AVID TECHNOLOGY S.R.L. treats personal data with scrupulous attention and for this reason it adopts security and protection measures in strict compliance with the GDPR and in line with the ISO 9001 and ISO 27001 standards.
Furthermore, AVID TECHNOLOGY S.R.L. sets in motion valid and appropriate practices and techniques aimed at guaranteeing the following conditions in all treatment processes:
- confidentiality, i.e. protection from unauthorized access;
- integrity, to prevent loss or damage;
- availability, in order to ensure the Customer continuous access to his data.
Even in the event that information is transferred to trusted third parties, and for the purposes indicated in this Information, it is the Company's care and attention to ensure that they similarly adopt security measures, operational techniques, according to the same criteria set out above.
5. DATA RETENTION PERIOD
The personal data of the interested party are processed for the time necessary to develop all the purposes of the treatment.
The retention period of personal data and company information, therefore, is determined on the basis of these criteria:
- nature and purpose of data processing;
- regulatory compliance;
- any disputes on complaints. Upon expiry of the terms envisaged, the data will be deleted from the current paper and computerized archives, and according to adequate technical procedures and in accordance with Information Security best practices.
6. INTERNATIONAL TRANSFER OF DATA As of today AVID TECHNOLOGY S.R.L. does not carry out any international data transfer to third countries outside the European Union. In view of the continuous changes and expansions of the business beyond the European borders, it may also happen that the company processes, followed by the Customer's personal data, may be subject to transfers to third party suppliers in other non-EU countries. As a result, Customer data may in the future be transferred to third party suppliers in these countries. In the event that the international transfer of data takes place, everything would take place in compliance with the legitimacy requirements set forth in the articles of the aforementioned Regulation, by the current privacy regulations and by the procedures governing the transfer itself; in this case the Data Controller complies with the conditions described in CHAPTER V (Transfer of personal data to third countries or international organizations - articles 44,45,46,47,48,49,50), without prejudice to the other provisions of this regulation. All the provisions of this chapter will be applied in order to ensure that the level of protection of natural persons guaranteed by the GDPR Regulation is not compromised.
Customer Information - Company AVID TECHNOLOGY S.R.L. Version 3.5 dated 22.09.2021
GDPR – Customer information page 5
7. SHARING OF PERSONAL DATA The personal data of the interested party will not be shared with other subjects except in cases where it is mandatory, otherwise consent is optional, explicit and voluntary. Access to the data can take place by some persons in charge of processing, internal to the organization, for all the operations necessary for administrative and management purposes, for the provision of internal services and for controls deriving from legal obligations: these are personnel of the areas of AVID TECHNOLOGY S.R.L., including administration, marketing and sales, technical assistance and information systems; principals/customers in the role of data users for processing purposes connected to contractual obligations of services performed by the company, personnel in charge of carrying out the COVID-19 (SARS-CoV-2) biological risk prevention checks within the times established by the provisions of law for the access to the workplaces of the company. The same can happen by some external subjects, such as service providers, as Data Processors; Banks and credit companies that issue payment cards or online banking services which are responsible for online tracking procedures for checking any electronic fraud; the Authorities and Public Bodies in order to protect the legal rights of the Company or correspond to specific legal obligations The Data Controller guarantees the training of all those who, within the organization, access the data under his authority in accordance with the specifics of the current treatment. For third parties designated as Data Processors, AVID TECHNOLOGY S.R.L. follows the rules of the GDPR on the subject, ensuring that they are compliant and adequate with current regulations.
8. OBLIGATION TO PROVIDE DATA AND POSSIBLE CONSEQUENCES IN THE EVENT OF REFUSAL Any total or partial refusal by the Customer would compromise the correct execution of the activities connected to the purposes expressed, and this would make it impossible to carry out the activities envisaged by this treatment.
9. TYPE OF PERSONAL DATA COLLECTED The personal data being processed are as follows:
- personal data: name, surname, gender, marital status;
- contact details: e-mail, telephone numbers, address, city, country, web contacts;
- tax and bank details: tax code, VAT number, current account and credit cards
- profile and preference data: economic activities and profession, preferred products/services, personal interests
- particular data deriving from the safety measures and prevention of biological risk caused by COVID-19 (SARS-CoV-2). The particular data that may be processed are:
- data on the solvency of the Client;
- data on judicial proceedings of the legal representative.
10. DATA PROTECTION MANAGER The Data Controller has not provided for the appointment of a Data Protection Officer (DPO).
Customer Information - Company AVID TECHNOLOGY S.R.L. Version 3.5 dated 22.09.2021
GDPR – Customer information page 6
11. DATA PROTECTION RIGHTS It is the Customer's right (articles 15-22 GDPR) to know the existence of his personal data collected and processed by the Data Controller, therefore to know its content and origin, verify its accuracy and possibly modify them, integrate them with other information, request their cancellation or transformation into anonymous form, block their use in the event of an alleged violation of the law or even definitively oppose their treatment. All requests for information, and any complaints, may be directed to the Data Controller at the addresses disclosed in this Statement.
12. CHANGES TO THE PRIVACY POLICY This Privacy Policy is subject to any changes and updates in order to implement changes in national and/or community legislation, or to adapt to technological innovations or for organizational reasons of AVID TECHNOLOGY S.R.L. for which it will be the diligence of the same to inform the Customer about it by sending him communications using the company communication tools available. The changes, such as the current one due to the adaptation to the new GDPR Regulation, will continue to apply the rules in force unless the interested party is unfavorable to the proposed changes and requests the cessation of the treatments and consequent cancellation of his data. The Customer must in any case autonomously and periodically check the update status of this Information, and in any case consult it every time he is informed of the changes that have occurred.
13. CANCELLATIONS, OPPOSITION AND CORRECTIONS At any time the Customer can request the rectification, opposition, in whole or in part, and the revocation of the processing of his data, and, if necessary, obtain its cancellation. Once the storage terms indicated above have elapsed, the Customer's personal data will in any case be canceled and destroyed through adequate technical procedures. The cases of cancellation are therefore the following:
- personal data are no longer necessary following termination of the relationship with the Data Controller;
- the interested party makes a revocation;
- the interested party opposes the treatment;
- the personal data have been processed unlawfully. Pursuant to art. 77 of the GDPR, the interested party has the right to lodge a complaint with a supervisory authority.
14. INFORMATION AND REVIEWS The Data Controller is responsible for this Privacy Policy (Information). Date of last revision is 09/22/2021.

Language

Privacy policy