Privacy policy for video surveillance

Privacy policy statement in accordance with provisions of the Italian Privacy Law (art. 13 of D.Lgs. 196/03) updated as  at 13/11/2014

This privacy policy statement is full information in relation to the video surveillance equipment located at the offices of illycaffè in via Flavia 110 and in via Malaspina, 34 in Trieste.
The data are processed with IT and electronic means by illycaffè S.p.A. (that will process data which are instrumental to achieve the purposes of this privacy policy and perform on the data, the only operations necessary for the pursuit of these purposes) for purposes of protection of persons, property or assets of the Company and to assist them in court civil or criminal, any exercise of the right of defense on the basis of useful images in the case concerning illegal acts. Data may therefore be communicated to the competent authorities by illycaffè (e.g. judicial authorities and police) and to lawyers and are processed (and therefore known as persons in charge) by subjects especially appointed persons in charge on behalf of illycaffè by illycaffè (subsidiary security staff also external to illycaffè, security guards also external to illycaffè, legal office staff also external to illycaffè, staff of the data processor, staff involved in the maintenance and management of software and hardware components of the systems also external to illycaffè which can also act as system administrators and are appointed as such in this case) the data may also be known and treated by internal controllers (such as the one shown below) and external to the company (security company). The data will be kept for the period provided by law and in particular in accordance with the decision of the Authority for the Protection of Personal Data no. 1712680 8 April 2010. Specific security measures are observed by illycaffè to prevent the loss of data, illicit or incorrect use and unauthorized access. All the above data will be retained and processed by illycaffè in compliance with its confidentiality requirements and with the regulations in force (in compliance with the principles of fairness, lawfulness, transparency, and protection of the confidentiality and the rights) strictly in line with the aims set forth in this privacy policy. Data will be filed at illycaffè S.p.A. offices. The provision of data is optional and the lack of them could make it impossible to access to offices in which the equipment is present or go around near the equipment. The Data Controller is illycaffè S.p.A., having its registered office in via Flavia, 110 – 34147-Trieste (TS), Italy, telephone number +39 040 3890 111, fax number +39 040 3890 490, e-mail: The Data Processor (which can process the data as necessary to perform the tasks assigned to him) that you may contact for everything relating to the use of the data, and especially to exercise within the times and by the procedurs envisaged by the law the rights pursuant to art. 7 of Italian Legislative Decree 196/03 and to obtain the complete and updated list of the other Data Processors is the IT Corporate Systems and ITC Processes Director, who can be contacted for the purposes of this role at the addresses of illycaffè S.p.A. (any notice in writing must be sent “to the attention of the data processor, the IT Corporate Systems and ITC Processes Director”, with “privacy” as its subject). Any changes in the above Data Processor and any other updates of this privacy policy will be published in the &quotprivacy policy&quot page of the website Please, visit the relevant section of the website, without prejudice for any other information procedure pursuant to article 9 of the Italian Legislative Decree 196/03. Any query and request (including queries pursuant to article 7 of the Legislative Decree 196/03) on data processing may also be sent to “to the attention of the Data Processor, the IT Corporate Systems and ITC Processes Director”.

Section 7 of D.Lgs. 196/2003 - Right to Access Personal Data and Other Rights:

  1. A data subject shall have the right to obtain confirmation as to whether or not personal data concerning him exist,regardless of their being already recorded, and communication of such data in intelligible form.
  2. A data subject shall have the right to be informed:
    1. of the source of the personal data;
    2. of the purposes and methods of the processing;
    3. of the logic applied to the processing, if the latter is carried out with the help of electronic means;
    4. of the identification data concerning data controller, data processors and the representative designated as per Section 5(2);
    5. of the entities or categories of entity to whom or which the personal data may be communicated and who or which may get to know said data in their capacity as designated representative(s) in the State’s territory, data processor(s) or person(s) in charge of the processing.
  1. A data subject shall have the right to obtain
    1. updating, rectification or, where interested therein, integration of the data;
    2. erasure, anonymization or blocking of data that have been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed;
    3. certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected.
  1. A data subject shall have the right to object, in whole or in part:
    1. on legitimate grounds, to the processing of personal data concerning him/her, even though they are relevant to the purpose of the collection;
    2. to the processing of personal data concerning him/her, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys.