EXTENDED INFORMATION NOTICE PURSUANT TO ARTICLES 12, 13 AND, WHERE APPLICABLE, 14 OF THE GDPR – REGULATION (EU) 2016/679 ON THE PROTECTION OF NATURAL PERSONS WITH REGARD TO THE PROCESSING OF PERSONAL DATA (HEREINAFTER, THE "GDPR") The Data Controller provides below the information notice pursuant to Articles 12, 13 and, where applicable, 14 of the GDPR regarding the processing of personal data supplied by the Client/Data Subject through the completion and signing of the Contract to purchase the products/services offered for sale by the Data Controller, by voluntarily uploading personal data on this website (in particular by filling in forms), or simply by browsing it. 1. Data Controller and contact details The Data Controller is MARCO RIVA, Via Ettore Colombo 2, Cogolo (TN), tel. +39 3791307004, website https://www.coriva.it/ (hereinafter the “Website”). 2. Principles applicable to processing In accordance with the provisions of the GDPR, the Data Controller constantly ensures that personal data are: processed lawfully, fairly and transparently; collected for specified, explicit and legitimate purposes, and subsequently processed in a manner compatible with those purposes; adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed; accurate and, where necessary, kept up to date; retained for no longer than is necessary for the purposes for which they are processed; processed in a manner that ensures appropriate security, through suitable technical and organisational measures; processed, where based on consent, following a freely given choice by the Client/Data Subject, expressed in response to a clearly distinguishable request, presented in an intelligible and easily accessible form, using clear and plain language. The Data Controller adopts appropriate technical and organisational measures to ensure data protection by design and by default, guaranteeing that only the personal data necessary for each specific purpose are processed. The Data Controller values and carefully considers any input, observations and opinions provided by the Client/Data Subject through the above-mentioned contacts, in order to implement a dynamic privacy management system that ensures effective protection of individuals with regard to the processing of their data. This Information Notice may be subject to change, in line with the evolution of applicable legislation and the technical and organisational measures adopted by the Data Controller. The Client/Data Subject is therefore invited to periodically consult this section of the Website to review updates and the current version of the Information Notice.