Company privacy


According to art. 13 GDPR, Rampini Carlo Spa, with registered office in Passignano sul Trasimeno P.IVA 01797480546 PEC address:, in the person of the legal representative Franco Rampini (hereinafter, "Rampini") in your capacity as Data Controller of your data, below provides information about the use of the same (hereinafter, the Data Controller).

With this document, following the Provision of the Data Protection Authority of 8 April 2010, art. 3, paragraph 1, we inform you that in these premises and company squares owned and/or in the legal availability of the Data Controller a video surveillance system is active to protect the company's assets and the safety of people. According to the regulations of the Regulation, this treatment will be based on principles of correctness, lawfulness, transparency and protection of your privacy and your rights.

   A) Purpose of the processing: the Data Controller has installed inside and outside the premises and company squares owned by you and/or in your legal availability a video surveillance system compliant with the provisions of the GDPR and the Provision of 8 April 2010 of the Guarantor Authority for the protection of personal data.

The personal data collected are processed to guarantee the security and protection of company assets and in particular to:

  1. Prevent the carrying out of vandalism against the company and the interested parties who are inside and outside the company premises;
  2. Constitute a deterrent for the performance of acts of damage that could occur against the company and the interested parties who are inside and outside the company premises;
  3. Facilitate any right of defense in court by Rampini Carlo S.p.A.;
  4. Safety in the workplace (to protect workers and people who frequent company premises).

The cameras are all visible and provided with the relative signaling through special signs, are placed near places visible to all, and will be indicated by Rampini Carlo S.p.A., so that all staff and guests are aware of the exact location.

It is also stated that there are no hidden cameras.

 B) Processing methods: The processing is carried out in compliance with the methods and requirements of the data provided for by the Regulation and by the provisions of the Provision of 8 April 2010 mentioned above, and will include all the operations or set of operations indicated in Article 4, n. 2), GDPR - carried out with the aid of computer systems - namely: collection,  recording, organization, structuring, updating, storage, adaptation or modification, extraction and analysis, consultation, use, communication by transmission, comparison, interconnection, limitation, cancellation or destruction of data. The processing is carried out using electronic tools, is managed by specially appointed, authorized and/or designated personnel  and the storage of data takes place through computer support. The images will be kept for the time indicated in the minutes of union agreement specifically drawn up and agreed and at the end of this period will be automatically deleted from the system.The Data Controller has implemented security procedures regarding access to the servers, the registration area is manned by information signs indicating the presence of the plant, positioned near the premises and company squares, and in any case in such a way as to inform the interested party before being taken back from the plant. 1 European Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016, on the protection of individuals regarding the processing of personal data (in short, the "Regulation" or the "GDPR"). Communication of data: personal data relating to the processing in question, for the purposes indicated above, may be made accessible:

  1. to employees and collaborators of the Data Controller or other companies belonging to the corporate group of the Data Controller, in their capacity respectively as authorized data processors or data processors;
  2. to third parties (for example, providers for the management and maintenance of the video surveillance system and/or contractors of guardianship and security services, etc.) who carry out outsourced activities on behalf of the Data Controller, in their capacity as data processors;


C) Rights exercisable following the provisions of Chapter III, Section I, GDPR, you have the right to exercise the rights indicated therein and in particular:

  • Right of access - Obtain confirmation as to whether or not personal data concerning you are being processed and, in this case, receive information regarding purposes of the processing, categories of data personal data processed and retention period, recipients to whom these may be communicated (Article 15, GDPR),
  • Right to rectification - Obtain, without undue delay, the rectification of inaccurate personal data concerning you and the integration of incomplete personal data (Article 16, GDPR),
  • Right to erasure - Obtain, without undue delay, the erasure of personal data concerning you, in the cases provided for by the GDPR (Article 17, GDPR),
  • Right of limitation - Obtain from the Data Controllers the limitation of processing, in the cases provided for by the GDPR (Article 18, GDPR) -
  • Right to portability - Receive in a structured format, commonly used and readable by an automatic device, the personal data concerning you provided to the Data Controllers, and to obtain that the same is transmitted to another holder without impediments, in the cases provided for by the GDPR (Article 20, GDPR)
  • Right to object - Object to the processing of personal data concerning you, unless there are legitimate reasons for the Data Controllers to continue processing (Article 21, GDPR)
  • Right to complain of the supervisory authority - Propose a complaint to the Guarantor Authority for the protection of personal data, Piazza di Montecitorio n. 121, 00186, Rome (RM).

You can exercise these rights by simply sending a request to the email address:

Rampini Carlo Spa