This document, drawn up in terms of the general data protection regulation for personal data, describes the modes in which registered users' personal data is recorded and processed.

This is notification provided in terms of EU Regulation 2016/679 (GDPR), the Provisions by the GDPR Authority and other regulations related to the protection of data, applicable to those who register on this website, which can be accessed telematically via the address http://www.assofishingline.com (o http://www.assofishingline.it) which corresponds to the website's home page.

This notification is provided solely for this website and not for other websites as well that the user may browse using the links contained on the website itself.

1. How to register
To be able to buy the products, registration is required, using the registration form to indicate the following data (among other things): name, surname, date of birth, address, telephone number, e-mail address, and any other data. When registering the user is required to indicate a password. A complex password must be chosen and kept confidential. The user is responsible for any accesses and activities carried out using their credentials.

2. Data Controller for personal data
The Data Controller for personal data is Gruppo DP S.p.A. (VAT n° IT03436170108) whose registered office is at Via Trento, 43/3 16145 Genoa (Italy), Certified e-mail addressHR.GRUPPODP@REGISTERPEC.IT.

3. Categories of personal data
The Data Controller processes common and identifying personal data (name, surname, date of birth, address, telephone number, e-mail address, data related to the purchases, and possibly other data), provided by the user via the portal's registration form, or, in any case, processed in carrying out relations with the Data Controller.

4. Purpose of processing and transferring of data
Processing is done to allow the user to register, set a password, and proceed with making purchases (and related activities) on the website. The Data Controller does not transfer data outside the EU. Nevertheless, they reserve the option to use cloud services. In this case, the service providers will be selected from those who provide adequate guarantees, as called for by art. 46 GDPR 679/16. Therefore, processing will take place in accordance with one of the modes permitted by the current regulations.

5. Providing of data, legal basis for processing, and consequences of failure to communicate data
Said processing of personal data is necessary for registering on the portal and to be able to make purchases (and related activities) on the website. Failure to communicate the data will make it impossible to register on the website and make purchases.

6. Modes of processing data
Data is normally only processed using electronic or, in any case, automated instruments, depending on the modes and means required to guarantee the security and confidentiality of the data itself. Security measures are adopted, so that the data protection level called for by the GDPR and other regulations is guaranteed, while allowing access only to persons authorised to process the same by the Data Controller or the Data Processors designed by the former.

7. Recipients
The recipients / categories of recipients of the personal data processed via the website can be freelance professionals, consultants and/or other subjects, ICT service providers, etc. - normally designated by the Data Controller - or Authorised to process the data, such as the Data Controller's employees, for example. The data may be communicated to Judicial Authorities, Public Administrations, Police Forces, Fiscal Authorities, and other public entities in order to fulfil legal, regulatory, and national or European norms, at the explicit request of the same or to safeguard their rights.

8. Keeping of the data
Technical data is kept for the time strictly necessary for pursuing the Data Controller's purposes. Data related to registration, purchases, and accessory services are kept for the entire duration of the registration itself and, in any case, they are kept up to the end date laid down by the applicable norms.

9. Rights (art 15 and following GDPR)
In the cases provided for, the person involved has the right to ask for access to, correction, deletion, portability, and limiting of processing of their personal data, to be able to oppose processing, etc. To exercise their rights, the person involved may contact the Data Controller using the contact details provided above.

10. Right to lay a complaint
The person involved has the right to lay a complaint with the Authority for the protection of personal data.

11. Other purposesbr />Should the Data Controller intend to process the data further, for a purpose other than that for which it was gathered, before such further processing, they are to provide all pertinent information.

12. Automated decision-making process, including profiling
No automated decision-making processes and/or profiling is carried out

13. Specific notification
Specific notifications will be provided for providing any services or where necessary

14. Updating
The Data Controller has the right to edit and amend this notification, at any time. The Data Controller therefore urges their users to visit the website regularly and to peruse the notification on processing of their data, so that they are always up to date on the data gathered and the use the Data Controller makes of the same.