We shall not disseminate your personal data.
to our service providers, including other companies of Tod’s Group, performing technical and organizational tasks on our behalf (i.e. IT support services , delivery and logistics services, customer support, processing, or hosting services, etcetera);
to a third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other shift in all or in any given part of our business, assets or stock (also in connection with bankruptcy or similar outcomes);
in connection with the essential purposes described above (that is to say in order to comply with legal obligations or to execute a lawful request of public authorities).
Your personal data shall be transferred from your country to our headquarter in Italy, based on adequacy regulations, pursuant the section 17A of the Data Protection Act 2018.
Data transfers toward countries outside the European Economic Area (EEA): We guarantee that we shall transfer your personal data towards a country outside the European Economic Area (EEA) not having an Adequacy Decision by the European Commission (EC), only after the adoption of at least one of the cross-border transfer mechanisms the Regulation recognizes as being able to ensure an adequate protection of the personal data being transferred:
specific “Standard Contractual Clauses” are to be drafted, issued by the European Commission, in order to ensure that the protection level of the personal data processed by our partners outside the EU shall comply with the EU's data protection level;
adoption of Company Binding Rules, approved by the competent Public Authorities, in compliance with the data transfer within a group of undertakings or enterprises is done through binding corporate rules, approved by the competent data protection authority in the UE, pursuant to the consistency mechanism referred to in art. 63 and to the conditions detailed under art. 47 of the Regulation.
We also undertake to carry out, in accordance with laws in force, any possible prior risk assessment concerning the data transfer; adopting, if necessary, any additional security measures, complementary to the safeguards guaranteed by the aforementioned transfer mechanisms.
We would like to stress the fact that the data transfer mechanisms, used to disclose your personal data outside the EU, are coherent with the cross-border data transfer tools stated by the UK laws framework.
Your personal data shall only be processed by parties being duly instructed and able to provide adequate technical and organizational safeguards, as well as bound to the strictest confidentiality by us.