BayKer Italia S.p.A.
REA: MO-347932, Capitale Sociale: 750.000,00 i.v.
Via Pedemontana, 13
41042 Fiorano Modenese (MO)
Tel: +39 0536 1846400 - Fax: +39 0536 1846404
P.IVA 02732900366


Privacy Policy concerning the processing of personal data pursuant to articles 13-14 of (EU) Regulation 2016/679

Data subject: employees and contract staff.

BayKer Italia S.p.A. in its capacity of Data Controller with regard to the processing of your personal data pursuant to (EU) Reg. 2016/679 (hereinafter the 'GDPR'), hereby informs you that the said regulation protects data subjects with regard to the processing of their personal data and that the said processing will take place in a fair, lawful, transparent manner which protects your privacy and your rights.

Your personal data will be processed in accordance with the terms of the above legal provisions and the confidentiality obligations contained therein.

Purposes and legal basis of processing: specifically, your data will be processed for the following purposes, relating to the fulfilment of legal obligations:

  • Hygiene and labour safety;
  • Current legal requirements;
  • legal compliance with regard to taxation and accounting;
  • Obligations relating to liquidation of unions enrollment or exercise of rights.

Your data will also be processed for the following purposes relative to the performance of measures connected to contractual or preliminary obligations:

  • Activities schedule;
  • Booking of services or transfers;
  • management of the collective agreement, concerning the establishment, management and termination of the employment relationship, aimed, by way of example and not limited to, the recognition of benefits or the provision of contributions, the payment of salaries, checks, bonuses and other emoluments, the application of the legislation on social security and assistance, including supplementary ones, in tax and trade union matters, in accounting matters or in compulsory insurance matters;
  • establishment, management and termination of the employment relationship and related obligations, including pre-contractual activities;
  • For the purpose of carrying out specific activities related to the management of the employment relationship (for example, for the calculation of tax deductions), and in any case in compliance with current legislation on tax and labor matters, the Data Controller could also deal, in limits in which this is strictly functional to the purposes specified in this information, including the personal data of your family members. In this sense, you undertake to inform your family members of such treatments, also by providing them with this information;
  • Insurance services;
  • legal and economic terms of employment;
  • management of existing disputes, in court, as well as in administrative or arbitration and conciliation procedures, or pre-litigation situations. In the event that the Data Controller processes your personal data of a particular nature for this purpose pursuant to art. 9 of the GDPR, the legal basis for the processing is the need to ascertain, exercise or defend a right in court pursuant to art. 9, paragraph 2, lett. f) of the GDPR and the need to fulfill the obligations and exercise the specific rights of the data controller or of the data subject in the field of labor law, pursuant to art. 9, paragraph 2, lett. b);
  • Quality Management;
  • HR management in general.

Your data will also be processed for the following purposes necsseries to pursue data controller's legitimate interest:

  • internal control service for security and obligations (on the network, IT tools, internet, e-mail, telephony ...) as better explained in the policy delivered to the interested party;
  • video surveillance installed for personal security purposes, protection of company assets by means of cameras placed in the workplace (with the exclusion of changing rooms and services), duly reported. Video surveillance is installed in the workplace in compliance with current regulations in the forms required by law and sector regulations. The video surveillance system serves as a deterrent and as a possible source of evidence in case of any criminal actions. The images will be accessible only to those expressly delegated to do so and, unless otherwise provided by the authority, recorded and stored for a maximum period of 24 hours or 48/72 hours in case of holidays. Subsequently, the images will be deleted by over-registration, except as provided for by any provisions or requests of the Authority or the Judicial Police or, in any case, following the occurrence of crimes within the company premises (eg damage to company assets, non-access authorized, theft etc.) ..

For the purposes of the aforesaid processing, the Data Controller may obtain knowledge of special categories of data, as follows: carta d'identità e/o passaporto, Certificate of Eligibility (law 81/08), data law 53 (family losses up to the 2nd degree), health conditions, Id dell'utente, Internet browsing log file, log amministratore di sistema (per coloro che sono in possesso di credenziali da amministratore), Numero carta di credito, Particular data concerning family members up to the 3rd degree (law 104), racial or ethnic origins, unions enrollment. Personal data in these special categories are processed in compliance with art. 9 of the GDPR.

Further to your consent, your personal data may be used for the following purposes:

  • Use of personal email for extra-ordinary communications and communication of payrolls;
  • Use of personal telephone number for extra-ordinary communications.

Your contribution of data is optional with regard to the abovementioned purpose, and any refusal of consent will not affect the continuation of the relationship or the congruency of the processing.

Processing procedures. Your personal data may be processed by the following ways:

  • Manual personal data processing with paper filing system;
  • contract data processing by third parties;
  • computer processing.

All data are processed in compliance with the procedures specified in articles 6 and 32 of the GDPR and with the adoption of the appropriate security measures required.

Your data will only be processed by staff specifically authorised by the Data Controller, and specifically by the following categories of staff:

  • Admnistration office;
  • HR department;
  • system administrators: as required by the Provision of the Guarantor for the protection of personal data of November 27, 2008 concerning "Measures and precautions prescribed to the owners of the treatments carried out with electronic tools in relation to the attributions of the functions of System Administrators", you can request the identity of the System Administrators designated by the Data Controller who operate on the operating systems where your personal data are present by writing to the following address;.

Disclosure. Your data may be disclosed to external entities for the correct management of the relationship and specifically for the following categories of Recipients, including all the duly designated Data Processors:

  • banks and lenders;
  • constitutional authorities;
  • consultant and freelance professionals, also working as firms;
  • data subject relatives;
  • Doctor for the management of the formalities required by law 81/08;
  • External companies necessary for the provision of Data controller services (to know the list contact the owner);
  • External company and freelance professionals for the management of training courses;
  • External company for payroll processing;
  • Public/private subjects whose data transmission is mandatory or necessary in compliance with regulations or functional to the relationship management;
  • Pension and insurance funds;
  • insurance companies;
  • trade unions.

Distribution: Your personal data will not be distributed in any way.

Your personal data may also be transferred, only for the aforesaid purposes, to the following countries:

  • countries to the European Union.

Data Storage Period. In accordance with the principles of lawfulness, limitation of purpose and minimisation of data, pursuant to art. 5 of the GDPR, the data storage period for your personal data is:

  • established as a period of time not exceeding the purposes for which the data were collected and processed and complying with the compulsory times required by law.;
  • for optional purposes, established for a period of time not exceeding the performance of the services provided;
  • set for a timing not larger than the one which implies its purpose achievement, given the aim to collect data, and collected and processed for the execution and fulfillment of contract purposes.

Data Controller: the Data Controller, as defined by the Law, is Bayker Italia S.p.A. (Via Pedemontana, 13 , 41042 Fiorano Modenese (MO); VAT number: 02732900366; contactable at the following addresses: E-mail:; Phone number: +39 0536 1846400) in the person of its current legal representative.

The Data Protection Officer (DPO) designated by the Data Controller pursuant to art. 37 of the GDPR is avalilable writing to:

  • . (address at the headquarters).

You are entitled, by application to the Data Processor, to obtain the erasure (right to be forgotten), restriction, updating, rectification and portability of your personal data, to object to their processing, and in general to exercise all your rights under articles 15, 16, 17, 18, 19, 20, 21 and 22 of the GDPR wrinting to You can also lodge a complaint with the competent supervisory authority if you believe that the processing of your data is contrary to the legislation in force

You may also examine whenever you like the updated version of the present report by connecting to the following web site

Regulation (EU) 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22 - Rights of the Data Subject

1. The data subject has the right to obtain confirmation as to whether or not personal data concerning him or her exist, regardless of their being already recorded, and disclosure of such data in intelligible form, and the right to lodge a complaint with the supervisory authority.

2. The data subject has the right to be informed of:

  1. the source of the personal data;
  2. the purposes and methods of processing;
  3. the logic applied if the data are processed by electronic devices;
  4. the identification data concerning the Data Controller, the Data Processors and the representative designated as per article 5, comma 2;
  5. the entities or categories of entity to whom or which the personal data may be disclosed and who or which may get to know said data as designated representative in the State's territory, as data processors or as persons in charge of the processing.

3. The data subject is entitled to obtain:

  1. the updating, rectification or, where interested therein, integration of the data;
  2. the erasure, anonymisation or blocking of data that have been unlawfully processed, including data whose retention is not necessary for the purposes for which they were collected or subsequently processed;
  3. certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were disclosed or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared to the right that is to be protected;
  4. the portability of the data.

4. The data subject has the right to object, in whole or in part:

  1. on legitimate grounds, to the processing of personal data concerning him/her, even though they are relevant to the purpose of the collection;
  2. to the processing of personal data concerning him/her, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys.