fbpx
Menu

Privacy Policy

 

Protecting your privacy is extremely important to us. Below, you will find detailed information on how your data is processed. The purpose of this Privacy Policy is to provide you with a clear overview of our data processing methods because we want to earn your trust.

INDEX

  1. WHO IS THE DATA CONTROLLER OF THE DATA YOU PROVIDE US
  2. WHICH CATEGORIES OF DATA WE PROCESS
  3. ON WHAT LEGAL BASIS WILL THE DATA BE PROCESSED
  4. FOR WHAT REASONS WILL WE PROCESS YOUR DATA?
  5. WHO DO WE SHARE YOUR DATA WITH?
  6. WILL YOUR DATA BE TRANSFERRED TO A THIRD COUNTRY?
  7. HOW LONG WILL YOUR DATA BE STORED?
  8. WHAT DATA PROTECTION RIGHTS CAN YOU CLAIM AS A DATA SUBJECT?
  9. THE DATA PROTECTION SUPERVISORY AUTHORITY FOR US IS:
  10. HOW IS YOUR DATA PROTECTED?

 

1. WHO IS THE DATA CONTROLLER OF THE DATA YOU PROVIDE US

Data Controller
CopyMama s.r.l.
Via Monte Rosa, 21
Milano (MI)
20149
VAT Number 13332500969
Data Controller’s Email: [email protected]

 

2. WHICH CATEGORIES OF DATA WE PROCESS

Personal data (hereinafter referred to as “Data”) are information that refers to an identified or identifiable natural person. Through our website, we process the following categories of data, in particular:

Data that you voluntarily provide to us:

  • When you write to us using the form

The optional, explicit, and voluntary sending of emails to the addresses indicated on this Site will involve the subsequent acquisition of your address, necessary to respond to requests, as well as any other personal data included in the email itself.

 

Cookies: To allow you to navigate our website efficiently and safely and to enable you to use certain functions, we use cookies on various pages. These are pieces of information that are not collected to be associated with identified data subjects, but by their very nature could, through processing and association with data held by third parties, allow users to be identified. For more information on the categories of personal data we collect, please consult our Cookie Policy.

 

Special categories of personal data: Through the website, we do not collect and process any special categories of personal/sensitive data.

 

3. ON WHAT LEGAL BASIS WILL THE DATA BE PROCESSED

  • CONSENT

The lawfulness of the processing in this case is to be identified only and exclusively in the CONSENT that you voluntarily provide us. By using or consulting our site, you explicitly approve our privacy policy and consent to the processing of your personal data in relation to the methods and purposes described below, but explicit consent will only be requested through the selection of the unticked box that you will find on the individual forms.

 

Consent, according to the new General Regulation (Art. 4 GDPR), is any expression of free, specific, informed, and unambiguous will, following our clear and concise request. Your given consent applies to all processing activities carried out for the same or same purposes.

 

  • LEGAL OBLIGATION

(Art. 6(1)(c) of the GDPR): We must process some of your data to comply with the legal obligations to which we ourselves are subject (billing, etc.).

 

4. FOR WHAT REASONS WILL WE PROCESS YOUR DATA?

We will process your data for the following main reasons:

 

  • To comply with prescriptions from national and community regulations;
  • For the inclusion of personal details in the company’s computer databases;
  • To respond to your requests.


SECONDARY PURPOSES

 

Processing of data for compliance with legal obligations: We are subject to certain legal obligations in web management. This includes, among other things, the obligation to ensure the security of your data when using the web. For this purpose, we may process your data as part of measures to ensure data security.

 

Processing of data on the basis of legitimate interest: Retention of access data in server log files: When you visit our web, we may store access data in the server log files, such as the name of the requested file, date and time of access, volume of data transferred, and the requesting provider. We use these data exclusively to ensure efficient operation of the site. For security purposes (anti-spam filters, firewall, virus detection), the automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with the laws in force, to block attempts to damage the site itself or to cause harm to other users, or in any case harmful activities or constituting a crime. Such information is processed based on the legitimate interests of the data controller.

 

5. WHO DO WE SHARE YOUR DATA WITH?

We always take appropriate measures to ensure that your data is processed, protected, and transmitted in accordance with applicable legal requirements. Furthermore, we may transfer other data to third parties as part of the use of cookies. For more information, please visit our Cookie Policy.

 

THIRD-PARTY SERVICE PROVIDERS

We use other companies and individuals to perform certain activities on our behalf. In addition to us, in some cases, categories of persons involved in the organization or external subjects (such as third-party technical service providers, computer companies, etc.) may have access to the data. These providers only have access to the personal data necessary to perform their tasks. We guarantee that they cannot use the data for other purposes and are also obliged to process the personal data in accordance with this Privacy Policy, and under the regulations applicable to personal data protection.

 

6. WILL YOUR DATA BE TRANSFERRED TO A THIRD COUNTRY?

If we transfer personal data to service providers and affiliated companies outside the European Economic Area (EEA), the transfer will only take place if the EU Commission has confirmed an adequate level of data protection in the third country (Art. 45(1) of the GDPR) or if appropriate data protection guarantees are in place under Art. 47 of the GDPR.

With the judgment in case C-311/18 of July 16, 2020, the European Union Court of Justice invalidated the “Privacy Shield”, but the data processing, at this time, can still legitimately occur based on the Standard Contractual Clauses.

 

7. HOW LONG WILL YOUR DATA BE STORED?

In accordance with Art. 17 of the GDPR, your data will be stored for as long as we are legally required to do so or for the time we need your data for the purposes declared in Section 4. Your data will then be deleted in compliance with the data minimization principle.

 

  • As for personal data processed for Marketing Purposes or for profiling purposes, they will be stored in accordance with the principle of proportionality and in any case until the purposes of the processing have been pursued or until – if earlier – the specific consent by the data subject is revoked.
  • For legal obligations: In any case, data of civil, accounting, and tax nature will be retained for the term of ten years, as provided by law.

8. WHAT DATA PROTECTION RIGHTS CAN YOU CLAIM AS A DATA SUBJECT?

You can claim several different rights as an interested party.

Right of access

You can request information about your personal data stored (Art. 15 of the GDPR). This information includes the categories of data we process, the purposes of processing, the origin of the data, if we did not collect it directly from you, and if applicable, the recipients to whom we have transmitted your data.

Right to rectification and deletion

You can request the rectification of inaccurate personal data and the completion of incomplete personal data concerning you (Art. 16 of the GDPR). Furthermore, you can request the deletion of your data under the terms and conditions of Art. 17 of the GDPR. This could occur, for example:

  • if your personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
  • if you revoke the consent on which the processing is based and there is no other legal ground for the processing;
  • if you object to the processing of your data and there is no overriding legitimate reason for the processing;
  • if personal data has been unlawfully processed unless the processing is necessary to fulfil a legal obligation requiring us to process your data:
  1. particularly with respect to legitimate retention periods;
  2. to establish, exercise, or defend a right.

Right to restriction of processing

You have the right to restrict the processing of your personal data, for example, by marking your stored data to limit its future processing. To this end, it is necessary that one of the conditions specified in Art. 18 of the GDPR be met, e.g.

  • you contest the accuracy of the personal data, therefore, during the period of verification of the accuracy of such data, we limit processing;
  • the processing is unlawful, but you request the restriction of their use instead;
  • we no longer need your personal data, but you need it for the establishment, exercise, or defence of legal claims;
  • you have objected to the processing pending the verification of whether our legitimate grounds for processing override yours.

Right to data portability

Finally, you have the right to receive your personal data in a structured, commonly used, and machine-readable format. You can transfer this data to another data controller without hindrance. You have the right to have your personal data transmitted directly to another data controller, where technically feasible (Art. 20 of the GDPR).

Right to object

You have the right to object at any time, for reasons related to your particular situation, to the processing of personal data concerning you, provided that the data processing is based on your consent or our legitimate interests of a third party. In such a case, we will refrain from further processing the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms or for the establishment, exercise, or defence of legal claims. You may object to processing at any time if your personal data is processed for direct marketing purposes (Art. 21 of the GDPR). The right to withdraw your consent to processing remains freely revocable at any time, irrespective of your right to object.

Right to lodge a complaint with a supervisory authority

We work with you to achieve a fair resolution of any complaint regarding data protection. You have the right to lodge a complaint with the Data Protection Authority if you believe that the processing of your personal data by us violates the current data protection laws.

9. THE DATA PROTECTION SUPERVISORY AUTHORITY FOR US IS:

THE ITALIAN DATA PROTECTION AUTHORITY

10. HOW IS YOUR DATA PROTECTED?

 We have adopted appropriate technical and organizational security measures to ensure the protection of data. For this purpose, we have developed a reliable internal security approach.

The provisions of the GDPR are available at: https://eur-lex.europa.eu/legal-content/IT/TXT/PDF/?uri=CELEX:32016R0679&from=IT

Last modification: 30 January 2024

 

Close
Group 6 CopyCreated with Sketch.

Want to talk to mama?

Contattaci subito per una consulenza gratuita!