Privacy Policy
Privacy Policy of www.speziaboat.com
For information regarding the personal data collected, the purposes of processing, and the parties with whom the data is shared, please contact the Data Controller.
Data Controller
For more information about the Data Controller, please contact the following email address:
Email of the Data Controller: 01566680110@cdh.it
Types of Data Collected
The Data Controller does not provide a list of the types of Personal Data collected.
Full details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed prior to data collection.
Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically when using this Application.
Unless otherwise specified, all Data requested by this Application is mandatory. If the User refuses to provide it, this Application may be unable to provide the Service. In cases where this Application indicates some Data as optional, Users are free to refrain from communicating such Data without affecting the availability or operation of the Service.
Users who are uncertain about which Data is mandatory are encouraged to contact the Data Controller.
The possible use of Cookies – or other tracking tools – by this Application or by third-party service providers used by this Application is for the purpose of providing the Service requested by the User, as well as for the additional purposes described in this document and in the Cookie Policy.
The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application.
Methods and Location of Data Processing
Processing Methods
The Data Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.
The processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the stated purposes. In addition to the Data Controller, in some cases, other parties involved in the operation of this Application (administrative, sales, marketing, legal, system administration staff) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communication agencies) may have access to the Data. These parties may be appointed, if necessary, as Data Processors by the Data Controller. The updated list of Data Processors can be requested from the Data Controller at any time.
Location
The Data is processed at the operational offices of the Data Controller and in any other places where the parties involved in the processing are located. For further information, contact the Data Controller.
Personal Data may be transferred to a country other than the one in which the User is located. For more information about the location of processing, the User may refer to the section on details regarding the processing of Personal Data.
Data Retention Period
Unless otherwise specified in this document, Personal Data is processed and retained for as long as required by the purpose for which it was collected, and may be retained for a longer period due to legal obligations or based on the User’s consent.
Cookie Policy
This Application uses Tracking Tools. For more information, Users may refer to the Cookie Policy.
Additional Information for Users
Legal Basis for Processing
The Data Controller processes Personal Data relating to the User if one of the following applies:
-
The User has given consent for one or more specific purposes;
-
Processing is necessary for the performance of a contract with the User or for pre-contractual measures;
-
Processing is necessary to comply with a legal obligation to which the Controller is subject;
-
Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller;
-
Processing is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party.
In any case, the Data Controller will gladly help clarify the specific legal basis that applies to the processing and, in particular, whether the provision of Personal Data is a statutory or contractual requirement, or a requirement necessary to enter into a contract.
Additional Information on Retention
Unless otherwise specified, Personal Data is processed and stored for the time required by the purpose for which it was collected and may be retained for a longer period due to legal obligations or on the basis of User consent.
Therefore:
-
Personal Data collected for the performance of a contract between the Controller and the User shall be retained until such contract has been fully performed.
-
Personal Data collected for the purposes of the Controller’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may obtain further information regarding the legitimate interests pursued by the Controller by referring to the relevant sections of this document or by contacting the Controller.
When processing is based on the User’s consent, the Controller may retain the Personal Data for longer until such consent is withdrawn. Additionally, the Controller may be required to retain Personal Data for a longer period in order to comply with a legal obligation or upon order of an authority.
Once the retention period expires, Personal Data will be deleted. Therefore, after this period has expired, the right to access, erase, rectify, and data portability cannot be exercised.
User Rights Under the General Data Protection Regulation (GDPR)
Users may exercise certain rights regarding their Data processed by the Data Controller.
In particular, Users have the right, within the limits established by law, to:
-
Withdraw consent at any time. Users can withdraw previously given consent to the processing of their Personal Data.
-
Object to processing. Users may object to the processing of their Data when it is done on a legal basis other than consent.
-
Access their Data. Users have the right to learn if Data is being processed by the Controller, obtain disclosure regarding certain aspects of the processing, and obtain a copy of the Data being processed.
-
Verify and request rectification. Users may verify the accuracy of their Data and request updates or corrections.
-
Restrict the processing of their Data. Users may request the restriction of processing; in this case, the Controller will not process the Data for any purpose other than storage.
-
Obtain the deletion or removal of their Personal Data. Users may request that the Controller delete their Data.
-
Receive their Data or have it transferred to another controller. Users have the right to receive their Data in a structured, commonly used, and machine-readable format and, if technically feasible, to have it transmitted to another controller without any hindrance.
-
Lodge a complaint. Users may file a complaint with the competent data protection authority or take legal action.
Users also have the right to be informed about the legal basis for Data transfers to countries outside the European Union or to international organizations such as the UN, and about the measures taken by the Controller to safeguard their Data.
Right to Object
Where Personal Data is processed in the public interest, in the exercise of official authority, or for the purposes of legitimate interests pursued by the Controller, Users may object to such processing for reasons related to their particular situation.
Users should note that if their Personal Data is processed for direct marketing purposes, they can object to processing at any time, free of charge and without providing any justification. If Users object to processing for direct marketing, their Personal Data will no longer be processed for such purposes. To determine whether the Controller processes Data for direct marketing purposes, Users may refer to the relevant sections of this document.
How to Exercise Your Rights
Any requests to exercise User rights can be directed to the Data Controller via the contact details provided in this document. Requests are free of charge and will be processed by the Controller as soon as possible, and always within one month, providing the User with all information required by law. Any corrections, deletions, or limitations to the processing will be communicated by the Controller to any third-party recipients, unless this proves impossible or involves a disproportionate effort. The Controller will inform the User of such recipients if requested.
Additional Information on Processing
Legal Defense
The User’s Personal Data may be used by the Controller in court or in the stages leading to possible legal action arising from improper use of this Application or related Services.
The User declares to be aware that the Controller may be required to reveal Personal Data upon request of public authorities.
Specific Information
Upon request of the User, in addition to the information contained in this privacy policy, this Application may provide additional and contextual information regarding specific Services, or the collection and processing of Personal Data.
System Logs and Maintenance
For operation and maintenance purposes, this Application and any third-party services may collect system logs, which are files that record interactions and may contain Personal Data, such as the User’s IP address.
Information Not Contained in This Policy
Further details concerning the processing of Personal Data may be requested from the Data Controller at any time using the contact information provided.
Changes to This Privacy Policy
The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if technically and legally feasible, within this Application and/or by sending a notification to Users via any contact information available. It is strongly recommended to check this page often, referring to the date of the last modification listed below.
If the changes affect processing activities based on the User’s consent, the Data Controller will collect new consent from the User, where required.