Scope of application
This privacy policy explains how we collect and use personal data. “Personal data” means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
We collect personal data with various methods during our normal business activities, both online and offline. This happens, for example, when a customer places an order or purchases products or services, enters into agreements or communicates with us, or visits and uses our websites. We also receive personal data from our customers in order to supply services on their behalf.
Identity of data controller
Data Controller is Arquati s.r.l. with registered Office in Corso Vittorio Emanuele II n. 15, 20122 Milano Tax ID and VAT no. IT 02541710345
Data Protection Officer is RedSun SA, with Registered Office in Via Cantonale, 8A, 6926 Collina d’Oro – Switzerland CHE-376.168.248 (art. 38 GDPR)
Categories of personal data
The personal data that we may collect and process, either directly or through third parties, through this Application include or may include:
contact details that allow us to communicate with the user, such us email, telephone number, name, surname, profession, district, state, country, postcode, gender, date of birth, town, address and geographical position;
data concerning our business relationship with the user, for example the type of products and services that can interest you, preferences about products and contact methods, languages, solvency, marketing preferences and demographic data;
transactional data on how the user interacts with us, e.g. regarding purchases, information requests, customer account detail, information on orders and contracts, delivery data, invoice and bank details, tax information, company name, VAT number, fax number or other types of data, tax ID, business sector, User ID, number of employees, transaction and mail history, cookies, usage data and information on how the user uses and interacts with our websites;
security and compliance data that help us to protect our interests, including information for conflict checks, fraud prevention and internal verification, as well as information needed for the security of our premises, e.g. video recordings.
Our products may collect information regarding the configuration, the settings and operation of the systems, information on events or other data acquired during the normal operation of our products. In some cases, this information may consist in personal data. The nature and extent of the information collected by our products will vary based on the type and function of the products and to the type of services for which they are used, within the limits set by current laws.
Personal data can be provided voluntarily by the User, or in the case of Use data, they can be collected automatically while using this Application.
Unless otherwise specified, all the data requested by this Application are mandatory. If the User refuses to provide such data, this Application may be unable to supply the requested service. In cases where this Application indicates that data provision is optional, Users may choose not to supply such data, with no consequences on the availability of the service or on its efficiency.
Should you have any doubt regarding which information is mandatory, please contact the Data Controller.
Unless otherwise specified, the use of cookies or other tracking tools by this Application or by third party services used by this Application is aimed at providing the service requested by the user, in addition to the purposes described in this document and in the Cookie Policy, if available.
Legal basis for processing
The performance of a contract with our customers and suppliers. The legitimate interests of Arquati S.r.l., represented by our regular business activities.
The Data Controller processes personal data related to the User where one of the following conditions apply:
- the User has given consent for one or more specific purposes;
- processing is necessary for the performance of a contract with the User and/or in order to take steps prior to entering into a contract;
- processing is necessary for compliance with a legal obligation to which the Data Controller is subject;
- processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
- processing is necessary for the pursuit of a legitimate interest of the Data Controller or of third parties.
However, it is always possible to ask the Data Controller to clarify the specific legal basis for each processing activity and in particular to specify whether the processing activity is based on the law, set forth in a contract or needed to close a contract.
Purposes of processing
Fulfilling orders for products or services and associated activities, such as delivery of products and services, customer service, account and invoice management, training and support activities, product update and dispatch of safety-related notices, as well as the provision of other services related to purchases for purposes connected with address management, emailing, statistics, access to third-party service accounts, content comment, contact with Users, interaction with social networks and external platforms, interaction based on position, protection from spam, recording and authentication, display of content from external platforms and remarketing and behavioral targeting.
Managing our contractual obligations and relationship with customers, in particular management of interactions with customers, analyzing and improving the products and services we offer, sending information about our products or service and about our special offers and promotions.
Protecting our company’s websites, networks, systems and premises, and protecting against fraud.
Managing our ordinary business needs, such as payment processing and financial account management, product development, contract management, website administration, fulfilment of requirements, corporate governance, audit, reporting and compliance.
Recipients of personal data
Third parties: we may use third parties to provide or perform services and functions on our behalf. We may make personal data available to these third parties, to enable them to perform such services and functions. Any processing of such personal data will be performed according to our instructions and compatible with the original purposes.
Legal requirements: we may make personal data about certain individuals available to public or judicial authorities, to the Police and other agencies as required by law, e.g. for national security reasons or law enforcement requirements, as well as to the authorities and courts of the countries where we operate. Within the limits of the law, we may also disclose the above information to third parties (including legal advisors) when necessary for lodging, exercising or defending from legal claims or to otherwise enforce our rights, protect our property or rights, property or safety of others, or when needed to support the external audit, compliance and corporate governance functions.
Mergers and acquisitions: personal data may be transferred to a person who acquires all or part of the equity or assets of Arquati S.r.l. or its business operations in the event of a sale, merger, liquidation, dissolution, or other corporate operations.
Affiliates: we may also transfer and communicate the above information to affiliates of Arquati S.r.l. in compliance with current laws.
Place of processing and International Transfers
Data are processed at the operating premises of the Data Controller and at any other place where the parties involved in data processing are located.
The User’s personal data may be disclosed to third parties who are located in other countries; therefore, the data may be sent to countries having different privacy protection standards than those of the user’s country of residence. In such cases, we will adopt appropriate measures to ensure that the user’s personal data receive an adequate level of protection; these measures include our Binding Corporate Rules, which establish rigorous provisions for processing of the personal data that we acquire and process throughout the world, as well as standard contractual terms to protect your personal data.
The User is entitled to obtain information regarding the legal basis for transfer of data outside the European Union or to an international organization under public international law or established by two or more countries, such as the UN, as well as regarding the security measures adopted by the Data Controller to protect data.
The User may check whether the above-described transfers take place by viewing the section of this document relating to details of Personal Data processing or request information from the Data Controller, using the contact details provided at the top.
Retention of data
Personal data will be retained for the period of time needed to achieve the purpose for which they were collected, usually for the duration of the contractual relationship and, thereafter, for the period of time required or permitted by current laws.
Therefore:
- Personal data collected for purposes connected with the performance of a contract between the Data Controller and the User will be retained until the performance of said contract has been completed.
- Personal data collected for purposes linked to a legitimate interest of the Data Controller will be retained until such interest is fulfilled.
When processing is based on the User’s consent, the Data Controller may retain the personal data for longer until said consent is revoked. Moreover, the Data Controller may be obliged to retain the personal data for a longer period of time to comply with a legal obligation or by order of an authority.
At the end of the retention period, or in the event of failed execution of the contract and/or of the functional and/or preparatory elements thereof, the personal data will be erased or rendered unusable, unless the User expressly consents to their use in product sectors similar to or different from the context in which they were collected. Therefore, upon expiry of said period, the right to access, erasure, rectification and data portability may no longer be exercised.
Personal data processing and protection modalities
Security measures for personal data protection: we adopt appropriate technical, physical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, disclosure, unauthorized access and all other unlawful forms of processing. Access to personal data is limited to authorized persons who have a proven need to see it; in addition to the Controller, data may in some cases be accessed by other subjects involved in the organization of this Application (administration, sales, marketing, legal system administration staff) or by other external subjects (e.g. third party providers of technical services, mail carriers, hosting providers, IT companies, communication agencies) who may, if necessary, be appointed as Data Processors by the Controller. The updated list of Processors may always be requested to the Data Controller. We adopt a complete information security programme that is proportionate to the risks associated with processing. This programme is periodically updated to mitigate the operational risks and protect personal data, taking into account the industry’s accepted practices. We also adopt enhanced security measures for the processing of sensitive personal data.
How we protect the personal data we process on behalf of our customers (in our capacity as data processors): in some cases, we process personal data on behalf of our customers as a service (in a data processor capacity). In these cases, we collect and process the personal data according to the customer’s instructions and never use or communicate them for our own purposes. We adopt information security control measures to protect collected data and undertake to disclose or transfer personal data in strict compliance with the customer’s instructions or to provide the requested service. Unless otherwise instructed by customers, the personal data processed on behalf of our customers are treated in line with our commitments on disclosure and transfer of data, in accordance with the contents of this notice.
Our websites
Cookies, usage data and similar tools
When users visit our websites, we may collect certain information by automated means, using various technologies, such as cookies, pixel tags, browser analysis tools, server logs and web beacons. In many cases, the information we collect through cookies and other tools are used in a non-identifiable way, without any reference to personal data.
Cookies are small text files that websites transfer to your computer
or to the hard drive of another device through the web browser you use to visit them. We may use cookies to make website access and usage more efficient, to tailor them to your browsing preferences and to improve their functionality. Cookies can be used for performance management, and to collect information for analytics purposes on the way our website is used. They can also be used for functionality management, allowing us to make the users’ visits more efficient by, for example, remembering language preferences, passwords and log-in details. There are two types of cookies: session cookies, which are deleted from your device after you leave the website; and persistent cookies,
which remain on your device for longer or until they are deleted manually.
The logs recorded by our servers may also collect information about how users utilize the websites (usage data). This data may include the user’s domain name, language, type of browser and operating system, Internet service provider, IP address (Internet protocol), the site or reference which directed the user to the website, the website that the user was visiting before arriving on our website, the website visited afterwards, and the time spent on the website. We may monitor and utilize usage data to measure the website’s performance and activity, improve the website’s design and functionality or for security purposes.
Our website may also use pixel tags and web beacons. These are tiny graphic images contained in web pages or in our emails that allow us to determine whether or not you have performed a specific action. When you access these pages or open or click an email, the pixel tags and web beacons generate a notice related to that operation. These tools allow us to measure the response to our communications and improve our web pages and promotions.
You can change your browser settings to block cookies, to be informed when you receive a cookie, to delete them or browse our website using your browser’s anonymous usage setting. To find out how to adjust or change these settings, you can refer to your browser instructions or help page. If you do not agree to our use of cookies or other technologies that store information on your device, we invite you to change your browser settings. However, please note that if you disable cookies or other similar technologies, some features of our websites may not operate correctly.
Where required by law, you will be asked to consent to the use of certain cookies and similar technologies before they are used or installed on your computer or other devices.
Data sharing and do-not-track requests from browser: as we do not track our website visitors (and do not allow others to do so), we do not process web browser do-not-track signals. To learn more about browser tracking signals and do-not-track functions please visithttp://www.allaboutdnt.org/
Linked sites: our websites may contain links to third parties’ websites.
Linked sites do not necessarily undergo review, control or examination procedures on our part. Each linked site can adopt its own terms of use and privacy notice, and users should read and accept such terms when accessing said linked sites. We do not accept responsibility for the policies and practices adopted by linked sites, or any other links contained in them. These links do not imply our approval of the linked sites or any company or service, and we recommend that users carefully read the terms and notices of these sites before using them.
Underage persons: our websites are not designed for use by underage persons and are not used to intentionally obtain personal information from underage persons or to market to underage persons. If we become aware that an underage person has provided personal information through one of our websites, we will remove that information from our systems.
Google Analytics: our websites may also use Google Analytics to collect information about your online activity on our websites, e.g. regarding the web pages you visited, the links you clicked or the searches you made on our websites. We may use this information for the purpose of preparing reports and improving our websites. The cookies collect various information, e.g. number of visitors to the website, how they arrived to our website and the pages they visited. The information generated by these cookies and your current IP address will be transmitted by your browser to Google, who will store them on servers in the United States and in other countries. Google will use this information on our behalf for the purpose of evaluating the use of our website as previously described. The IP addresses collected through Google Analytics will not be associated with any other data held by Google. For more information about the data gathered using Google Analytics you can visit http://www.google.com/intl/en/analytics/privacyoverview.html. To prevent the use of these cookies, you can select the appropriate settings in your browser. In this case, you may not be able to use all of the functionalities of our websites. You can download and install the Google Analytics opt-out browser add-on from: http://tools.google.com/dlpage/gaoptout.
Google Remarketing technology: our websites may use Google’s remarketing technology. This technology enables users who have already visited our online services and shown interest in our services to see targeted ads on the websites of the Google’s network of partners. The same remarketing initiatives may also be directed to users that are similar to the visitors of our website. The information generated by cookies on website usage will be sent to and stored by Google’s servers in the United States. If the IP address is transferred, it will be made shorter by removing the last three digits. The use of cookies makes it possible to analyze the behavior of users on websites and, subsequently, send product recommendations and advertising messages targeted to the user’s interests. If you would prefer to not receive any targeted ads, you can deactivate Google’s use of cookies for these purposes by visiting the website:
https://www.google.com/settings/ads/.
Alternatively, users can deactivate the use of cookies by third parties by accessing the deactivation page of the Network Advertising Initiative.
(http://www.networkadvertising.org/choices/).
Please note that Google applies its own data protection policy which is independent of our own. Therefore, we are in no way responsible for their policies and procedures. We invite you to read Google’s privacy policy before using our websites (https://www.google.com/intl/en/policies/privacy/).
Facebook conversion tracking: our websites may utilize the conversion tracking pixel service of Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA (“Facebook”). This tool allows us to follow the actions of users who have been redirected to a provider’s website after they click on an ad in Facebook. This allows us to record the effectiveness of Facebook ads for statistical and market research purposes. The data collected remain anonymous, therefore we will not be able to trace back to the personal detail of any specific user. However, the collected data are saved and processed by Facebook, who is able to connect the data with the user’s Facebook account and use the data for its own advertising purposes, in accordance with the terms of their Data Policy available on: https://www.facebook.com/about/privacy/. Conversion tracking also allows Facebook and its partners to show users advertisements on and outside Facebook. A cookie will be saved on the user’s computer for these purposes. Only users over 13 years of age may express their consent. To revoke your consent, you can click here: https://www.facebook.com/ads/website_custom_audiences/
Permissions requested by this Application
This Application may request Facebook permissions to enable it to perform actions with the User’s Facebook account and to collect information from it, including personal data. This service enables this Application to connect with the User’s account on the Facebook social network, provided by Facebook Inc.
For more information on the permissions that follow, please refer to Facebook’s permission information and Facebook’s privacy policy.
The following permissions are needed:
Basic information:
The User’s basic information provided to Facebook on registration, which usually includes: ID, name, image, gender and localisation language and in some cases also Facebook “friends”. If the User has made additional data available publicly, these will also be available.
Provides access to the User’s primary email address.
Contact email
Gives access to the User’s contact email address.
Details on personal data processing
Personal Data are collected for the following purposes and using the following services:
Access to third party services
This type of service enables this Application to pull Data from your accounts on third party services and to perform actions with them.
These services are not activated automatically, as they require the User’s express consent.
Access to Facebook account (This Application)
This service enables this Application to connect with the User’s account on the Facebook social network, provided by Facebook, Inc.
Permissions requested: Email and Contact email.
Place of processing: USA – Privacy Policy.
Access to Twitter account (Twitter, Inc.)
This service enables this Application to connect with the User’s account on the Twitter social network, provided by Twitter, Inc.
Personal Data collected: various types of Data according to the provisions of the privacy policy of the service.
Place of processing: USA – Privacy Policy.
Content comment
The comment service allows Users to express and make public their comments regarding the content of this Application.
Users, depending on the settings decided by the Owner, can leave the comment anonymously. If the Personal Data supplied by the User includes their email, this could be used to send notifications of comments regarding the same content. Users are responsible for the content of their comments.
In the event that a comment service provided by third parties is installed, it is possible that, even if the Users do not utilize the comment service, the same collects traffic data relating to the pages where the comment service is installed.
Disqus (Disqus)
Disqus is a content comment service provided by Big Heads Labs Inc.
Personal Data collected: Cookies, usage data and various types of Data according to the provisions of the privacy policy of the service.
Place of processing: USA – Privacy Policy – Opt out.
Facebook Comments (Facebook, Inc.)
Facebook Comments is a service managed by Facebook, Inc. that allows Users to leave their comments and share them on the Facebook platform.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Contacting the User
Contact by telephone (This Application)
Users who have provided their telephone number may be contacted for marketing and promotional purposes connected to this Application, as well as to respond to requests for support.
Personal Data collected: telephone number.
Mailing List or Newsletter (This Application)
When registering with the mailing list or newsletter, the User’s email address is automatically entered in a list of contacts to whom we may send email messages containing information, including of a commercial and promotional nature, relating to this Application. The User’s email address may also be added to this list as a result of registration with this Application or after a purchase is made.
Personal Data collected: postcode, town, name, surname, cookies, date of birth, usage data, email, address, country, telephone number, job, province, company name, gender and state.
Contact form (This Application)
When filling out the contact form, the User consents to the use of those data in responding to requests for information, quotes or any other kind specified in the form title.
Personal Data collected: postcode, town, tax ID, name, surname, date of birth, email, User ID, address, country, number of employees, fax number, telephone number, VAT number, job, province, company name, gender, business sector, state and various types of data.
Manage addresses and send email messages
This type of service makes it possible to manage a database of email contacts, telephone contacts or any other type of contacts, used to communicate with the User.
These services could also enable the collection of data relating to the date and time the messages were viewed by the User, as well as to the User’s interaction with them, such as information on clicking of links included in the messages.
MailUp (MailUp)
MailUp is an address management and email message service provided by MailUp S.p.A.
Personal Data collected: email.
Place of processing: Italy – Privacy Policy.
Mailchimp (Mailchimp)
MailChimp is an address management and email message service provided by Rocket Science Group.
Personal Data collected: email.
Place of processing: USA – Privacy Policy.
Interacting with social networks and external platforms
This type of services enable interaction with social networks, or with other external platforms, directly from the pages of this Application.
The interactions and information acquired by this Application will in any case be subject to the user’s privacy settings for each social network.
If a social network interaction service has been installed, traffic data relating to the pages where it is installed may be collected even if Users are not using the service.
Facebook Like button and social widgets (Facebook, Inc.)
The Facebook Like button and social widgets are interaction services with the Facebook social network, provided by Facebook, Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Google+ +1 button and social widgets (Google, Inc.)
The Google +1 button and social widgets are interaction services with the Google+ social network, provided by Google, Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Twitter Tweet button and social widgets (Twitter, Inc.)
The Tweet button and Twitter social widgets are interaction services with the Twitter social network, provided by Twitter, Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Pinterest “Pin it” button and social widgets (Pinterest)
The Pinterest “Pin it” button and social widgets are services for interaction with the Pinterest platform, provided by Pinterest Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Location-based interactions
Geolocation (This Application)
This Application can collect, use and share Data related to the User’s geographical location, in order to provide location-based services.
Most browsers and devices provide preset tools to deny geographical tracking. If the User has expressly authorized it, this Application may receive information regarding the User’s actual geographical location.
Personal Data collected:
Non-continuous geolocation (This Application)
This Application can collect, use and share Data related to the User’s geographical location, in order to provide location-based services.
Most browsers and devices provide tools to opt out of geographical tracking. If the User has expressly authorized it, this Application may receive information regarding the User’s actual geographical location.
The User’s geographical location is tracked in a non-continuous way, either upon specific request of the User or when the User has not entered their location in the appropriate field and allows the application to detect the location automatically.
Personal Data collected:
SPAM protection
This type of services analyze the traffic of this Application, potentially containing Personal Data of Users, in order to filter it from part of the traffic, messages and contents recognized as SPAM:
Google reCAPTCHA (Google Inc.)
Google reCAPTCHA is a SPAM protection service provided by Google Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Registration and authentication
With registration and authentication, you authorise the Application to identify you and to give you access to dedicated services.
In accordance with what is specified below, registration and authentication services may be provided with the assistance of third parties. If this is the case, this application may access some of the Data stored by the third-party services used for registration and authentication.
WordPress.com Single Sign On (Automattic Inc.)
WordPress.com Single Sign On is a registration and authentication service provided by Automattic Inc. and connected to the WordPress.com network.
Personal Data collected: various types of Data according to the provisions of the privacy policy of the service.
Place of processing: USA – Privacy Policy.
Remarketing and behavioral targeting
This type of service allows this Application and its partners to communicate, optimize and service ads based on the User’s past usage of this Application.
This activity is performed by tracking Usage Data and the use of Cookies, information that are transferred to the partners to whom the remarketing and behavioral targeting activity is connected.
In addition to the opt out options offered by the services listed below, the User can opt out of third-party cookies, by visiting the opt out page of the Network Advertising Initiative.
AdWords Remarketing (Google Inc.)
AdWords Remarketing is a remarketing and behavioral targeting service provided by Google Inc. that connects the activity of this Application to the Adwords advertising network and the Doubleclick Cookie.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy – Opt Out.
Statistics
The services in this section make it possible for the Data Controller to monitor and analyse traffic data and to keep track of the User’s behavior.
Google Analytics (Google Inc.)
Google Analytics, is a service provided by Google Inc. (“Google”). Google uses the Personal Data it collects to track and analyze the use of this Application, draft reports and share them with other services developed by Google.
Google may use the Personal Data to contextualize and customize the advertisements of its advertising network.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy – Opt Out.
WordPress Stats (Automattic Inc.)
WordPress Stats, is a statistics service provided by Automattic Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
Google Ads conversion tracking (Google Inc.)
Google Ads conversion tracking (Facebook pixel) is a statistical service provided by Google, Inc. which connects data from the Google ad network with the actions performed within this application.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy. Subject complies with Privacy Shield.
View contents from external platforms
This type of service makes it possible to display contents hosted on external platforms directly from the pages of this Application and to interact with them.
If this type of service has been installed, traffic data relating to the pages where it is installed may be collected even if Users are not using the service.
YouTube Video Widget (Google Inc.)
YouTube is a video content visualization service managed by Google Inc. that allows this Application to incorporate such content within its pages.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy.
User rights
The User has the right to request erasure of personal data, to restriction of the processing of personal data, to object to processing and to portability of data.
Consent and withdrawal of consent
By providing personal data, the user agrees to the collection, processing, international transfer and use of said data in accordance with the provisions of this privacy policy. Where required by law, the User will be asked to express consent explicitly. The User may always object to the use of personal data for direct marketing purposes or at any time withdraw the consent previously expressed for a specific purpose.
Specifically, the User has the right to:
- withdraw consent at any time. The User may withdraw consent to processing of Personal Data expressed previously.
- object to processing of their personal data. The User may object to processing of personal data when it takes place on a legal basis other than consent. Further details on the right to object are provided in the section below.
- access to personal data The User has the right to obtain information on the data processed by the Data Controller, on given aspects of processing and to receive a copy of processed data.
- verify and request rectification. The User may verify the correctness of personal data and request updating or rectification.
- obtain restriction of processing. Under specific conditions, the User may request restriction of processing of personal data. In this case, the Data Controller will not process data for any purpose other than its retention.
- obtain erasure ore removal of personal data. Under specific conditions, the User may request erasure of personal data by the Data Controller.
- receive one’s data or have them transferred to another Data Controller. The User has the right to receive personal data in a structured, commonly used and machine-readable format and, where technically feasible, to have them transmitted to another controller without hindrance. This measure is applicable when Data are processed by means of automated instruments and processing is based on the User’s consent, on a contract which the User is party to or on contractual measures associated to it.
- lodge a complaint. The User may lodge a complaint with the competent data protection authority or engage in legal proceedings.
Details on the right to object
When Personal Data are processed in the public interest, in the exercise of official authority vested in the controller or to pursue a legitimate interest of the Data Controller, Users have the right to object to processing for reasons connected with their specific situation.
Users are informed that where their Data are processed for direct marketing purposes, they may object to processing without providing any reason. To find out whether the Data Controller is processing data with direct marketing purposes, Users may refer to the relevant sections of this document.
How to exercise one’s rights
To exercise their rights, Users may send a request to the Data Controller’s contacts provided in this document. Requests are lodged free of charge and processed by the Data Controller as soon as possible, and always within one month.
Cookie Policy
This Application uses Cookies. To find out more and view policy details, please read our Cookie Policy.
Further information on processing
Legal action
The User’s Personal Data may be used for legal purposes by the Data Controller in court or in the stages leading to possible legal action arising from improper use of this Application or associated services by the User.
The User declares to be aware that the Controller may be required to disclose Personal Data upon the order of public authorities.
Specific information
Upon the User’s request, in addition to the information contained in this privacy policy, this Application may give the User additional and contextual information regarding specific services or the collection and processing of Personal Data.
System logs and maintenance
For operation and maintenance purposes, this Application and any third-party services used by it may contain system logs, i.e. files that record interactions and that may contain Personal Data, such as the User’s IP address.
Information not contained in this policy
Additional information relating to data processing may be requested at any time from the Data Controller using the contact details provided.
Response to “Do Not Track” requests.
This Application does not support “Do Not Track” requests.
To find out whether the third-party services used support them, Users are advised to read their respective privacy policies.
Changes to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time; information will be provided to Users through this page and, if possible, on this Application, if technically and legally feasible, by sending a notification to Users through one of the contact details provided to the Data Controller. Users are therefore advised to regularly check this page, which shows the date of the latest update at the bottom.
Where changes relate to processing activities that require consent, the Data Controller will request the User’s consent again, if necessary.
Contact us
To contact us about privacy-related issues or to send questions, comments or complaints, please write to privacy@arquati.it