Digilab Italia S.R.L.
Sede Operativa: Viale G. R. Gumpert 1, 37137 Verona | +39 045 8091547 | Codice Fiscale 03214770210
Sede Legale: Via Marie Curie 17, 39100 Bolzano | Tribunale di Bolzano

Data protection declaration

Information on the processing of personal data of website users pursuant to Article 13 of EU Regulation No. 2016/679 (‘GDPR’)

When using and processing personal data, Digilab Italia S.R.L. complies very closely with all relevant data protection legislation.

The company Digilab Italia S.r.l., pays the highest attention to the security and confidentiality of the personal data of users (hereinafter referred to as ‘Users’ or ‘User’) of the website https://www.digilabitalia.com/ (hereinafter referred to as the ‘Website’). This document therefore provides information regarding the processing of their personal data.

1. Data Controller

The data controller is Digilab Italia S.r.l., with registered office in Via Marie Curie 17, 39100 Bolzano and operational headquarters in Viale G. R. Gumpert 1, 37137 Verona (hereinafter, the ‘Company’).

For any request regarding the processing of personal data, as well as to exercise the rights recognized by the GDPR and better described in point 7 below, please contact the Company at the e-mail address info@digilabitalia.com or telephone number +39 045 8091547.

2. For what purposes the Company processes personal data

Through the Website and the Company collects some personal data referring to the Users, voluntarily provided by them or collected in the normal operation of the same, which are processed for the purposes described below.

The computer systems and software procedures used to operate the Website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with identified subjects, but by its very nature could, through processing and association with data held by third parties, make it possible to identify Users. This category of data includes the IP addresses of the computers used by Users who connect to the Site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system used. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning and is deleted immediately after processing. The data could be used to ascertain responsibility in the event of any computer crimes to the detriment of the Site.

The processing operations carried out by the Company are outlined below.

3. How we keep personal data secure

The Company takes appropriate security measures to ensure the protection, security, integrity and accessibility of your personal data. The appropriate security measures are designed to prevent unauthorised access, disclosure, modification or destruction of personal data.

All personal data is stored on the Company’s secure computer systems (or appropriately stored hard copies) or on those of our suppliers and is accessible and usable in accordance with our standards and security policies (or equivalent standards for our suppliers).

4. How we keep personal data

We only retain your personal information for as long as is necessary to achieve the purposes for which it was collected or for any other legitimate related purposes as set out in the table in sections 2 and 3 above.

Personal data that are no longer needed, or for which there is no longer a legal basis for their storage, will be irreversibly anonymised or securely destroyed.

If personal data are processed for several purposes, they will be deleted or anonymised as soon as the retention period for the last purpose has expired.

5. With whom we may share personal data

The personal data may be accessed by duly authorised employees of the Company, as well as by external suppliers, appointed, if necessary, as data processors, who provide support for the provision of services, including those necessary for the operation of the App.

You can contact the Company at info@digilabitalia.com, to ask to see the list of data processors and other parties to whom we disclose data.

6. With whom we may share personal data transfer to third Countries

Your personal data will mainly be processed within the European Economic Area (EEA). However, the use of certain tools by the Company may involve, even on a residual basis, a transfer of the same to entities established in countries outside the European Union (EU) or the EEA (hereinafter ‘Third Countries’). Such transfer, in any case, is carried out in compliance with the provisions of Chapter V of the GDPR.

These external parties will process personal data either as autonomous data controllers or as data processors, duly appointed by the Company in accordance with data protection legislation (depending on their role in relation to the processing).

You may write to the Company at any time, using the contact details set out below, asking which parties your personal data is being transferred to, and to receive a copy of the guarantees adopted for the transfer.

 7. Personal data protection rights and the right to lodge complaints with the Supervisory Authority

Every User has the right to request from the Company, subject to the existence of the legal prerequisite underlying the request

  • access to personal data, as provided for in Article 15 of the GDPR;
  • the rectification or integration of personal data held by the Company that are considered inaccurate, as provided for in Article 16 of the GDPR;
  • the deletion of personal data for which the Company no longer has any legal basis for processing, as provided for in Article 17 of the GDPR;
  • the restriction of the way in which personal data is processed, if one of the cases provided for in Article 18 of the GDPR applies;
  • the copying of the personal data provided to the Company, in a structured, commonly used and machine-readable format and the transmission of such data to another data controller (so-called portability), as provided for in Article 20 of the GDPR;

 

Right to object: in addition to the rights listed above, the User may always object at any time to the processing of personal data carried out by the Company in pursuit of its legitimate interest. Furthermore, the User may at any time object if personal data are processed for marketing purposes, including profiling insofar as it is related to such marketing.

The exercise of these rights, which can be done through the contact details of the Company indicated in point 1, is free of charge and is not subject to formal constraints. It shall be the responsibility of the Company to verify that the User is entitled to exercise the relevant right and to provide feedback, as a rule, within one month.

In the event that the User considers that the processing of his/her personal data is in violation of the provisions of the GDPR, he/she has the right to lodge a complaint with the Guarantor for the protection of personal data, using the references available on the website www.garanteprivacy.it, or to take legal action.