Pursuant to Article 13 of EU Regulation/2016/679 (hereinafter “GDPR”) and Legislative Decree 196/2003, as adapted by Legislative Decree 101/2018 (hereinafter collectively “Legislation”), Webidoo s.r.l. provides information on the processing of personal data.

1. Data controller

The data controller is the company Webidoo s.r.l., with registered office in Milan, via Gioberti 4 (hereinafter referred to as “Data Controller”), which will collect and process the personal data you provide on this website in order to process them for the purposes indicated below.

The Data Controller has appointed a Data Protection Officer (DPO) who can be contacted at the email address dpo@webidoo.com.

2. Purposes and legal bases of the processing of your personal data

We will process your personal data for the following purposes:

1. provide the services provided by the site and respond to user requests. The legal basis for such processing is the need to execute a user request, to execute a contract and/or pre-contractual measures taken at the request of the person to whom the data refer. For this purpose the provision of personal data is necessary, therefore, failure to provide such data will make it impossible for the User to obtain the services requested from the Controller;
2. on the basis of consent, to send promotional communications on the Controller’s products and services through automated (banner, email, sms, mms) and non-automated (paper mail, telephone with operator) means. The user may object to the sending of such communications at any time, as well as revoke the consent given for this purpose;
3. on the basis of consent, the data processed could also be used to identify and define tastes, preferences, habits, needs (so-called ‘profiling’). The user may object to the sending of such communications at any time, as well as revoke the consent given for this purpose;
4. on the basis of the Controller’s legitimate interests, to manage and control our activities internally and, where necessary, to exercise our rights of action and defence in court.
5. to fulfil any other obligation arising from the applicable legislation or from an authority order.
6. Processed data

The data processed by the Controller consist of:

• Data provided voluntarily

We will process any personal data you provide via the form on this site, such as your first and last name, telephone number, e-mail address, etc.

• Navigation data

The computer systems and procedures used to operate the site acquire certain personal data whose transmission is implicit in the use of Internet communication protocols. In particular, this category of data includes the IP address of the network from which the user is connected at the time he or she gives consent to the processing. The IP address and the so-called timestamp (i.e. the indication of the exact time at which consent was given) will be stored together with the data provided in order to be able to demonstrate and substantiate the time at which we obtained consent.

4. Categories of recipients of personal data

Personal data may be known and processed:

• by personnel of the Data Controller, authorised to process data, in order to carry out the processing activities for which the data were collected and for which consent was given;
• by the Data Controller’s suppliers, such as technology service providers, consultants and freelancers assisting the Data Controller as data controllers.

5. International Transfers

Should we transfer your personal data outside the territory of the European Union, we will cover such transfers with an adequate level of protection. If and when we transfer data to our suppliers located outside the territory of the European Union, we do so on the basis of an existing adequacy decision or on the basis of Standard Contractual Clauses approved by the European Commission.

6. Data Retention

Personal data will be stored for as long as necessary to pursue the purposes for which they were collected.

7. Rights of the data subject

In full compliance with Articles 15 to 22 of the GDPR, you may at any time be asked to know what personal data are being processed. In particular, the right of access, rectification, deletion as well as, where applicable, the right to data portability, the right to restriction of processing and the right to object to processing is guaranteed. More information on the rights of data subjects can be found at www.garanteprivacy.it or by consulting the GDPR. In addition, if the processing is carried out for marketing purposes, or is based on the legitimate interest of the Controller, you may object at any time. To obtain more information on the processing of personal data or to exercise your rights, you may contact the Data Controller hello@webidoo.com or write by traditional mail by sending a letter to the registered office indicating in the subject line “EXERCISE OF RIGHTS REGARDING PERSONAL DATA” specifying which right is being requested.

You may contact the Data Protection Officer for details on data processing by writing to this address dpo@webidoo.com.

At any time, you have the right to lodge a complaint with the Data Protection Officer if you feel that you have not received a satisfactory response from the Data Controller regarding your rights or if you consider that your rights have been infringed.