Pursuant to a policy of transparency and fairness, in compliance with current legislation and with particular reference to applicable national legislation and the European Privacy Regulation no. 679/2016 (“GDPR”, hereinafter “Privacy Code”), Dental Beauty S.r.l. provides some information regarding the processing of personal data provided by the user.
It should be noted that, pursuant to Article 4, paragraph 1, letter a), of the Privacy Code, processing shall be defined as: "any operation or set of operations, carried out even without the aid of electronic instruments, concerning the collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, cancellation, and destruction of data, even if not recorded in a database."
1. PURPOSE OF THE PROCESSING
1.1. The data provided or otherwise acquired by the Data Controller directly from the User or from third parties are processed by our company and/or our representatives for the following purposes:
a) to carry out its activities in the execution, management, conclusion, and fulfillment of existing pre-contractual and contractual relationships, to provide the services requested or envisaged for the User, as well as to carry out strictly related activities;
b) to fulfill obligations established by laws, regulations, provisions issued by supervisory and control authorities and bodies;
c) for the performance of commercial activities promoting services and products offered by the Data Controller and/or its commercial partners, including the sending of advertising material or periodic communications.
1.2. The Data Controller will collect and process the data. However, such data may subsequently be acquired and processed by the Data Controller's Partners who will deliver the goods or provide the purchased services, always to the extent that such processing is instrumental to the specific purpose of the transaction or services requested.
1.3. The data collected will also be processed by the Data Controller, without the need for explicit consent, in accordance with the provisions of Article 130, paragraph 4, of the Privacy Code and the provision of the Italian Data Protection Authority "Simplification of Certain Obligations in the Public and Private Sectors with Respect to Processing for Administrative and Accounting Purposes" of 19/06/2008, for commercial communications, the offer of products or services, the sending of advertising material, and the conduct of market research by the Data Controller via postal mail and email. Pursuant to Article 7, paragraph 4, of the Privacy Code, the customer may object at any time "to the processing of personal data concerning him or her for the purpose of sending advertising materials or direct selling or for conducting market research or commercial communications."
2. DATA PROCESSING METHODS
The processing in question is carried out in accordance with the methods set forth in the Privacy Code, including through computerized and automated tools, including, but not limited to, collection, recording, organization, storage, processing, selection, comparison, use, interconnection, consultation, communication, deletion, destruction, and blocking of data, in accordance with the principles of security/protection, accessibility, confidentiality, and integrity. The data is processed and retained in accordance with the mandatory provisions of the law, within the limits and for the methods specified therein. The processing is carried out directly by the Data Controller's organization and by parties external to that organization, part of its network of commercial partners, delegated as agents/managers by the same company and/or parties closely connected to its operation and/or the performance of the contractually agreed-upon activities requested by you (in addition to what is specified in point 4). The data is not subject to disclosure.
3. DATA PROVISION
The provision of personal data is necessary for the conclusion and management of the contract and for the optimal execution of the contractual obligations, as well as for the performance of activities strictly related to the fulfillment of such obligations. The provision of data may be mandatory pursuant to laws, regulations, or EU legislation.
Any refusal to provide express consent to data processing will make it impossible to conclude or execute the contract and/or perform the requested or contractually agreed-upon services. Providing personal data for information and commercial promotion purposes regarding the services and offers promoted by the Data Controller is optional and has no consequences on the contractual relationship.
4. SCOPE OF COMMUNICATION AND DISSEMINATION OF DATA
4.1. The data provided may be communicated for the purposes described in point 1.1 a) and to be subjected to processing having the same purposes, to the following parties:
a) Collaborators of the Owner;
b) Parties external to the Data Controller's organization who carry out activities related and instrumental to and aimed at managing the contractual relationship, including trusted personnel, lawyers, experts, business consultancy firms, consultants, professional firms, data and service management companies, debt collection companies, entities and organizations that carry out electronic data and payment management activities, companies that perform printing, transmission, enveloping, transport and sorting of customer communications, document archiving services and companies specializing in data entry services, the provision of IT services, administrative and accounting management services, through parties appointed by the Data Controller.
The data may then be communicated for the purposes referred to in point 1.1 c) to collaborators and representatives of the Data Controller.
4.2. Personal data will not be disclosed, made available, or accessed in any form to parties other than those indicated in the previous point 4.1 or to unspecified parties.
5. RIGHTS OF THE INTERESTED PARTY IN RELATION TO THE PROCESSING OF PERSONAL DATA
5.1. The interested party has the rights set forth in art. 7 of the Privacy Code and art. 15 (right of access) of European Regulation EU 2016/679, namely the rights to:
I. obtain confirmation of the existence or otherwise of personal data concerning him or her, even if not yet recorded, and their communication in an intelligible form.
II. obtain information on: a) the source of the personal data; b) the purposes and methods of processing; c) the logic applied in the event of processing carried out with the aid of electronic instruments; d) the identification details of the data controller, data processors, and the designated representative pursuant to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1, GDPR; e) the entities or categories of entities to whom the personal data may be communicated or who may become aware of it in their capacity as designated representatives in the territory of the State, data processors, or persons in charge of processing.
III. obtain: a) the updating, rectification or, when interested, the integration of the data; b) the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including data whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed; c) certification that the operations referred to in letters a) and b) have been brought to the attention, including with regard to their content, of those to whom the data were communicated or disseminated, except in the case in which such fulfillment proves impossible or involves the use of means manifestly disproportionate to the right protected.
IV. object, in whole or in part: a) for legitimate reasons, to the processing of personal data concerning him/her, even if pertinent to the purpose of the collection; b) to the processing of personal data concerning him/her for the purpose of sending advertising or direct sales materials or for carrying out market research or commercial communications;
V. the right to lodge a complaint with the Supervisory Authority for any matter relating to the aforementioned data processing. Pursuant to Articles 16 to 22 of European Regulation EU 2016/679, the interested party may exercise:
VI. the right to rectification (art. 16),
VII. the right to be forgotten (cancellation art. 17),
VIII. the right to restriction of processing (art. 18),
IX. the right to obtain from the Data Controller notification to the recipients to whom the data have been transmitted of any rectifications or cancellations or limitations of the processing (art. 19),
X. the right to portability (art. 20),
XI. the right to object (art. 21),
XII. the right to object to automated processing (art. 22).
This allows you to access your data to:
Verify its veracity;
Change them if they become inaccurate;
Also integrate them with a supplementary declaration;
Request its deletion;
Limit its processing;
Object to processing.
The interested party may revoke the consent given in relation to the separate purposes indicated above at any time, except where it is impossible to continue the commercial relationships as indicated and without prejudice to the processing of previously acquired data for the fulfillment of fiscal and tax obligations arising from the concluded contracts.
DATA DELETION
The Data Controller, in compliance with the corresponding right of access by the data subject, has established procedures whereby data subjects may request the erasure without undue delay of personal data or the restriction of the processing of personal data concerning them for the following reasons: because the data is no longer necessary for the purposes for which it was collected; because the data subject has withdrawn consent; because the data subject objects to the processing; or because the data is being processed unlawfully.
5.2 To exercise the rights summarized above, you may contact the Data Controller directly, using the methods described in Article 9 of the Privacy Code. Specifically, you may send a registered letter to: Dental Beauty S.r.l., with registered office in Turin, Via Treviso, 24, G, postcode 10144; or an email to: info@dentalbeauty.it;
6. DATA CONTROLLER
6.1. The data provided may be processed by the Data Controller and all its collaborators and/or employees.
6.2. The data provided may be processed by third parties, possibly called upon to carry out processing operations on behalf of the Data Controller, appointed for this purpose as external data processors:
a) subjects linked to the Data Controller by an agency relationship pursuant to art. 1742 et seq. of the Civil Code;
b) companies that carry out the transmission, packaging, transport and sorting of communications to customers;
c) companies that provide archiving services for documentation relating to relationships with customers;
d) survey companies regarding: quality of services provided, customer satisfaction, offering of new products, etc.;
e) companies that provide services related to the provision, measurement and optimization of websites and Internet communication campaigns.
6.3. The list of Data Processors is constantly updated and can be requested by sending a communication using the methods indicated in point 5.2.
7. TYPES OF DATA COLLECTED
7.1. Among the Personal Data collected by this Platform, either independently or through third parties, are: Website, First Name, Last Name, Telephone Number, Company Name, VAT Number, Address, Province, Email, Cookies, Usage Data, Type of service chosen by the potential customer, and Password.
7.2. Other Personal Data collected may be indicated in other sections of this privacy policy or through informational texts displayed contextually with the collection of the Data. Personal Data may be entered voluntarily by the User or collected automatically during the use of this Platform.
Any use of Cookies – or other tracking tools – by this Platform or by the owners of third-party services used by this Application, unless otherwise specified, has the purpose of identifying the User and recording their preferences for purposes strictly related to the provision of the service requested by the User.
7.3. Failure by the User to provide certain Personal Data may prevent this Platform from providing its services.
7.4. The User assumes responsibility for the Personal Data of third parties published or shared through this Platform and guarantees that he or she has the right to communicate or disseminate them, freeing the Data Controller from any liability towards third parties.
8. FURTHER INFORMATION ON THE TREATMENT
8.1. Minimum security measures and methods of storing collected data
Pursuant to Article 31 of the Privacy Code, a series of measures must be adopted to ensure the security of collected data and systems, minimizing the risk of destruction or loss, even accidental, of the data itself and preventing any type of unauthorized access or processing that is not permitted or inconsistent with the purposes of collection. The data provided will be collected by the Data Controller using electronic means. For this reason, in compliance with the provisions of Annex B of the Privacy Code, additional security measures will be observed, such as:
a) the adoption of a computerized authentication system;
b) the adoption of an authorization system, if different authorization profiles are identified for the persons in charge.
In the first case, the authentication credentials consist of either a code identifying the data controller associated with a password or an authentication device, both confidential and known only to the data controller. The identification code cannot be assigned to multiple data controllers, even at different times, while the authentication credentials are deactivated either in the event of prolonged inactivity (at least six months) or in the event of loss of the quality that allowed the data controller to access personal data.
In the second scenario, however, the authorization profiles must be identified and configured prior to the start of personal data processing, and the existence of the conditions for their retention must be verified at least annually.
Dental Beauty S.r.l., in its capacity as data controller, undertakes to equip itself with suitable electronic tools, updated at least every six months, to protect the personal data collected against the risk of intrusion and the risk of dissemination of software intended to damage or disrupt the IT system. Software aimed at preventing the vulnerability of electronic tools will be updated annually, while technical instructions must be provided at least weekly to safeguard the collected data. If the Data Controller uses external personnel, a written declaration of the work performed must always be provided to certify compliance with regulatory requirements.
8.2. Personal data security measures
Pursuant to Article 32 of European Regulation (EU) 2016/679, appropriate security measures will be adopted to ensure the safety of personal data. Any breach of these measures will be reported to the national supervisory authority in the manner set forth in Article 33 of the same European Regulation. Furthermore, in the cases provided for in Article 34, the breach will be communicated to the data subject.
8.3. Defense in court
The User's Personal Data may be used by the Data Controller for defense in court or in the preparatory stages leading to possible legal action, against improper use of the same or related services by the User.
8.4. Specific information
In addition to the information contained in this privacy policy, this Platform may provide the User with contextual information regarding specific services, or the collection and processing of Personal Data.
8.5. System logs and maintenance
For operational and maintenance purposes, this Platform and any third-party services used by it may collect system logs, which are files that record interactions and may also contain Personal Data, such as the User's IP address.
8.6. Information not contained in this policy
Further information regarding the processing of Personal Data may be requested at any time from the Data Controller using the contact information.
8.7. Exercise of rights by Users
The subjects to whom the Personal Data refers have the right at any time to obtain confirmation of the existence or otherwise of their Personal Data from the Data Controller, to know their content and origin, to verify their accuracy or request their integration, deletion, updating, rectification, transformation into anonymous form, or blocking of Personal Data processed in violation of the law, as well as to object in any case, for legitimate reasons, to their processing. Requests should be addressed to the Data Controller. This Platform may not support "do not track" requests, i.e., those that do not allow the User to be traced. To find out whether any third-party services used support them, please consult their privacy policies.
8.8. Changes to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to Users on this page. Therefore, please check this page often, referring to the date of the last modification indicated at the bottom. If you do not accept the changes made to this privacy policy, you must cease using this Application and may request that the Data Controller delete your Personal Data. Unless otherwise specified, the previous privacy policy will continue to apply to Personal Data collected up to that point.
9. COOKIE POLICY
In compliance with Provision no. 229 issued by the Guarantor for the Protection of Personal Data on 8 May 2014, Dental Beauty S.r.l. provides the following information on cookies, their functions, and how to disable them.
COOKIE POLICY
Like many other web pages, the Platform also Dental Beauty uses cookies. In this section, we explain our cookie policy so you can understand what we're talking about.
What is a cookie?
A cookie is a small file that is downloaded to a user's browser for the purpose of storing data that can be retrieved by the entity responsible for its installation. Cookies are essential for the functioning of the Internet and also facilitate navigation.
What is a cookie used for?
Cookies are used to store various types of information. There are many types of cookies, which can be classified by the entity managing them (first-party or third-party cookies), by the length of time they remain active (session or persistent cookies), or by their purpose (technical, personalization, advertising analysis, or behavioral advertising cookies). For example, a cookie is one that allows us to remember a user's session log-in data (if we store data on your computer such as your preferences and settings, these, such as the language, can be automatically restored on your next visit without you having to re-enter them), obtain information about your browsing habits (to improve your experience), or to present you with more relevant advertising based on the information collected.
How can I withdraw my consent and delete cookies?
You can configure your browser to stop accepting cookies or to alert you each time you visit a web page that uses them. Keep in mind that if you withdraw your consent, there are likely to be sections or applications of the website that you will not be able to use.
Types of cookies used by Dental Beauty
– Performance-enhancing cookies
These types of cookies save your preferences for certain services or settings (such as language or currency) so you don't have to reconfigure them each time you visit our website. In some cases, these changes may be made by third parties.
– Statistical analysis cookies
These cookies allow us to count the number of visitors and statistically analyze user usage of our Platform. This data may be processed by us or by third parties, and thanks to this data we can study navigation within our Platform and improve its appearance.
– Geolocation cookies
They are used to geographically locate the location of computers, smartphones or tablets in order to offer the most appropriate content and services based on their location.
– Registration cookies
When you register on our Platform, cookies are generated that identify you as a registered user. They can be used to identify your user profile and associated services and remain saved even if you log out or turn off your computer or device. These cookies can be used by combining analytical data to individually identify your preferences on our portal.
-Advertising cookies
These cookies allow us to effectively manage our Partners' promotional spaces, allowing us to tailor ad content to your use of our website. They can be processed by us or by third parties, and thanks to them, we can learn about your internet browsing habits and show you related ads.
– Other third-party cookies
Dental Beauty It may also install Partner cookies that allow it to manage and improve the services they offer.
Dental Beauty S.r.l. Through its IT platform at www.dentalbeauty.it, it may use the above-mentioned types of cookies for communications for commercial profiling and direct marketing purposes. This will only occur with the data subject's consent to online profiling (this consent is optional and is requested, along with other consents, when the user registers on the Platform). If a user requests the deletion of cookies via their browser, our cookies will actually be removed (this is not one of those cookies that resist deletion requests made via the browser). Therefore, we recommend that all data subjects who do not wish to use our cookies delete them by simply going to their browser's privacy settings and selecting the "delete cookies" option. The use of other persistent cookies and session cookies (which are not stored permanently on the user's computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable safe and efficient browsing of the website. The cookies used on this site avoid the use of other IT techniques that could potentially compromise the privacy of users' browsing experience and do not allow the acquisition of personal data identifying the User. Dental Beauty S.r.l., for its own statistical purposes, may use the Google Analytics service, a web analysis service provided by Google, Inc. (“Google”). Google Analytics uses cookies, which are text files that are stored on your computer to allow Dental Beauty S.r.l. to analyze how users use the Platform. The information generated by the cookies about your use of the Platform (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information to track and evaluate access to the Platform and provide other services relating to internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf.