Last update: May 2016
Data Controller and Data Processor
The Data Controller is AntalyX, with registered office in Via Carlo Foldi 6 – 20135 Milan – Italy. You can contact it using the following address: Via Carlo Foldi 6 – 20135 Milan – Italy
Which personal data we process and when we collect them
For which purposes we process data
We process your personal data primarily for those purposes that are instrumental to supply and manage services via the Website. Such purposes include registration and opening of accounts, the management of making and receiving invitations to web conferences by users. In addition, we process your data to fulfil obligations arising from laws, regulations, community legislation, to exercise your rights before judicial courts. Collected data can also be used to update and correct previously collected information. Giving us your personal data, to allow us to carry out the aforementioned activities, is optional. However, a failure to provide data in some cases will prevent us from implementing our contractual obligations and/or supply you with the services and information required, including the possibility to use web conference functionalities. With your consent, which is free and optional, we will be able to process your data even for other purposes, such as market research and marketing, that is to send you, using different contact methods (which potentially include traditional mail, e-mail, newsletter, fax, text messages such as SMS and MMS), information and promotional material about our products, special initiatives, promotions, events organized by us or in which we take part, including invitations, as the case may be, as well as for data collection purposes about service quality and level of User satisfaction. Giving us data for the aforementioned additional purposes is optional, and a denial will not have any consequence on the supply of required services, information and materials. With specific reference to marketing activities carried out via electronic mail, your consent may not be required if you have already given your electronic mail coordinates during the selling of a similar product or service and not initially denied that use, or in the event of the sending of subsequent communications. In any case, we specify that you can oppose, free of charge, to the receipt of promotional e-mails, both at first – during the registration process – and later, sending a mail to: Via Carlo Foldi 6 – 20135 Milan – Italy . Moreover, you may always choose your favourite contact method (e.g. e-mail, SMS, or other) and oppose to any subsequent sending of promotional materials, even with reference to only one, or more, contact methods. Data will be processed in compliance with the compulsory safeguards and measures required by Personal Data Protection Code and Data Protection Authority, and will be stored for a period of time that complies with Personal Data Protection Code requirements. At the end of this period, data will be automatically deleted or irreversibly anonymised.
How we process data – Data security
We collect and process data with electronic and manual means following procedures and logic related to the aforementioned purposes. AntalyX commits itself to ensure your personal data security and respects the provisions of applicable regulations, in order to avoid data loss, illegal or illicit data use, and unauthorised access to them, with particular reference to what is provided for by Annex B of Personal Data Protection Code (Technical Specifications Concerning Minimum Security Measures). All systems and software are configured in such a way as to reduce to minimum the use of personal data, which are anyways used only when necessary to the pursuit of the specific purposes pursued from time to time. Collected data are safeguarded and filed on servers that adopt protection measures against the risk of intrusion and unauthorised access. AntalyX has also adopted security measures that provide data integrity and availability, as well as protection of areas and places relevant for their retention and accessibility.
- First-party cookies: first-party cookies are set by the website visited by the user, which address appears on the URL window.
- Third-party cookies: third-party cookies are set by a different domain from the one visited by the user. If a user visits AntalyX and a third party company sends the cookie using AntalyX (e.g. Google Analytics cookies), such cookies are third-party cookies.
- Session cookies: such cookies are temporarily memorised and are deleted when the user closes the browsing window.
- Persistent cookies: persistent cookies are memorised on users’ device inside browser sessions, allowing to remember preferences or user’s actions on a website. They can be used for different purposes, for instance to remember preferences and choices made during an earlier use of the website.
- Essential or technical cookies: such cookies are strictly necessary for website functioning. Without their use, some parts of the website would not work. They include, for instance, cookies that allow to access to protected areas of a website. These cookies do not collect information for marketing purposes and cannot be deactivated.
- Functional cookies: such cookies are used to recognise a user that comes back on a website. They allow customizing contents and remembering user’s preferences (e.g. selected language or geographic region). These cookies do not collect information that can identify the user. All the collected information are anonymous.
More specifically, below is a list of cookies used on the Website with their description and features, including their time duration.
To which subjects we can communicate data
Data are accessible only to qualified subjects, such as Data Controller and possible persons in charge of the processing. The up-to-date list of data processors and subjects to whom we communicate data is available upon request to AntalyX. We can communicate data to: authorities; public bodies; professionals; self-employed collaborators, even in associate form; our commercial partners, that is third parties we use for commercial, professional and technical services to manage the Website and pursue the aforementioned purposes; third parties in the event of mergers, takeovers, sale of business or of a line of business or other extraordinary transactions. Such third-party subjects may be located outside the European Union. In this case, data transfer will take place only after the adoption of the measures necessary in accordance with Personal Data Protection Code. Such third-party subjects are supplied only with the information necessary to comply with relevant functions; they commit themselves to use the information received only for the aforementioned processing purposes, to keep them confidential and secure, and to act in accordance with applicable regulations. In addition, we communicate personal data to legitimate addressees pursuant to laws or regulations. Except as provided above, your personal data will not be shared with third parties which do not conduct any commercial, professional or technical function for AntalyX. Third-party subjects will process the data received as data controllers, data processors or persons in charge of the processing, as the case may be, for the aforementioned purposes and in accordance with Personal Data Protection Code. Your data shall not be diffused in any case. To use Google Analytics service, we can transfer some of your data to Google Inc., with registered office in the United States, a country that, as for Personal Data Protection Code, do not grant an adequate level of protection of personal data. However, this data transfer towards the United States is permitted by Personal Data Protection Code, because Google Inc. joined the Safe Harbor Program (the so-called Safe Harbor privacy principles). More information about Google Analytics privacy at: https://www.google.com/intl/it_ALL/analytics/learn/privacy.html
Your privacy rights in accordance with Art. 7 of Personal Data Protection Code