PRIVACY POLICY
Who is the Data Controller?
BRANDLOVERS di Anna Maria Bianchi, in person of the pro tempore legal representative, with registered office in Milan, via Dante 7, VAT no. 02952510341
How can I contact him?
The Company’s contact details are:
Email: hello@brandlovers.it
Address: via Dante 7, Milan, ITALY
1. Introduction
According to the European Regulation on the Protection of Personal Data (GDPR), legal persons are not considered data subjects and therefore the European regulation does not apply. However, if, in the context of the collection of company data, personal data relating to a natural person are inserted, this person will be considered data subject under the above-mentioned regulation with consequent applicability of the reference legislation.
2. What are the data processing that are carried out through the site? And what are the legal basis, the purposes and the retention times?
|
CONTACT US |
PURPOSE |
The purpose of data processing is to allow you to send us requests for information and proposals for collaboration and to be contacted. |
|
LEGAL BASIS |
The implementation of pre-contractual measures carried out at the request of the interested party. In case of litigation, the data will be processed to act or defend themselves in court and this corresponds to the legitimate interest of the data controller. |
|
|
TIME OF STORAGE OF DATA |
We will process the data for the time necessary to respond to requests and then for 12 months. They may be required longer only in case of possible disputes and therefore to exercise or defend a right based on the legitimate interest of the data controller. The verification of the obsolescence of the data is made every 12 months. |
|
|
OTHER INFORMATION |
The provision of data is optional but in case of refusal it will not be possible to proceed with the submission of the form. |
|
SIGN UP NOW |
PURPOSE |
The purpose of data processing is to allow you to register on the platform to use the services offered. |
|
LEGAL BASIS |
In case of litigation the data will be processed to act or defend themselves in court and this corresponds to the legitimate interest of the data controller. |
|
|
TIME OF STORAGE OF DATA |
We will process your data until you withdraw your consent or 5 years after the last proposed assignment. Before proceeding to cancellation, we will ask you if you want to remain within the DB, renewing your consent. They may be required longer only in case of possible disputes and therefore to exercise or defend a right based on the legitimate interest of the data controller. |
|
|
OTHER INFORMATION |
The provision of data is optional but in case of refusal it will not be possible to proceed with the submission of the form. |
|
BROWSING DATA |
PURPOSE |
Website security |
|
LEGAL BASIS |
We will process your data based on the company’s legitimate interest in cybersecurity and compliance with legal obligations. The legal basis for the processing of cookies other than those required is consent. |
|
|
TIME OF STORAGE OF DATA |
24 months |
|
|
OTHER INFORMATION |
For the regulation of cookies, please refer to the specific policy. |
3. What else do I need to know?
The data will be processed lawfully, correctly and with the utmost confidentiality, in compliance with the appropriate security measures as provided by the Code and the Regulation. The process will be carried out by digital means. The user will not be subjected to automated decision-making processes such as profiling unless he/she consents to this through the installation of cookies or other tracking tools for which regulation is referred to the appropriate policy.
4. To whom will my data be communicated?
The Data Controller may communicate the data to all subjects to whom the communication is mandatory by law for the fulfillment of the purposes provided by law. In addition, the Data Controller may communicate the data of the Brand Ambassadors to its Customers (exclusively in reference to the categories chosen by the user) for the fulfillment of their contractual obligations. These customers will act as independent controllers and provide a special privacy policy pursuant to Art. 14 GDPR.
The Data Controller also makes use of some companies or computer tools that carry out processing activities on the personal data of data subjects in the exclusive interest of the data controller, all appropriately appointed data processors pursuant to Art. 28 GDPR. The list of data processors can be found at headquarters.
5. Where are my data stored and transferred?
Personal data will be managed and stored on servers located in Europe. The data controller also informs that for the performance of certain activities, he/she uses computer tools that export data outside the EU (Google and Microsoft) and ensures from now on that the transfer of data takes place in accordance with the GDPR through the stipulation of standard contractual clauses.
6. What are my rights and how can I exercise them?
a) Rights of the data subject
The user, as the data subject, has the rights referred to in art. 15 and following of the Regulation and precisely:
|
1. RIGHT OF ACCESS (Art. 15 GDPR) The data subject has the right to obtain confirmation of the existence or otherwise of personal data concerning him, even if not yet recorded, and their communication in an intelligible form. |
|
2. RIGHT OF RECTIFICATION (Art. 16 GDPR) The data subject has the right to obtain the rectification of inaccurate personal data concerning him or her and also the integration of incomplete personal data. |
|
3. RIGHT OF CANCELLATION (Art. 17 GDPR) The data subject has the right to obtain the cancellation of personal data if there are particular reasons such as the withdrawal of consent, opposition to processing or if data are no longer necessary for the purposes for which they were collected and processed or in the event of unlawful processing. It will not always be possible to proceed to cancellation but certainly it will be the responsibility of the data controller to provide adequate justification. |
|
4. RIGHT TO RESTRICTION OF PROCESSING (Art. 18 GDPR) The data subject has the right to obtain the restriction of processing in the presence of particular cases such as, for example, in the case of a request for rectification or opposition during the time of evaluation of requests. |
|
5. RIGHT TO PORTABILITY' (Art. 20 GDPR) If the processing is based on the consent or the contract and is carried out with automated tools, the data subject may receive them in a structured, commonly used and machine-readable format or request to transmit them to another data controller. |
|
6. RIGHT TO OBJECT (Art. 21 GDPR) You have the right to object, in whole or in part: a) for legitimate reasons relating to the processing of personal data concerning them, even if relevant to the purpose of the collection; b) the processing of personal data concerning him for the pursuit of purposes not covered by art. 2. The user can formulate a request for opposition to the processing of his personal data according to article 21 of the GDPR in which he/she can give evidence of the reasons that justify the opposition: the Data Controller reserves the right to evaluate the request, that would not be accepted if there were compelling legitimate grounds for processing that override the interests, rights, and freedoms of the user. |
|
7. RIGHT TO LODGE A COMPLAINT The data subject has the right to lodge a complaint with the competent supervisory authority according to Article 77 of the GDPR if he or she considers that the processing of his or her data is contrary to current legislation. |
b) Mode of operation
The data subject may at any time exercise the rights referred to in the article by contacting the data controller at the addresses listed above.