Privacy Policy

Privacy Policy cferlabs.co Privacy Policy

This Application collects some Personal Data from Users.

Owner and Data Controller

CFER

Owner's contact e-mail: info@cferlabs.co

Types of Data collected

Among the types of Personal Data that this Application collects, by itself or through third parties, there are: name, surname, telephone number, e-mail address, field of activity, Cookie, Usage Data and profession.

Full details of each type of Personal Data collected are provided in the dedicated sections of this privacy policy or by specific explanatory texts displayed prior to the collection of Data.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically when using this Application.

Unless otherwise specified, all Data requested by this Application is mandatory and failure to provide this Data may make it impossible for this Application to provide its Services. In cases where this Application specifically states that some Data is not mandatory, Users are free to stop communicating this Data without any consequences for the availability or functioning of the Service.

Users who have doubts about which Personal Data is mandatory are invited to contact the Owner. Any use of cookies - or other tracking tools - by this Application or by the owners of third-party services used by this Application will be for the purpose of providing the Services requested by the User, in addition to the other purposes described in this document and in the Cookies Policy, if available.

Users are responsible for any Personal Data of third parties that is obtained, published or shared through this Service (this Application) and confirm that they have the authorization of the third parties to provide the Data to the Owner.

How and where the Data is processed

Method of processing

The Owner will take appropriate security measures to prevent unauthorized access, disclosure, alteration or unauthorized destruction of the Data.

Data processing is carried out using computers and/or IT-enabled tools, following organizational procedures and means strictly related to the purposes indicated. In addition to the Owner, in some cases, the Data may be accessed by certain types of persons in charge, involved with the operation of this Service (this Application) (administration, sales, marketing, legal administration of the system) or external persons (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communication agencies) appointed, where necessary, as Data Processors by the Owner. The updated list of these parties can be requested from the Owner at any time.

Legal basis for processing

The Owner may process Personal Data relating to the User if one of the following applies:

  • Users have given their consent for one or more specific purposes; Note: According to some legislations the Owner may be allowed to process Personal Data UNTIL the User objects to this ("opt-out"), without having to rely on consent or any of the following other legal bases. However, this does not apply where the processing of Personal Data is subject to European data protection legislation;
  • the provision of the Data is necessary for the fulfillment of a contract with the User and/or any pre- contractual obligations thereof;
  • the processing is necessary for compliance with a legal obligation to which the Owner is subject;
  • the processing is related to a task carried out in the public interest or in the exercise of official authority vested in the Owner;
  • the processing is necessary for the purposes of legitimate interests pursued by the Owner or by a third party;

In any case, the Owner will willingly cooperate to clarify which legal basis applies to the processing, and in particular if the provision of Data is a mandatory requirement by law or contract, or a necessary requirement to enter into a contract.

Location

Data is processed at the headquarters of the Owners, and at any other places where the parties involved in the processing are located.

Depending on the User's location, data transfers may involve the transfer of User Data to a country other than your own. To find out more about the place of processing of such transferred Data, Users can check the section containing details on the processing of Personal Data.

Users also have the right to be informed about the legal basis of Data transfers to countries outside the European Union or to any international organizations governed by public international law or formed by two or more countries, such as the UN, and about the security measures taken by the Owner to protect your Data.

If any such transfers occur, Users can find out more by checking the relevant sections of this document or asking the Owner using the information provided in the contact section.

Retention period

Personal Data will be processed and stored for as long as necessary for the purposes for which it was collected.

Therefore:

  • Personal Data collected for purposes related to the performance of a contract between the Owner and the User will be kept until such contract has been completely fulfilled.
  • Personal Data collected for purposes related to the Owner's legitimate interests will be kept for as long as necessary to fulfill such purposes. Users may obtain specific information about the legitimate interests pursued by the Owner within the relevant sections of this document or by contacting the Owner.

The Owner may be permitted to retain Personal Data for a longer period whenever the User has given his/her authorization for such processing, as long as such authorization has not been withdrawn. Furthermore, the Owner may be obliged to retain Personal Data for a longer period of time whenever required to do so to comply with a legal obligation or in compliance with a warrant from an authority.

Once the retention period expires, Personal Data will be deleted. Therefore, the right to access, the right to delete, the right to correct and the right to data portability cannot be required to be fulfilled after the retention period has expired.

The purposes of processing

Data relating to the User is collected to allow the Owner to provide its Services, as well as for the following purposes: Contacting the User and Statistics.

Users may obtain additional detailed information about such processing purposes and about the specific Personal Data used for each purpose in the respective sections of this document.

Detailed information about the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

  • Contact the User
  • Statistics

Users' rights

Users may exercise certain rights with respect to their Data processed by the Owner.

In particular, Users have the rights to do the following:

  • Withdraw your consent at any time. Users have the right to withdraw their consent in cases where they have previously given their consent to the processing of their Personal Data.
  • Object to the processing of your Data. Users have the right to object to the processing of their Data if the processing is carried out on a legal basis other than consent. Additional details are provided in the specific section below.
  • Access your Data. Users have the right to know whether their Data is being processed by the Owner, obtain disclosures about certain aspects of the processing and obtain a copy of the Data being processed.
  • Check and request rectification. Users have the right to verify the accuracy of their Data and request that it be updated or corrected.
  • Restrict the processing of your Data. Users have the right, under certain circumstances, to restrict the processing of their Data for any purpose other than storing it.
  • Have your Personal Data erased or otherwise removed. Users have the right, under certain circumstances, to obtain the deletion of their Owner Data.
  • Receive your Data and have it transferred to another controller. Users have the right to receive their Data in a structured format, commonly used and capable of being read by machines and, if technically feasible, to have them transmitted to another controller without any hindrance. This determination applies subject to the Data being processed by automated means and that the processing is based on the User's consent, on a contract to which the User is a party or on pre-contractual obligations thereof.
  • File a complaint. Users have the right to lodge a complaint with their competent data protection authority.

Details about the object right to processing

In cases where Personal Data is processed for a public interest, without exercising an official authorization in which the Owner is vested or specifically for the legitimate interests pursued by the Owner, Users may object to such processing by providing a reason related to your particular situation to justify the objection.

Users should know, however, that if their Personal Data is processed for specific direct marketing purposes, they may object to such processing at any time without providing any justification. Users can consult the respective leaflets of this document.

How to exercise these rights

Any requests to exercise Users' rights may be directed to the Owner through the contact details provided in this document. These requests can be exercised at no cost and will be responded to by the Owner as quickly as possible and in all cases within a period of less than one month.

Additional information about Data collection and processing

Legal action

Users' Personal Data may be used for legal purposes by the Owner in trial or in the stages leading to
possible legal action arising from misuse of this Service (this Application) or related Services.

The User declares to be aware that the Owner may be obliged to reveal Personal Data upon request from
government authorities.

Additional information about User Personal Data

In addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information about specific services or the collection and processing of Personal Data upon request.

System logs and maintenance

For operation and maintenance purposes, this Application and any third-party services may collect files that record interaction with this Application (system logs) or use other Personal Data (such as IP address) for this purpose.

Information not contained in this policy

More details about the collection or processing of Personal Data may be requested from the Owner at any time. Please see the contact information at the top of this document.

How “Do Not Track Me” requests are handled

This Application does not support “Do Not Track Me” requests.

To determine whether any of the third-party services you use honor “Do Not Track Me” requests, please read their privacy policies.

Changes to this privacy policy

The Owner reserves the right to make changes to this privacy policy at any time by communicating to its Users on this page and possibly within this Service this Application and/or – to the extent technically and legally feasible – sending a notice to the Users through any contact information available to the Owner. It is highly recommended that this page be consulted several times in relation to the last modification described at the bottom.

If the changes affect the processing activities carried out based on the User's consent, the Owner will collect new consent from the User, where required.

Definitions and legal references

Personal Data (or Data)

Any information that directly, indirectly or in connection with other information – including a personal identification number – allows the identification or identifiability of a natural person.

Usage Data

The information collected automatically through this Application (or third-party services contracted in this Service (this Application)), which may include: IP addresses or domain names of computers used by Users using this Application, URI (Uniform Identifier Resource), the date and time of the request, the method used to send the request to the server, the size of the file received in response, the numeric code indicating the status of the responding server (positive result, error, etc.), the country of origin, the characteristics of the browser and operating system used by the User, the various time details per visit (for example, the time spent on each page within the application) and details about the path followed within the application, with special reference to the sequence of pages visited and other parameters about the User's device operating system and/or IT environment.

User

The person using this Application who, unless otherwise specified, coincides with the Data Subject.

Data Holder

The natural person to whom the Personal Data refers.

Data Processor (or Data supervisor)

The natural or legal person, public administration, agency or other body that processes Personal Data on behalf of the Controller as described in this privacy policy.

Data Controller (or Owner)

The natural or legal person, public administration, agency or other body that, alone or jointly with others, determines the purposes and means of processing Personal Data, including security measures relating to the operation and use of this Service (this Application). The Data Controller, unless otherwise specified, is the Owner of this Service (this Application).

This Application

The medium through which the User's Personal Data is collected and processed.

Service

The service provided by this Application as described in the relative terms (if available) and on this website/application.

European Union (or EU)

Unless otherwise specified, all references in this document to the European Union include all current member states of the European Union and the European Economic Area.

Cookie

Small units of data stored on the User's device.


Legal information

This privacy statement was prepared based on the provisions of multiple laws, including Arts. 13/14 of
Regulation (EU) 2016/679 (GDPR – General Data Protection Regulation).

This privacy policy refers only to this Application, if not otherwise stated in this document.

Last updated: October 30, 2018