surely you have heard of the new EU Regulation on data protection (2016/679, better known as GDPR). In compliance with articles 13 and 14 of this legislation (also referred to the national one in force), below we provide you with the information necessary to understand how the data you provide through the use of our APP is processed. We invite you to read the document as if you were the one asking the questions shown in the following paragraphs and we will provide you with the related answers: if you have any further doubts, do not hesitate to contact us, we are here for you. You are the Data Subject to be protected, and we want to show you our transparency in doing so. Let’s start?
Pursuant to the art. 4, n. 7) 2016/679 EU Regulation, the Data Controller is Wyblo, with registered office in Via Salvo d’Acquisto 6, Borgo San Dalmazzo, 12011, Italy, and it could be contacted at the e-mail address firstname.lastname@example.org or by phone +39 3408855648 (hereinafter “Wyblo” and/or the “Data Controller”). Pursuant to the present policy, Data Subject means every User that registers a profile on the APP, has access, interacts and uses the products and/or services in the APP.
On the Wyblo APP, Wyblo process Data Subject’s data; in particular, when the User signs up, they provide:
The processing of data provided by the Data Subject will be performed by Wyblo for the following purposes:
a. Contractual Purposes:
b. Legitimate interest Purpose:
c. Marketing purposes:
The Data Controller can process the data provided by the Data Subject with the use of Wyblo APP because, in compliance with the conditions of lawfulness referred to the art. 6 of 2016/679 EU Regulation:
The processing of data for Contractual Purposes is mandatory: if the Data Subject does not provide such data, the Data Controller does not guarantee the correct provision of the services offered by Wyblo APP.
The processing of data for Legitimate Interest purposes is not mandatory and the Data Subject may object by contacting the Data Controller directly: if the Data Subject opposes said processing, his data cannot be used for Legitimate Interest purposes, except that the Data Controller demonstrates the presence of prevailing binding legitimate reasons or the exercise or defence of a right pursuant to Article 21 of the 2016/679 EU Regulation.
The processing of the data is carried out by Wyblo with the operations indicated in art. 4 no. 2) of the 2016/679 EU Regulation and precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. The data can be processed with manual or IT tools, suitable to guarantee its security, confidentiality and to avoid unauthorized access. The data storage is carried out with cloud computing tools on servers located within the territory of the EU (Sweeden): for more information on the safety, compliance and compliance standards required by the GDPR adopted by the chosen external providers, consult the web page https://aws.amazon.com/it/privacy/. You can also consult the following document explaining the compliance to GDPR of AWS: https://d1.awsstatic.com/whitepapers/compliance/GDPR_Compliance_on_AWS.pdf
Data may be disclosed for Contractual Purposes to subjects that perform services connected and functional to the management of the relationship in place or to be entered into with the Data Subject and, in particular, to the following categories of subjects located within the European Union and, within the limits set out in paragraph 7 of this statement, outside the European Union:
The Data Subject, pursuant to the Articles from 15 to 22 of the 2016/679 EU Regulation, has the right to:
Data processed by Data Controller: