INFORMATIVE APP LUCAH
Dear Interested,
we wish to inform you that the "European Regulation 2016/679 concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data" (from now on "GDPR") provides for the protection of individuals with regard to processing of personal data as a fundamental right. Therefore, EVIDILYA S.R.L., pursuant to article 13 of the GDPR, provides you with the following information:
- DATA CATEGORIES: the object of the processing may be your personal data such as:
- id entification data: personal identification data provided by the user during registration (eg. Login credentials), as well as data that the user decides, in a completely autonomous way, to also provide at a later time;
- biometric data: (face-id and touch-id) data collected for access via biometric authentication. These data, however, are recorded by the device used and are not stored by Evidilya S.r.l .;
- technical communication data: data that the mobile device (eg mobile phone) on which the app is installed transmits automatically, and which are necessary for the use of the service connected to the app, such as device name, operating system, the version of the app, various identification numbers to be able to uniquely assign the device, the IP address of your device, the language chosen for the app and the monitoring of any crashes.
-
DATA CONTROLLER:
the data controller is EVIDILYA S.R.L., Via Brisa, 3 -20123 Milan (MI), VAT number 06957380964, who can be contacted by phone at 02.49530065 or at the email address privacy@evidilya.com -
SOURCE OF PERSONAL DATA:
the personal data held by the Data Controller are collected directly from the data subject. -
PURPOSE OF DATA PROCESSING AND LEGAL BASIS
the processing of your data has as its legal basis the execution of the contract for the use of the App (Article 6, letter B) GDPR for the creation, activation and management of the account personal and to allow you to take advantage of the features offered by the app in the manner expressly and specifically indicated in the terms of use adhered to by the user.
It also has as its legal basis the legitimate interest of the Data Controller (Article 6, letter F) GDPR) for the use of data to set the language of the app, to check the correct functioning of the app and to improve the browsing experience.
Finally, the processing of your data has as its legal basis your consent (Article 6, letter A) of the GDPR) for the use of biometric technology (face-id and touch-id) in order to access the app. Consent to the processing of biometric data will be requested upon installation of the app. -
DATA RECIPIENTS:
your data may be disclosed to partners, consultancy companies, private companies for the implementation of the service or to public authorities in accordance with the law. Your data will not be disseminated in any way. -
TRANSFER OF DATA TO THIRD COUNTRIES:
the transfer of your data to a non-European third country is not envisaged. -
PERIOD OF CONSERVATION:
the data collected will be kept for a period of time not exceeding the achievement of the purposes for which they are processed ("conservation limitation principle", Article 5, GDPR) or on the basis of the deadlines set by the regulations of law. The verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically. -
RIGHTS OF THE INTERESTED PARTY:
the interested party always has the right to request from the Data Controller access to your data, the correction or cancellation of the same, the limitation of the processing or the possibility of requesting the portability of the data, asserting these and the other rights provided for by the GDPR by simply communicating to the Data Controller. The interested party can also lodge a complaint with a supervisory authority -
COMPULSORY OR NON-COMPULSORY PROVISION:
the provision of data is necessary in order to use the app features. The provision of your data is, however, optional for the purpose of biometric authentication based on consent. -
DATA PROCESSING METHOD:
the personal data you provide will be the subject of processing operations in compliance with the aforementioned legislation and the confidentiality obligations which inspire the activity of the Data Controller. The data will be processed both with IT tools and on paper and on any other type of suitable support, in compliance with the appropriate security measures pursuant to the GDPR. -
CONTACT DETAILS OF THE D.P.O:
he owner has appointed the D.P.O. can be contacted by email at dpo@evidilya.com -
AUTOMATED DECISION-MAKING PROCESSES:
there are no automated decision-making processes.