Information on the processing of personal data pursuant to Article 13 of EU Regulation 679/2016 (GDPR)
1. DATA CONTROLLER
Reflex Token S.R.L., with registered office in Cosenza in via E. De Nicola n. 42, C.F/P.IVA: 03767240785, e-mail address: [email protected], as Data Controller, undertakes to protect Personal Data.
The aforementioned regulatory provisions regulate the confidentiality of personal data and impose a series of obligations on those who process information referring to other subjects. Among the obligations to be respected is that of adequately informing the natural person to whom the data refer (Data Subject) about the use that is made of the related data, so that consent to the processing of the same is freely expressed and unequivocal.
In order to identify the interested recipient of this information, we define as a Customer the natural person who registers with the MetaReflex app to access the services as a user, payer or purchaser of the services rendered by the Operator.
All information and data provided to reflex Token S.R.L. ("Data Controller") by Customers as part of the activation of the Services (as better defined in the "Conditions and Terms of Contract" area) and in particular when creating the account, will be processed by the Data Controller according to the principles of correctness, lawfulness, transparency and protection of the privacy and rights of the interested party.
2. TYPES OF DATA SUBJECT TO PROCESSING
Through the Services offered on Metareflex, Reflex Token S.R.L. collects and processes information relating to the Customer. Informationthat makes the Customer identified or identifiable is classified as "Personal Data". They are distinguished:
· Personal Data that may be processed by through the Services provided. These data are: name, surname, tax code, mobile phone number, e-mail address, bank details
· Navigation and use data of the Application (e.g. pages visited, actions performed, duration of sessions, etc.). The software procedures used to operate this site acquire some personal data during normal operation that are implicitly transmitted in the use of internet communication protocols; these are data that by their nature, being related to electronic traffic, are not immediately associated with identified interested parties, but could allow, through processing through associations with data held by third parties, to identify users of the site (eg IP addresses)
· Data provided voluntarily by users. Thesedata are kept for the period strictly necessary and in any case in compliance with the current regulatory provisions on the subjectof
· Geolocation data that accurately identifies the person's location (e.g. exact geographic coordinates from a GPS)
· Tax and payment data (e.g. tax code, VAT number, bank account details, etc.)
ü Session cookies: on this site will be used technical session "cookies" that will allow faster access to the site. The User can always request the deactivation of cookies by changing the browser settings, this deactivation, however, may slow down or prevent access to some parts of the site.
ü Profiling cookies (if any): profiling cookies will be used on this site used to track the user's web browsing and create profiles on his tastes, habits, choices, etc. With these cookies, advertising messages can be transmitted to the user's terminal in line with the preferences already expressed by the same user in online browsing.
3. PURPOSE OF THE PROCESSING
The Personal Data described above will be processed for the following purposes:
4. LEGAL BASIS AND OPTIONAL PROCESSING
The legal bases used by the Data Controller to process your Personal Data, according to the purposes indicated in Paragraph 3 above, are as follows:
5. RECIPIENTS AND TRANSFER OF PERSONAL DATA
Personal Data may be shared with:
6. PROCESSING METHODS
The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data.
The processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.
7. TRANSFER OF PERSONAL DATA
Some Personal Data of Customers are shared with Recipients who may be located outside the European Economic Area such as Payment Infrastructures and Cloud Service Providers.
Reflex Token S.R.L. ensures that the processing of users' Personal Data by these Recipients takes place in compliance with applicable legislation. Indeed, transfers are made through appropriate safeguards, such as adequacy decisions, standard contractual clauses approved by the European Commission or other legal instruments.
8. RETENTION OF PERSONAL DATA
With reference to the purposes of Provision of Services related to the use of the metareflex app, they will be kept for the entire time of use of the entertainment and gaming services and until the account is voluntarily closed by the user or the company for the cases provided for in paragraph 17 of the General Terms and Conditions of Use. For the purposes of Consulting and Sending Newsletters, as identified in point 4, Personal Data are kept until consent is revoked.
With particular reference to the judicial protection of our rights or in case of requests from the authority, the processed data will be kept for the time necessary to process the request or to pursue the protection of one's right.
9. THE RIGHTS EXERCISABLE BY THE CUSTOMER
Under the conditions of the GDPR, you have the right to ask us:
Right to object: in addition to the rights listed above, you always have the right to object at any time to the processing of your data carried out by the Data Controller for the pursuit of its legitimate interest. Furthermore, you can always object at any time if the Data are processed for Marketing purposes.
The exercise of these rights, which can be done through the contact details indicated in Paragraph 1, is free of charge and is not subject to formal constraints. In the event that you exercise any of the aforementioned rights, it will be the responsibility of the Company to verify that you are entitled to exercise it and to give you feedback, as a rule, within one month.
If you believe that the processing of Personal Data referred to you is in violation of the provisions of the GDPR, you have the right to lodge a complaint with the Guarantor for the protection of personal data, using the references available on the website www.garanteprivacy.it, or to take the appropriate judicial offices.
This information may be supplemented with further indications, also in consideration of regulatory changes or provisions of the European Commission and the Privacy Guarantor. Reflex Token S.R.L. therefore invites customers to pay attention to the latest version of the information shown through these channels in order to be always updated on the data collected and on the use made of it by Reflex Token S.R.L.