Datatex | Privacy Policy
1. Data Controller
The Data Controller of your Personal Data is Datatex Consulting S.r.l., responsible for the lawful and correct use of your Personal Data, and whom you may contact for any information or request using the following details:
Data Controller: Datatex Consulting S.r.l.
Registered Office: Viale Sarca 235, 20126 Milan – Italy
Contact details:
- Telephone: (+39) 026797441
- Email: [email protected]
- Certified Email (PEC): [email protected]
You may also contact the Data Controller for information and requests regarding your data, or to report any issues or malfunctions.
2. Types of Data Collected, Purposes, and Legal Basis
The Personal Data processed are collected either directly from the User/Data Subject or automatically through the website.
Data provided directly by the User/Data Subject:
Purpose | Data Processed | Legal Basis |
---|---|---|
A. Purposes strictly related to the execution of pre-contractual measures and to respond to specific requests by the User/Data Subject, including access to the reserved area for requesting consultancy and receiving related services. | “Book a Consultation” form: First Name, Last Name, Company, Country, Phone, Website, Email.
“Contact Us” form: First Name, Last Name, Company, Country, Phone, Email. “Download” form: First Name, Last Name, Company, Country, Email. “Register for the webinar” form: First Name, Last Name, Company, Country, Email. “Subscribe to our newsletter” form: Email. |
Contract to which the Data Subject is party and/or execution of pre-contractual measures at the request of the Data Subject. |
B. Exercise of the Controller’s rights, such as the right to legal defense. | Same as above. | Legitimate interest. |
C. Direct marketing and market research purposes, including sending newsletters and promotional/informative material. | Same as above. | Consent. |
D. Personnel recruitment. | “Join us” form: First Name, Last Name, Date of Birth, Phone, Email, Nationality, Address, Preferred Work Location, Selected Job Offer, CV. | Legitimate interest. |
The User/Data Subject assumes responsibility for Personal Data of third parties obtained, published, or shared through this Application, and guarantees the right to disclose or disseminate such data, thereby releasing the Controller from any liability toward third parties.
Data automatically collected through the website:
Automatically collected data include information gathered through the website https://datatex.com/ (including third-party applications integrated into this Application), such as: IP addresses or domain names of the computers used by the User/Data Subject connecting to the site; URI (Uniform Resource Identifier) addresses; the time of the request; the method used to submit the request to the server; the size of the response file; the numerical code indicating the status of the server’s response (success, error, etc.); the country of origin; the browser and operating system used by the visitor; the duration of the visit per page; the navigation path within the Application, especially the sequence of pages visited; and parameters relating to the operating system and IT environment of the User/Data Subject. Full details on the types of data collected are available in the site’s Cookie Policy.
These data are processed solely for the purposes described below: to enable the site to function properly, display content from external platforms, analyze statistics, optimize and distribute traffic, and for any additional purposes described in this document and in the Cookie Policy.
3. Mandatory or Optional Nature of Data Provision and Consequences of Refusal
The provision of data for the purposes set out in points A and B is optional but necessary for the performance of the contract.
The provision of data for the purposes set out in point C is optional and subject to your consent. Without such consent, your data will not be processed for the purposes described under that point.
Unless otherwise specified, all data requested while browsing the site are mandatory. Failure to provide them may result in the Application being unable to provide the requested Service. Where this Application specifically indicates that some data are optional, Users are free to refrain from providing them, without affecting the availability or functionality of the Service.
If Users are unsure which data are mandatory, they are encouraged to contact the Data Controller.
4. Methods of Processing
The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, alteration, or destruction of Personal Data.
Processing is carried out using IT and/or telematic tools, following organizational procedures and logic strictly related to the purposes indicated.
5. Recipients
Your data may be shared, in addition to with the personnel authorized to process them, with the following subjects, who may be designated, if necessary, as Data Processors by the Controller:
- Consultants and companies providing IT and infrastructure support to the Company;
- Other companies, professionals, and agents working with the Company in the provision of services.
An up-to-date list of Data Processors is available upon request to the Data Controller. Your data will not be subject to further dissemination.
6. Location of Processing
Data are processed at the Controller’s operating offices and any other location where the parties involved in the processing are located.
Data provided directly by the User/Data Subject and collected automatically may be transferred to a country other than the one in which the User/Data Subject is located, including outside the European Economic Area. In such cases, Datatex Consulting S.r.l. ensures that the processing of your Personal Data by these recipients complies with Regulation (EU) 2016/679, in accordance with Article 45 (adequacy decisions by the European Commission), or, where such decisions are lacking, in compliance with Article 46 (appropriate safeguards), or Article 49(1)(b) – transfers necessary for the performance of a contract between the data subject and the controller or for pre-contractual measures taken at the data subject’s request.
Further details regarding data transfer are available in the Cookie Policy or upon request from the Data Controller.
7. Data Retention Period
Data provided directly by the User/Data Subject
Personal Data collected to respond to specific requests and/or for the execution of pre-contractual negotiations will be processed and retained for the time necessary to achieve the purposes described above and in any case no longer than 5 years from collection.
Registration data required to create and use the reserved area account will be retained until the User/Data Subject requests deletion.
Personal Data collected for purposes based on the Controller’s legitimate interest will be retained until such interest is fulfilled. In the event of ongoing legal proceedings, data will be further processed until final resolution. The Controller may also be required to retain data for a longer period to comply with legal obligations or orders from public authorities.
Upon expiry of the retention period, Personal Data will be deleted. Therefore, after that time, the rights of access, erasure, rectification, and data portability can no longer be exercised.
Data collected automatically through the website
Automatically collected data will be retained for the period specified in the Cookie Policy.
Upon expiry of the retention period, Personal Data will be deleted. Therefore, after that time, the rights of access, erasure, rectification, and data portability can no longer be exercised.
8. Rights of the Data Subject
Pursuant to Articles 15 to 22 of the GDPR, each User/Data Subject has the right to obtain confirmation as to whether or not Personal Data concerning them are being processed, even if not yet recorded, and to receive such data in an intelligible form.
In particular, the Data Subject has the right to obtain from the Data Controller information on:
- the origin of the Personal Data;
- the purposes and methods of processing;
- the logic applied in case of processing carried out with electronic tools;
- the identification details of the Controller, Processors, and designated Representatives;
- the subjects or categories of subjects to whom the data may be communicated or who may become aware of them as designated representatives, processors, or authorized personnel.
Additionally, the Data Subject has the right to obtain from the Data Controller:
- the updating, rectification, or, where interested, integration of the data;
- the erasure, anonymization, or blocking of data processed unlawfully;
- access to their data, i.e., confirmation of whether Personal Data concerning them are being processed;
- restriction of processing;
- data portability, i.e., the right to receive their Personal Data in a structured, commonly used, and machine-readable format;
- the right to lodge a complaint with the supervisory authority.
Finally, the Data Subject has the right to object, in whole or in part, on legitimate grounds, to the processing of Personal Data concerning them, even if relevant to the purpose of collection. In particular, they have the right to object to the processing of their Personal Data for the purpose of sending advertising or direct sales materials or for carrying out market research or commercial communication.
These rights may be exercised by contacting us using the contact details provided under section 1 of this Privacy Notice.