Doc. INF-SGDP.04.IT – Rev. 1 – 22/06/2021

 

Privacy Policy https://olafswantee.com

 

(hereinafter referred to as “Site” or “Website”)

This information is issued pursuant to artt. 12, 13 and 14 of EU Regulation 2016/679 GDPR.

The following conditions apply only to the website, whose domains or properties are registered or traceable to the Publisher Swantee-Invest GmbH. In particular: olafswantee.com

 

Introduction

 

We want this Policy to be clear and easy to understand. If you have questions about any of the content, or how we treat your personal data, please contact us at: hello@olafswantee.com.

 

1. Definitions:

«archive»: Organized collection of the entire amount of personal data, available with specific requirements.

 

«supervisory authority»: an independent public authority.

 

«consent»: any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

 

«particular data»: genetic data, biometric data, data concerning health (art. 9 GDPR);

 

«personal data»: any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person; (art. 9 GDPR);

 

«recipient»: a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. 2However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;

 

«GDPR» or «Regulation»: General Data Protection Regulation UE 2016/679;

 

«interested party»: a natural person identified or identifiable through personal data;

 

«profiling»: any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements;

 

«pseudonymisation»: the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person;

 

«processor»: a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;

 

«third party»: a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;

 

«controller»: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

 

«processing»: any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction; (art. 4.2  GDPR);

 

«personal data breach»: a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

 

2. Who is this document for?

This information (hereafter “Policy”), provided pursuant to artt. 13 and 14 of the Regulation (EU) 27 April 2016 n. 679 (so-called “GDPR”), aims to illustrate how Swantee-Invest GmbH (hereafter also “Company” or simply “Swantee-Invest”), processes the personal data collected from the user, explaining how the applications and the services offered through this website work.

 

3. How can you contact us?

Swantee-Invest GmbH as Publisher and Data Controller is responsible towards the user for any questions, doubts or complaints regarding this Policy or the processing of personal data.

If you need any clarification regarding the processing of your personal data, please contact us as follows:

Swantee-Invest GmbH

Registered office: Wiesenstrasse 7, 8008 Zurich, Switzerland
Company ID CHE-253.727.503

Headquarters:

Wiesenstrasse 7, 8008 Zurich, Switzerland

Contact details:        

E-mail: hello@olafswantee.com

Web: olafswantee.com

4. When can we process your data?

You should know that processing your personal data is lawfully permitted only if there is a valid legal basis in relation to GDPR. The actions described in this policy take place for several different reasons:

Consent - art. 6.1 letter a) of the GDPR You have given your consent to the processing of your personal data for specific purposes.

Contract - art. 6.1 letter b) of the GDPR Processing is necessary for the execution of a contract in which you are involved as a party or for the execution of pre-contractual measures adopted at your request.

Legal obligation - art. 6.1 letter c) of the GDPR Processing is necessary to fulfill a legal obligation towards you or towards your company.

Legitimate interest - art. 6.1 letter f) of the GDPR Processing is necessary for pursuing a legitimate interest by our company or by third parties, provided that your interests, rights or fundamental freedoms do not prevail.

The purpose of processing your data depends on the specific situation or activity:

 

1.      Navigation

Overview of data processing: When you visit our website, you automatically provide us with the following data: the IP address, access data, browser type and version, browser plug-in types and versions, operating system and platform. In addition, as you browse our site, we may collect data relating to your visit, including the Clickstream URL through and from our website, items viewed or searched for, display and download errors, times and duration of visits to certain pages, and any interaction with a page. We can automatically collect this data through the use of various technologies, including cookies (see section 8: Cookies and other technologies).

Acquisition method: your data are automatically conferred by your systems in the Internet network protocol (TCP / IP)

Legal basis: we process these data due to our legitimate interest - art. 6.1 lett. f) of the GDPR - to improve the experience of using our Site, and to offer secure web services.

Data storage: we store your personal data while you to browse the Site. Some data are kept for the duration of your stay on the Site and others until you decide to delete them by deleting technical and functional cookies. For more information on how we manage cookies, see our Cookie Policy;

2. Using our services

Overview of data processing: As a user you can provide us with your personal data, including those that permit your identification (particular data) when you decide to use the services we offer on our website, for example when you fill out our contact form.

Acquisition method: data are voluntarily provided by you when filling out our contact form. If you decline to supply these, it will be impossible for us to provide the requested service.

Legal basis: The processing is necessary for the execution of a contract to which you are a party or for the execution of pre-contractual measures adopted at your request - art. - 6.1 lett. b) of the GDPR.

Data storage: We store your personal data only for the time required to provide you with the service you have activated or requested.

3. Communications

Overview of data processing: We collect your personal data when you communicate with us through our website, by email, by telephone or by any other means.

Acquisition method: The data are automatically provided in the communication protocol used, by both yourself and the means you have chosen.

Legal basis: We mainly process these data due to our legitimate interest - art. 6.1 lett. f) of the GDPR - to answer your requests and manage the necessary communications to do so. In addition to this, in some cases we may be required to respond due to specific legal obligations - arts. 6.1 lett. b) and lett. c) of the GDPR.

Data storage: Following any requests for contact or support that you send us, your personal data are processed only for the time necessary to provide you with the information and/or assistance you need.

4. Website administration and maintainance

We process your data as part of the maintenance of our Website, to ensure it is functioning correctly, including troubleshooting. We also process the data collected on our Site to maintain, manage and administer our IT systems and services properly, and through our security systems (e.g. Antivirus and Firewall).

Acquisition method: The data are acquired automatically through the communication protocols and your activities on the pages of the Site.

Legal basis: We process data due to our legitimate interest in maintaining the Site and ICT systems, and guaranteeing their availability, integrity and confidentiality. - art. - 6.1 lett. f) of the GDPR.

Data storage: We store your personal data only for the time necessary to achieve the purposes described above.

5. Legal obligations

We might process your data in response to requests from the police or judicial authorities that we are legally required to satisfy.

Acquisition method: Data are already in our possession because they have been collected for other purposes.

Legal basis: The treatment is necessary to fulfill a legal obligation - art. 6.1 lett. c) of the GDPR

Data storage: We store your personal data for the time necessary to fulfill our obligations.

6. Additional storage of your data

Once the specific terms for keeping your personal data have expired, we may further store this to fulfill specific legal obligations, or to ascertain, exercise or defend our or a third party’s rights in front of the judicial authorities.

Acquisition method: Data are already in our possession because they have been collected for other purposes.

Legal basis: We process this data due to our legitimate interest in protecting our rights or the rights of third parties - art. 6.1 lett. f) of the GDPR.

Data storage: We store your personal data until the dispute is closed.

7. Who can process your data?

7.1 To achieve the abovementioned purposes, the following entities may have access to your personal data:

a) Our employees and partners who have been informed about the necessary measures to protect your rights and the security of your data.

b) Professional companies/firms that provide assistance or advice to the Owner, in accounting, administrative, fiscal, legal and financial matters, or to third parties to whom communication is necessary for the fulfillment of the services covered by the contract.

c) Our service providers, consultants and third parties, in order to facilitate, extend and protect our services and our information systems. The competence and reliability of each individual supplier is verified by us before being involved.

d) We may also communicate your data to any administrative, institutional and/or judicial authorities where this is mandatory by law and/or to accomplish the purposes indicated in this policy. These entities will process the data received as independent Data Controllers.

7.2  A complete list of suppliers who process your personal data is available from the Data Controller.

8. Cookies and other technologies

We automatically collect data through the use of cookies. A cookie is a text file containing small amounts of data that a website can send to your browser, which can then be stored on your computer as a tag that distinguishes your computer but does not identify you. Some of our Website pages use cookies to offer you a better service when you revisit the Site. You can set your browser to be notified before receiving a cookie, so that you can decide whether to accept it or not. It is also possible to set your browser to disable cookies; however, if you do this, some pages on our Website may not function properly.

Instructions for disabling cookies can be found on the following web pages: Mozilla Firefox – Microsoft Internet Explorer – Microsoft Edge – Google Chrome – Opera – Apple Safari

For more information on cookies used on our website, please see our Cookie Policy.

9. Your rights

You may exercise the following rights in relation to your personal data in certain circumstances. Before responding to any request, in order to protect the confidentiality of personal data, we have the right to verify your identity and/or to ask for further details relevant to your request.

 

Right to access personal data.

You have the right to know if we are processing personal data about you. In this case, you would obtain access to the personal data processed. You have the right to obtain a copy of the data being processed. This right is applicable only if it does not damage the rights and freedoms of others. On this point, it should be noted that in the event of your request for further copies of data, you may be charged a fee based on our administrative costs.

 

Right to rectify, delete or limit the processing of personal data.

If you want to correct, delete or limit the processing of your personal data, please contact us using the information we have provided to you. It is your responsibility to ensure that you provide true, accurate, complete data and to keep it up to date.

 

Right to withdraw consent.

If you have given us your consent to process your data, you can revoke this at any time.

 

Right to data portability.

If the processing is based on your consent/contract and is carried out by electronic means, you have the right to receive it in a structured format, and you have the right to transmit it to another Data Controller without impediment.

 

Right to object.

You have the right to object to the processing of your data in certain circumstances. For example, you can benefit from this right if the processing is based on our legitimate interests. You may dispute the nature of our legitimate interests, however, we may have the right to continue processing such personal data on the basis of our legitimate interests (in case of legal action, investigation, exercise or defense of a right in court). You also have the right to object to the processing of your personal data for direct marketing purposes.

 

Compensation.

We remind you that anyone who suffers material or immaterial damage caused by a violation of Regulation (EU) 2016/679 has the right to obtain compensation for the damage from the Data Controller or Data Processor.

 

Right to lodge a complaint with the supervisory authority.

You can lodge a complaint with the competent independent administrative authority where you usually reside, where you work, or where an alleged violation of the law regarding the protection of your personal data has occurred.

10. Data security

We have taken a number of physical, technical and organizational measures to ensure adequate levels of security for the personal data processed under our control, in order to prevent all reasonable risks.

The data you provide is stored and archived on secure servers on SiteGround.

If you have a password that allows you to access our web services, it is your responsibility to keep it secure and confidential.

11. Last update

This Policy was last updated on 22/06/2021.

 

12. Any questions?

Contact us at: hello@olafswantee.com