PRIVACY POLICY
NOTICE ON THE PROCESSING OF PERSONAL DATA
This notice is provided pursuant to Article 13 of EU Regulation 2016/679 GDPR (hereinafter “GDPR”) and the current national legislation on the protection of personal data, aiming to describe and inform users consulting the website www.legallogger.com about the processing of personal data collected during navigation and those provided for contact requests.
Legal Logger Srl, in line with the GDPR and national legislation protecting personal data, intends to ensure the privacy and security of user data.
Unless otherwise specified, this policy also serves as a notice pursuant to Article 13 of EU Regulation 2016/679 – GDPR.
- Data Controller
The Data Controller of your personal data is Legal Logger Srl, with its registered office in Genoa, Corso Aurelio Saffi 1, 16128, Genoa – Italy.
- Purposes and Legal Basis of Processing – Types of Data Processed
2.1. Browsing Data
It is informed that the website www.legallogger.com collects visitor/user data to operate and allow navigation.
The computer systems and software procedures responsible for the website’s operation acquire, during their regular activity, some personal data whose transmission is implicit in the use of Internet communication protocols. These are information not collected to be associated with identified data subjects, but by their nature could, through processing and association with data held by third parties, allow users to be identified (for example, IP address, browsers used, etc.).
This category also includes Cookies, small-sized files containing text strings (typically composed of letters and numbers) that allow a site to recognize a particular device or browser. For detailed information on the cookie policy, please refer to the specific policy available at the following address (link to the cookie policy).
2.2 Data Provided in the DEMO Request Form
These are the data requested on the Demo request page, where the user voluntarily enters their personal data to be contacted and receive information.
The legal basis is the consent of the data subject.
- Methods of Processing
The data processing is based on principles of fairness, legality, and transparency; it will be carried out mainly using electronic procedures and supports for the time strictly necessary to achieve the purposes for which the data was collected. These tools are designed to store, manage, and transmit them using technical and organizational measures adequate to ensure, as reasonably and according to the state of the art, the security, confidentiality, integrity, availability, and resilience of systems and services, using appropriate procedures that prevent the risk of loss, unauthorized access, illicit use, and dissemination.
Specific security measures are observed to prevent data loss, illicit or incorrect uses, and unauthorized access, in accordance with the accountability principle provided by the GDPR.
- Data Retention Period
Data collected for the purposes mentioned in section 2.1 could be used to establish responsibility in case of computer crimes against the site: except for this eventuality, currently, web contact data does not persist for more than seven days.
Data provided by the user mentioned in section 2.2 will be kept until withdrawal and in any case not beyond 6 months.
- Recipients or Categories of Recipients of Personal Data
The personal data processed by the Data Controller will not be disseminated, that is, made known to indeterminate subjects, in any possible form, including their availability or simple consultation.
It may be communicated to workers employed by the Data Controller. In particular, based on the roles and job duties performed, some employees of the Data Controller have been authorized to process personal data within the limits of their competencies and in accordance with the instructions given to them by the Data Controller itself.
It may also be communicated, to the extent strictly necessary, to external parties collaborating with the Data Controller designated, where necessary, as Data Processors. Finally, it may be communicated to subjects entitled to access it under the provisions of law, regulations, community norms.
- Rights of the Data Subjects and How to Exercise Them
Oonion Srl informs you that, as a data subject, unless legal limitations apply, you have the right to:
- Request confirmation of whether or not personal data concerning you is being processed;
- Access your personal data, obtaining evidence of the purposes pursued by the Controller, the categories of data involved, the recipients to whom the data may be communicated, the applicable retention period, the existence of automated decision-making processes;
- Obtain without undue delay the rectification of inaccurate personal data concerning you and the notification to those to whom the data may have been transmitted;
- Obtain, where provided for, the deletion of your data and the notification to those to whom the data may have been transmitted;
- Obtain the restriction of processing, when provided for;
- Oppose the processing of personal data concerning you, when possible;
- Not be subjected to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you;
- Request and obtain the portability of personal data in the established cases and in a structured, commonly used, and machine-readable format, also to transmit such data to another controller, within the limits of the operational feasibility of the operation and the costs to be incurred;
- Lodge a complaint with a supervisory authority under Article 77 of the GDPR. The contacts of the Data Protection Authority are available on the website http://www.garanteprivacy.it;
- Lodge a judicial recourse against a legally binding decision of the Supervisory Authority mentioned in the previous point (Art. 78 GDPR).
- Lodge judicial recourse if you believe that your rights have been violated as a result of processing (Art. 79 GDPR).
You can exercise your rights by contacting the Data Controller at the addresses indicated above. They will take charge of your request and provide you, without undue delay and, in any event, within one month from the receipt of the same, with information relating to your request.
- Extra-EU Data Transfers
The Data Controller does not transfer personal data outside the European Union countries.
- How to Contact the Data Controller
For any information regarding this policy or to exercise your rights as a Data Subject, you can contact the Data Controller at the following email address: privacy@legallogger.com
- Updates and Changes
The Data Controller reserves the right to modify, supplement, or periodically update this notice in compliance with the applicable legislation or the measures adopted by the Data Protection Authority. You are therefore invited to periodically consult this page. For this purpose, this notice highlights the date of the update.
Last update: February 26, 2024