Privacy Policy

The purpose of this document is to inform you regarding the processing of your personal data collected by the data controller, Peekwik Dreams SRLS – via zeffiro 27/a – (09012) Capoterra (CA) Italia, indirizzo e-mail  ynarosfallin@gmail.com, tramite il sito web www.ynarosfallin.com

Changes and updates will be binding as soon as they are posted on the Application. In case of non-acceptance of the changes made to the Privacy Policy, the Data Subject shall cease using this Application and may request the Data Controller to delete his/her Personal Data.

1. Categories of Personal Data processed

The Data Controller processes the following types of Personal Data voluntarily provided by the Data Subject:
1. Contact data: first name, last name, address, e-mail, telephone, pictures, authentication credentials, any additional information submitted by the Data Subject, etc.
2. Fiscal and payment data: credit card information, cardholder, any additional information submitted by the Respondent, etc.

The Owner processes the following types of Personal Data collected in an automated manner:
1. Technical Data: Personal Data produced by the devices, applications, tools and protocols used, such as, for example, information about the device being used, IP addresses, browser type, Internet Service Provider (ISP) type. Such Personal Data can leave traces that, particularly when combined with unique identifiers and other information received by servers, can be used to create profiles of individuals
2. Application navigation and usage data: such as, for example, pages visited, number of clicks, actions taken, duration of sessions, etc.
3. Data related to the exact location of the Data Subject: e.g., geolocation data that precisely identifies the location of the Data Subject that may be collected through the satellite network (e.g., GPS) and other means, collected with the consent of the Data Subject. The Data Subject may withdraw consent at any time.

Failure by the Data Subject to provide Personal Data for which there is a legal or contractual obligation or if they are a necessary requirement for the conclusion of the contract with the Data Controller, will result in the inability of the Data Controller to establish or continue the relationship with the Data Subject.

The Data Subject who communicates to the Data Controller Personal Data of third parties is directly and exclusively responsible for their origin, collection, processing, communication or dissemination.

2. Cookies and similar technologies

The Application uses cookies, web beacons, unique identifiers and other similar technologies to collect Personal Data of the Data Subject about the pages, links visited and other actions performed when the Data Subject uses the Application. They are stored for later transmission upon the Data Subject’s next visit. The full Cookie Policy can be viewed at: https://www.ynarosfallin.com/cookie-policy

3. Legal basis and purpose of processing

The processing of Personal Data is necessary:

1. • For the execution of the contract with the Interested Party, namely:

     1. fulfillment of any obligation arising from the pre-contractual or contractual relationship with the Interested Party

     2. Payment management: to manage payments by credit card, bank transfer or other means

   • By legal obligation and specifically:

     1. The fulfillment of any obligations required by current rules, laws and regulations, in particular, in tax and fiscal matters

   • Based on the legitimate interest of the Owner, to:

     1. Email marketing purposes of Holder’s products and/or services to directly sell Holder’s products or services using the email provided by the Data Subject in the context of the sale of a product or service similar to the one being sold

     2. statistics with anonymous data: to perform statistical analysis on aggregated and anonymous data to analyze the behavior of the Data Subject, to improve the products and/or services provided by the Controller and better meet the expectations of the Data Subject

   • Based on the consent of the Data Subject, to:

     1. Detection of the exact location of the Interested Party: to detect the presence of the Interested Party, to control the accesses, times and presence of the Interested Party at a certain place, etc.

Based on the legitimate interest of the Data Controller, the Application allows interactions with external platforms or social networks whose processing of Personal Data is governed by their respective privacy policies to which please refer. The interactions and information acquired by this Application are in any case subject to the privacy settings that the Data Subject has chosen on such platforms or social networks. This information – in the absence of specific consent to processing for further purposes – is used for the sole purpose of enabling the use of the Application and providing the requested information and services.

The Data Subject’s Personal Data may also be used by the Data Controller to protect itself in court before the competent judicial bodies.

4. Methods of processing and recipients of Personal Data

The processing of Personal Data is carried out by means of paper and computer tools with organizational methods and logic strictly related to the stated purposes and through the adoption of appropriate security measures.

Personal Data are processed exclusively by:

1. • persons authorized by the Data Controller to process Personal Data who have committed to confidentiality or have an appropriate legal duty of confidentiality;

   • Parties operating independently as separate data controllers or by parties designated as data processors by the Data Controller in order to carry out all processing activities necessary to pursue the purposes set forth in this policy (e.g., business partners, consultants, IT companies, service providers, hosting providers);

   • Subjects or entities to which it is mandatory to communicate Personal Data by legal obligation or by order of the authorities.

The individuals listed above are required to use appropriate safeguards to protect Personal Data and may only have access to those necessary to perform the tasks assigned to them.

Personal Data will not be disseminated indiscriminately in any way.

5. Location

Personal Data will not be subject to any transfer outside the territory of the European Economic Area (EEA).

6. Period of Retention of Personal Data

Personal Data will be kept for the period of time necessary to fulfill the purposes for which it was collected, specifically:

1. • for purposes related to the execution of the contract between the Data Controller and the Data Subject, will be kept for the entire duration of the contractual relationship and, after termination, for the ordinary limitation period of 10 years. In the case of judicial litigation, for the entire duration of the same, until the exhaustion of the terms of admissibility of actions of appeal

   • for purposes related to the legitimate interest of the Owner, will be retained until the fulfillment of that interest

   • for the fulfillment of a legal obligation, by order of an authority, and for protection in court, shall be retained in accordance with the timeframes stipulated in said obligations, regulations, and in any case until the fulfillment of the prescriptive period stipulated in the regulations in force

   • for purposes based on the consent of the Data Subject, will be retained until the consent is revoked

At the end of the retention period, all Personal Data will be deleted or stored in a form that does not allow the Data Subject to be identified.

7. Rights of the Interested Party

Data Subjects may exercise certain rights with respect to Personal Data processed by the Data Controller. In particular, the Data Subject has the right to:

1. • Be informed about the processing of their Personal Data

   • withdraw consent at any time

   • limit the processing of your Personal Data

   • object to the processing of their Personal Data

   • access their Personal Data

   • verify and request rectification of their Personal Data

   • obtain the restriction of the processing of their Personal Data

   • obtain the deletion of their Personal Data

   • transfer their Personal Data to another controller

   • Propose complaints to the supervisory authority for the protection of their Personal Data and/or take legal action.

To exercise their rights, Data Subjects may address a request to the following e-mail address ynarosfallin@gmail.com. Requests will be taken up by the Holder immediately and processed as soon as possible, in any case within 30 days.

Last updated: 02/04/2023