Privacy Policy

INFORMATION ON THE PROCESSING OF PERSONAL DATA

Redix Informatica srl

Via Goffredo Mameli, 41/A - 20851 Lissone (MB)
VAT No. 03936230964

This summary notice has been drafted pursuant to European Regulation 679 /2016 on Data Protection (GDPR) and Article 13 of Legislative Decree 196 /2003 (Personal Data Protection Code).

Regarding the processing of your personal data, we would like to inform you that:

The personal data you provide or that is acquired within the scope of contractual relationships with you is used to fulfill obligations arising from the contract, comply with civil and tax obligations, as well as for accounting, invoicing, credit management, and commercial purposes
Where expressly authorized, personal data may be used by Redix Informatica srl and/or third parties for promotional and marketing activities
Such processing includes the collection, recording, organization, storage, modification, consultation, processing, extraction, selection, interconnection, comparison, use, blocking, deletion, and destruction of the data, with a principle of minimal use necessary in relation to the purpose of the processing
The processing of the provided data is carried out in compliance with current regulations, using paper and electronic tools suitable for protecting your security and confidentiality, in accordance with the minimum measures required by Legislative Decree 196/03 and the risk assessment we have conducted on such processing
The processing of the provided data is carried out in compliance with current regulations, using paper and electronic tools suitable for protecting your security and confidentiality, in accordance with the minimum measures required by Legislative Decree 196/03 and the risk assessment we have conducted on such processing
Redix Informatica srl pays particular attention to selecting its service providers to ensure they comply with and, where possible, exceed such security levels. Due to the nature of the services we provide, part of the processing may also occur outside the European territory, as detailed further below
Providing the requested personal data (owner data, company name, VAT number, tax code, bank details) is mandatory, as failure or partial communication would prevent establishing relationships with Redix Informatica srl
The data provided or acquired during the contractual relationship will not be disseminated but may be disclosed to external parties performing specific tasks on behalf of the company, such as accountants, law firms, credit institutions, transport companies, debt recovery agencies, and IT service providers
The provided data will be processed by personnel appointed directly by the Data Controller. Unless a specific deletion request is made, the provided data will be retained for five years from the end of the contractual relationship (or for the minimum periods required by law, if longer)

The Data Controller is Redix Informatica srl with registered office at Via Goffredo Mameli, 41/A - 20851 Lissone (MB).

We also inform you that the GDPR and Article 7 of Legislative Decree 196/2003 grant the data subject the right to:

Request confirmation of the existence of personal data concerning them
Obtain information on the processing of their data
Request updates, corrections, integration, deletion, anonymization, and blocking of personal data processed in violation of the law
Obtain a copy of the collected personal data
Object to processing for legitimate reasons
Seek intervention from the Data Protection Authority and the Judicial Authority in case of violations

This right can be exercised by submitting a request via email to redix@redix.it, which will be handled within a reasonable timeframe based on the complexity of the request.

For full details on the processing activities, please refer to the privacy policy below.

Privacy Policy of Redix Informatica srl

Redix Informatica srl collects certain personal data of its users.

Users may be subject to different levels of protection. Some users, therefore, enjoy higher protection. Further information on protection criteria is available in the applicability section.

Data Controller

Redix Informatica srl Via Goffredo Mameli, 41/A - 20851 Lissone (MB)
VAT No. 03936230964

Email address of the Data Controller: redix@redix.it

Types of Collected Data

Among the personal data collected by Redix Informatica srl, either independently or through third parties, are: cookies, usage data, email, first name, last name, and phone number.

Complete details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before data collection. Personal data may be freely provided by the user or, in the case of usage data, collected automatically during the use of Redix Informatica srl's systems.
Unless otherwise specified, all requested data is mandatory. If the user refuses to provide it, Redix Informatica srl may be unable to provide its service. In cases where Redix Informatica srl specifically indicates certain data as optional, users are free to abstain from providing it without affecting the availability or operation of the service. Users who have doubts about which data is mandatory are encouraged to contact the Data Controller.
The possible use of cookies or other tracking tools by Redix Informatica srl or by third-party service providers used by Redix Informatica srl, unless otherwise specified, aims to provide the service requested by the user, as well as additional purposes described in this document and in the cookie policy, if available.

The user assumes responsibility for third-party personal data obtained, published, or shared through Redix Informatica srl and guarantees they have the right to communicate or disseminate them, releasing the Data Controller from any liability toward third parties.

Methods and Location of Data Processing

Processing Methods

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of personal data.
Processing is carried out using electronic and/or telematic tools, with organizational methods and logic strictly related to the stated purposes. In addition to the Data Controller, in some cases, data may be accessed by other parties involved in Redix Informatica srl's organization (administrative, commercial, marketing, legal, system administration personnel) or external subjects (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) appointed as Data Processors by the Data Controller.
The updated list of Processors may always be requested from the Data Controller.

Legal Basis of Processing

The Data Controller processes personal data concerning the user if one of the following conditions applies:

The user has given consent for one or more specific purposes
Processing is necessary for the performance of a contract with the user and/or pre-contractual measures
Processing is necessary to comply with a legal obligation to which the Data Controller is subject
Processing is necessary for the execution of a task of public interest or in the exercise of official authority vested in the Data Controller
Processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or third parties

For further information regarding the specific legal basis of processing, users may contact the Data Controller.

Location

Data is processed at the operational headquarters of the Controller and any other location where the parties involved in processing are located. For further information, contact the Controller.
The User's Personal Data may be transferred to a country different from their current location. To obtain more details about the location of data processing, the User can refer to the section detailing Personal Data processing.

If a higher level of protection applies, the User has the right to obtain information regarding the legal basis for data transfers outside the European Union or to an international organization governed by public international law or formed by two or more countries (e.g., the UN), as well as the security measures adopted by the Controller to protect the Data.

If any of the aforementioned transfers occur, the User can refer to the respective sections of this document or request more information from the Controller using the contact details provided at the beginning.

Data Retention Period

Data is processed and stored for the time required for the purposes for which it was collected.

Therefore:

Personal Data collected for purposes related to the execution of a contract between the Controller and the User will be retained until the contract has been fully executed
Personal Data collected for purposes related to the Controller’s legitimate interests will be retained until such interests have been satisfied. The User may obtain more information regarding the legitimate interests pursued by the Controller in the relevant sections of this document or by contacting the Controller

When processing is based on the User’s consent, the Controller may retain the Personal Data for a longer period until such consent is revoked. Additionally, the Controller may be required to retain Personal Data for a longer period due to legal obligations or orders from an authority.

Once the retention period expires, Personal Data will be deleted. Consequently, after this period, the right to access, delete, rectify, and the right to data portability can no longer be exercised.

Purposes of Data Processing

The User’s Data is collected to enable the Controller to provide its Services, as well as for the following purposes: Analytics, Managing contacts and sending email messages, Contacting the User, Displaying content from external platforms, and Infrastructure monitoring.

For detailed information on the purposes of processing and the specific Personal Data used for each purpose, the User can refer to the relevant sections of this document.

User Rights

Users can exercise specific rights concerning their Data processed by the Controller.

If a higher level of protection applies, the User may exercise all the rights listed below. In other cases, the User can contact the Controller to determine which rights apply and how to exercise them.

Specifically, the User has the right to:

Withdraw consent at any time. The User can revoke previously given consent to the processing of their Personal Data
Object to data processing. The User can object to the processing of their Data when it is carried out on a legal basis other than consent. Further details on the right to object are provided in the section below
Access their Data. The User has the right to obtain information about the Data processed by the Controller, certain aspects of the processing, and to receive a copy of the Data processed
Verify and request correction. The User can verify the accuracy of their Data and request that it be updated or corrected
Request restriction of processing. Under certain conditions, the User can request the restriction of processing of their Data. In this case, the Controller will not process the Data for any purpose other than its storage
Request deletion or removal of their Personal Data. Under certain conditions, the User can request the deletion of their Data by the Controller
Receive their Data or have it transferred to another controller. The User has the right to receive their Data in a structured, commonly used, and machine-readable format and, where technically feasible, to have it transferred without hindrance to another controller. This provision applies when Data is processed using automated tools and processing is based on the User’s consent, a contract to which the User is a party, or contractual obligations connected to it
Lodge a complaint. The User can file a complaint with the competent data protection authority or take legal action

Details on the Right to Object

When Personal Data is processed in the public interest, in the exercise of official authority vested in the Controller, or for the legitimate interests pursued by the Controller, Users have the right to object to such processing for reasons related to their particular situation.

Users are advised that if their Data is processed for direct marketing purposes, they can object to the processing without providing any justification. To determine whether the Controller processes Data for direct marketing purposes, Users can refer to the relevant sections of this document.

How to Exercise Rights

To exercise their rights, Users can direct a request to the Controller using the contact details provided in this document. Requests are free of charge and processed by the Controller as soon as possible, within one month.

Applicability of a Higher Level of Protection

While most provisions in this document apply to all Users, some are specifically subject to the applicability of a higher level of protection for Personal Data processing.

This higher level of protection always applies when processing:

Is carried out by a Controller based in the EU
Involves Personal Data of Users located in the EU and relates to the offering of goods or services (whether paid or free) to such Users
Involves Personal Data of Users located in the EU and enables the Controller to monitor their behavior within the Union