Dear Customer,
We wish to inform you that your personal data, collected directly from you, or through the websites owned by Virtual IT Consulting SRL, will be processed in full compliance with the fundamental principles dictated by the new General Data Protection Regulation (GDPR).
As an Italian company, we have always complied with some of the strictest data protection laws in the world and therefore only collect data when it is truly necessary and in the interest of our customers, such as to send you a service activation code via email.
Please read this data protection policy carefully and make sure you understand it. If you have any further questions or there is something you do not understand, please contact us.
We are a leading IT security company so the protection of your personal data is very important to us.
This document describes how we process data that can be directly or indirectly linked to natural persons (personal data) and what hardware and software are used: we also explain how we use cookies and analysis tools throughout our websites and in our products and services.
PERSONAL DATA PROCESSING OPERATIONS AND RELATED PURPOSES
1) How and when we collect personal data
- Information when you visit our websites:
When you visit one of our websites, we may process information about the country from which you are visiting us, information about your device, your operating system and browser, your user behaviour on our site during the current session and whether you have visited us before.
For this, we use cookies. A cookie is a text file that is stored on your computer or mobile device by a website's server and that only that server will be able to retrieve or read its contents. It contains some anonymous information and allows the website to remember, for example, your preferences or what's in your shopping cart.
- Registration Information:
To activate or use some of our products or services, you must create an account on our website https://vitconsulting.it.
During the process of creating your account, we will ask you for some personal information such as your name, email, possibly supplemented by your telephone number and address details.
We will also ask for your tax information (Tax code and/or VAT number), and we will store the IP address from which you made the registration request.
- Support Requests:
If you contact us for support requests, we will store your data in relation to this particular request, such as contact details, hardware and software information and log data. In some cases we may ask you to provide us with additional files generated by analytics tools to manage your support request (LOG). If these contain personal data, the processing is carried out in accordance with the guidelines set out in this Data Protection Policy.
- Usage information:
For some of our services it is necessary to collect other personal data (for example the data necessary for registering a domain, activating an account on the SMS GATEWAY, registering a PEC).
The respective collection and processing of personal data depends on the product used, the associated services and the product features.
Why and on what legal basis do we store personal data?
We process your data, regardless of whether it can be directly or indirectly traced back to a natural person or not, for the following purposes:
- To fulfill our contractual obligations to you.
- To comply with obligations under laws or regulations.
- For the proper functioning of our products and services.
- For practical and direct use of our products and services.
- For administrative purposes.
- To provide you with optimized advertising and product information.
The provision of personal data is mandatory only for the processing necessary for the provision of the services offered (any refusal for the purpose of providing the service makes it impossible to use the service itself); it is optional for promotional and profiling purposes and any refusal to give consent does not have negative consequences on the provision of the services offered.
If personal data of third parties are processed, provided by Resellers who request a service on behalf of and on behalf of their customer, the processing is carried out on a contractual basis and additionally in accordance with Article 6, paragraph 1, of the GDPR.
Who are the data subjects?
- Data Controller
The data controller is Virtual IT Consulting Srl in the person of its legal representative, with registered office located in VIA DUOMO 348 80133 - NAPLES (ITALY) VAT number: 07974021219.
- Subjects to whom personal data may be communicated
The personal data collected may be communicated, within their specific competence, to collaborators appointed by the owner, to public and private entities, natural and/or legal persons and having commercial purposes and/or management of information systems and/or payment systems, including external subjects who carry out specific tasks on behalf of our company.
In particular, the data may be communicated to the following categories of subjects:
- Sales Network and Operational Partners
- Banking institutions and companies specialized in payment management
- Law and consultancy firms
- Public authorities or administrations for compliance with laws
- Italian and foreign suppliers
- Finance and transport companies
- Third parties responsible for quality control, logistics and commercial flow.
Your personal data may be transferred outside the European Union to be processed by some of our service providers. In this case, we ensure that this transfer is carried out in compliance with applicable legislation and that an adequate level of protection of personal data is guaranteed by relying on an adequacy decision, on standard clauses defined by the European Commission or on Binding Corporate Rules.
In any case, personal data will never be disclosed and/or sold to third parties.
Rights of the interested party
The interested party enjoys the following rights:
- obtain from the owner, at any time, information about the existence of your personal data, their origin, the purposes and methods of processing and, if present, to obtain access to the personal data and information referred to in Article 15 of the GDPR
- request the updating, rectification, integration, cancellation, limitation of data processing in the event one of the conditions set out in Article 18 of the GDPR occurs, the transformation into anonymous form or the blocking of personal data, processed in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected and/or subsequently processed
- oppose, in whole or in part, for legitimate reasons, the processing of data, even if pertinent to the purpose of the collection and processing of personal data for the purposes of commercial information or sending advertising material or direct sales or for carrying out market research or commercial communication. Each user also has the right to revoke consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation
- receive your personal data, provided knowingly and actively or through the use of the service, in a structured, commonly used and machine-readable format, and to transmit them to another data controller without impediments
- lodge a complaint with the Italian Data Protection Authority
We remind you that for any question or request regarding your personal data and the respect of your privacy you can write to the dedicated address privacy@vitconsulting.it
Access to personal data from your reserved area and revocation of consent (opt-out)
You can, at any time, view your personal data in your reserved area on our website. Remember that you can revoke the consents you have provided at any time by accessing your reserved area and removing the relevant flag.
Export and deletion of personal data processing
To export your personal data (takeout) or request their deletion, you can send a request to the email address privacy@vitconsulting.it from the email address with which you registered.
Your personal data will be exported within 30 days or, if the export is particularly complex, within three months.
The cancellation will be carried out within the expected technical times and in compliance with the retention period established by law.
Method and duration of storage
The personal data will be stored in paper and/or electronic/computer form and for the time strictly necessary to satisfy the purposes referred to in point 1, in compliance with your privacy and current regulations.
The data will be:
- retained by law for a period of ten years from the termination of the contract;
- used for the promotion via email of products and services similar to those purchased for two years from the withdrawal without prejudice to the right to object.
Data Security
In compliance with the GDPR, we are committed to taking all necessary precautions on a daily basis to preserve the security of your data and, in particular, to protect them from:
- accidental or unlawful destruction;
- accidental or wrongful loss;
- accidental or unlawful corruption;
- circulation or disclosure to unauthorized persons;
- unauthorized access;
- unlawful treatment.
To this end, we have adopted industry-standard technical security measures:
- multi-level firewall;
- proven antivirus and intrusion detection;
- encrypted data transmission via SSL/https/VPN technology.
Please remember that there is currently no absolute defense against piracy or hacker attacks. In the event of a security breach (data breach), we are committed to informing you without undue delay, while we will work to the best of our ability to neutralize the intrusion and minimize the impact.
Changes to the Privacy Policy
This information may be subject to change. If substantial changes are made to the use of data relating to the user by the Owner, the latter will notify the user by publishing them with maximum evidence on its pages or through alternative or similar means.
Published date: May 25, 2018