Last update: 15 February, 2022
Pursuant to and for the purposes of Article 13 of Regulation (EU) 2016/679, laying down provisions for the protection of individuals with regard to the processing of personal data and the free circulation of such data, (hereinafter also only the “GDPR“) we inform you that the processing of personal data of Users and/or visitors (hereinafter also only the “User” or cumulatively also the “Users“) who consult and/or visit and/or register on the website www.checksig.com (hereinafter also just the “Site”) takes place in compliance with the legislation for the protection of personal data and confidentiality to which our business is dutifully inspired, for the purposes and methods better described in this Privacy Policy.
We also inform you that this Privacy Policy only concerns the Site and not any other websites that may be consulted by the User through other links also present on the Site.
The data controller of the personal data collected through the Site is CheckSig S.r.l. Società Benefit, briefly also CKSG S.r.l. Società Benefit (Tax Code / VAT No. 11028330964) based in Milan MI, Piazza del Liberty 8 CAP 20121; e-mail: privacy@checksig.com, Registered e-mail (PEC): checksig@pec.it (hereinafter also just “CheckSig” and/or the “Owner“).
CheckSig will process the following personal data provided directly by the User:
Computer systems and software procedures on which this website is based are made so that they get, during their ordinary activity, information and personal data that are later sent implicitly through the web by systems based on the Internet protocol.
This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow Users to be identified. This category of data includes the IP addresses or domain names of the computers used by the Users who connect to the Site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment.
Should the Data Controller process personal data of third parties communicated directly by a User (for example in the event that the User intends to make an appointment with CheckSig also on behalf of a friend, or intends to make use of an executor, i.e. the delegated subject to operate in the name and on behalf of the User or to whom the powers of representation of the User are conferred), the User acknowledges that in this case they are the owner of the processing of the personal data of the aforementioned third parties. Therefore, by providing such personal data of third parties to CheckSig we guarantee that:
All responsibility for the communication of information and data of third parties without said parties’ permission or for any incorrect or unlawful use of the same is solely of the User.
The legal basis for processing of personal data is the contractual relationship to which the User is a party pursuant to art. 6 par. 1 lett. b GDPR.
The personal data referred to in paragraph 2.1. will be processed by CheckSig for:
the registration on the Site, creation and management of the User’s personal account and any IT-technical assistance on the use of the account;
the establishment, execution and management of the contractual relationship and/or for the supply of services connected to the same contractual relationship. And in particular, for the following purposes:
The data processing legal basis is the need to comply with a legal obligation to which the Data Controller is subject pursuant to art. 6 par. 1 lett. c GDPR.
The personal data referred to in paragraph 2.1. will be processed by CheckSig for the fulfillment of the legal obligations imposed on CheckSig by virtue of civil, fiscal and accounting regulations, as well as in the field of anti-money laundering, prevention of terrorist financing, to respond to any requests for information deriving from national authorities and supranational.
The legal basis for the processing of data is the prior consent of the User pursuant to art. 6 par. 1 lett. a GDPR.
The personal data of the User referred to in paragraphs 2.1. and 2.2. will be processed for promotional activities through traditional (operator calls) and automated (e-mail, SMS, instant messaging) by CheckSig such as:
CheckSig for the pursuit of its legitimate interest – which does not override the interests and/or fundamental rights and freedoms of the User – in the context of the execution of the contractual relationship may process the e-mail address of the User for the CD. soft spam (art. 130, comma 4 D. Lgs. 196/2003 and 6 par. 1 letter f) GDPR).
The legal basis for the processing of data is the prior consent of the User pursuant to art. 6 par. 1 lett. a GDPR.
The personal data of the User referred to in paragraphs 2.1. and 2.2. will be processed for profiling activities not only automated to:
However, it is not deemed that partly-automated profiling will produce legal ramifications for the User or have a significant effect on the User in a similar manner. Rights of the interested party.
The legal basis for the processing of data is the need to implement pre-contractual measures at the request of the User pursuant to art. 6 par. 1 lett. b GDPR.
The personal data of the User referred to in paragraphs 2.1. and 2.3. will be processed to fix an appointment requested by the User and/or to respond to requests for information made by the User, in order to obtain more information on CheckSig and/or on CheckSig’s activities and services.
Any purpose other than the specific treatment for which personal data has been provided will be pursued by CheckSig only after – as required – a specific notice has been sent to the User and the latter’s consent has been obtained.
The disclosure of the User’s personal data to the Data Controller which is required through the Website may be mandatory or optional for the pursuance of the purposes identified in this Policy.
In particular:
It is also specified that where the User has given their consent to authorise the Data Controller to pursue the purposes referred to in paragraphs 3.3. and 3.4. that precede will remain free at any time to revoke your consent and/or oppose the processing of data for the aforementioned purposes, even only in relation to the methods of contact (for example, where the User wishes the processing to be performed through traditional contact means only, they may oppose to the processing of their personal data performed through automated contact means) by simply sending a written notice to that end to the addresses specified in paragraph 10 below.
The processing of the User’s personal data will take place in a lawful, correct and transparent manner, for specific, explicit and legitimate purposes and in compliance with the laws, regulations and provisions on data privacy.
The User’s personal data are mainly processed in electronic format and in some cases also in paper format.
Users’ personal data in particular will be processed through CheckSig’s Customer Relationship Management (“CRM“). Once entered into the CRM, the User’s personal data can be read, modified and updated by employees of the CheckSig sales, marketing and communication department expressly appointed as data processors.
The recipients of the Users’ personal data and therefore the subjects who become aware of the Users’ personal data are:
For a complete and updated list of the subjects to whom the data is communicated, the User can write to the contact details indicated in paragraph 10 below.
For the purposes referred to:
The User’s personal data are transferred to non-EU countries and in particular to the USA and in this case the Data Controller has adopted the appropriate guarantees (Standard Contractual Clauses in accordance with the requirements set out in Commission Decision No. 2021/914 EU).
Pursuant to articles 13, paragraph 2, letters b), c) and d) and 15-22 of the GDPR, Users can exercise the following rights:
The aforementioned rights are not subject to any formal constraint and are free of charge. CheckSig may only ask the User to verify their identity before taking further actions following the User’s request.
To exercise the rights and/or to obtain any type of information regarding the management of the contractual relationship established and/or the additional purposes for which the personal data are processed, the User can send a written communication to: CheckSig S.r.l. Società Benefit, Piazza del Liberty 8, 20121 Milan or an e-mail to: privacy@checksig.com, or a registered e-mail to: checksig@pec.it.
In order to allow a safe and efficient browsing of the Website, the Data Controller uses cookies: for further information on their use, read the Cookie Policy. For further information on their use on the Site, read the Cookie Policy, which is a part of this policy.
The Site can be reached by interacting with the CheckSig pages on social networks. The social network may collect data relating to the User’s visit to the Site. This Privacy Policy does not concern the processing of the User’s personal data by the social network, therefore, the User must refer exclusively to the dedicated Privacy Policy of the social network itself.
Pursuant to art. 32 of the GDPR, CheckSig and the persons appointed as data processors adopt adequate security measures in order to minimize the risk of destruction or loss – even accidental – of personal data, unauthorized access or processing that is not permitted or does not comply with collection purposes indicated in our Privacy Policy.
In order to avoid loss of data, illegitimate or not correct uses and entered not authorize, specific safety measures are observed, as best described in the dedicated section of the Site.
The Website is intended to be used and viewed by adults. Therefore, requests from minors will not be considered.
This Privacy Policy is governed by Italian law and in particular by the legislation on data privacy, including the GDPR, the Privacy Code, the provisions, authorizations and guidelines adopted by the Privacy Guarantor governing the processing of personal data, where applicable.
The Data Controller may modify or simply update, in whole or in part, the Privacy Policy of the Site, also in consideration of the modification of the laws or regulations governing the matter. Changes and updates to the Privacy Policy will be notified to Users on the Home Page as soon as they are adopted and will be binding as soon as they are published on the Site and will be contained and available on the Site itself.