Join US

Privacy Policy

Privacy policy

This information is provided pursuant to articles 13-14 of the GDPR 2016/679.

In compliance with the General Data Protection Regulation, SINTIA LAB S.R.L. (hereinafter also referred to as “the Company”) is committed to protecting the privacy of every visitor (hereinafter also referred to as “User”) of the website https://staging.sintialab.it (hereinafter also referred to as “the Site”). To ensure maximum transparency in this area, we invite you to carefully read, before starting to browse or, in any case, before accessing the services available there, in addition to the General Conditions (available on the site https://staging.sintialab.it) and the Cookie Policy (available on the site https://staging.sintialab.it), this information (hereinafter also referred to as “Privacy Policy”), noting that by accessing this Site and starting navigation, you declare to have understood and accepted, in addition to the Cookie Policy and the General Conditions, also this Information, authorizing the Company to use your personal information as described therein. Users who do not consent to the processing of their data and do not accept this Privacy Policy, as well as the Cookie Policy and the General Conditions, are expressly invited to refrain from accessing the Site, browsing it and/or accessing the services offered there.

Useful Definitions

In accordance with article 4 of the GDPR, to which specific reference is made for any further information regarding privacy, it should be understood: by “personal data”, any information concerning an identified or identifiable natural person and an identifiable natural person is one who can be identified, directly or indirectly, with particular reference to an identifier such as a name, an identification number, location data, an online identifier or one or more elements characteristic of their physical, physiological, genetic, psychological, economic, cultural or social identity; by “processing”, any operation or set of operations, carried out with or without the aid of automated processes and applied to personal data or sets of personal data, such as collection, recording, organization, structuring, storage, adaptation or modification, retrieval, consultation, use, communication by transmission, dissemination or any other form of provision, comparison or interconnection, limitation, deletion or destruction; by “data controller”, the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of the processing of personal data; by “data processor”, the natural or legal person, public authority, service or other body which processes personal data on behalf of the data controller; by “consent of the data subject”, any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to them; by “cookies”, text files sent by a web server to a User’s browser who accesses a website for the first time to record data and personalization settings related to the service offered by the site.

Data Controller and Data Protection Officer

The Data Controller is SINTIA LAB S.R.L., Via Assarotti 7/4, 16122 Genova (GE) – VAT No. 02920040991.

The Data Processor is SINTIA LAB S.R.L., Via Assarotti 7/4, 16122 Genova (GE) – VAT No. 02920040991.

The Data Protection Officer is SINTIA LAB S.R.L., Via Assarotti 7/4, 16122 Genova (GE) – VAT No. 02920040991.

Methods of Data Collection

The personal information collected is that detected during your interaction with the Site and/or with the services present there. In particular, information is collected when you browse and use the Site, when you create an account (when making a reservation) or modify the settings of an existing account, when you place an order (also for the delivery of an order) through the Site and/or by email, when you contact the Site and/or the Company by email, telephone, mail, message, or chat.

Types of Data Collected

The Company commits to protecting the privacy of its Users and, in this context, to highlight with maximum transparency the information that will be collected. When, in addition to visiting the Site, the User wishes to place an order, they are required to send an email to the Company containing a series of information (such as, for example, name and surname, delivery address, telephone number for any issues related to the delivery, order details, any information that the User wishes to specify about the order, etc.). The Company collects information concerning the User or their use of the Site when the latter contacts the Company or sends communication via email and/or telephone. The Company will collect information related to the User’s health only if voluntarily reported by the User (for example, if the User, after having timely informed the restaurant, had also indicated in the order made through the Site an allergy/food intolerance). When the User browses the Site, the Company also collects technical information related to the device (phone, computer, tablet, etc.) from which they connect to the Site (such as, for example and not limited to, the operating system, the IP address through which they access the Site, the type of device, the type of connection, etc.).

Legal Basis and Purpose of Data Processing

The Company aims to protect User data and bases its processing on the principles of fairness, legality, and transparency. As such, these data will be processed using tools and procedures suitable to ensure their maximum security and confidentiality, through archives and paper supports, with the help of digital supports, computer and telematic means. The information that the Company collects will be transferred and stored on its servers, located within the EU.

The legal basis for the collection and use of the User’s personal information, as described above, will depend on the specific context in which they are collected. For instance, if the User accesses the Site to place an order, the main reason why the Company would collect and process their personal information would be to execute the service offered. However, the Company might also use the User’s personal information in other cases, such as where such activity falls within its commercial interest (where not conflicting with those of the User) or there is a legal obligation in this regard (for example, in the case of a legal proceeding). For questions and further information about the legal basis on which the Site collects and uses your personal information, you are invited to contact the Site using the details provided in article 11) named “contacts.”

The Company commits to processing User data only in the presence of a reason allowed by the legislation on data protection. The processing of User data is permitted where, following the User’s consent and in the face of a legitimate interest of the Company, such processing was necessary to provide the requested services, conclude/execute a contract, fulfill a legal obligation, comply with an accounting/tax/administrative burden. For example, User information could be used by the Company to allow their access to reserved areas of the Site, create their account, provide the requested services, respond to messages or requests received through the Site or via email, contact in case of need in relation to a requested service, contact if necessary third parties involved in the execution of a requested service. Also for the same purpose, User information could be used to make browsing or ordering on the Site easier/faster, allow Customer Service to efficiently handle any requests/complaints, exercise every right of the Company and the natural/legal persons with whom it interfaces. The Company will evaluate, from time to time, the extent and adequacy of the data provided in order to determine the consequent decisions and avoid processing data exceeding the purposes pursued. The Company commits not to use the User’s personal data for purposes different and/or additional to those described in this information, unless behind information and consent of the User.

Cookies

The Company highlights that it is possible to modify the User’s browser settings relating to Cookies, so as to reject them, partially or entirely. In case of disabling/refusal of Cookies, it is important to note that some sections of the Site may not be accessible and/or may not function correctly. For more information, please refer to the more specifically indicated Cookie Policy available at the link https://staging.sintialab.it.

Data Retention and Security

The User’s data collected will be stored, from the time of their receipt, for a period appropriate to the purposes of processing outlined above and in compliance with the provisions of the current legislation, and will not be kept for a longer period than necessary for these purposes. Among the criteria considered to evaluate the necessary period of data retention are, for example, contractual obligations and rights related to the information involved, legal obligations, the statute of limitations under the applicable law, (potential) disputes, guidelines issued by competent data protection authorities. It is understood that, where the retention of the User’s data is not necessary, the Company will proceed to securely delete them. The Company adopts technologies and policies suitable to ensure that the User’s personal information is adequately protected, adopting measures to protect such information from unauthorized access, illicit processing, accidental loss, destruction, and damage. It is understood that, where the User sets a password to access certain sections of the Site, they will have the responsibility to keep this password confidential and not share it with anyone.

However, it is important to note that the transmission of information via the internet is not entirely secure and therefore, despite the Company and the Site adopting measures to offer suitable protection, it is not possible to guarantee the security of data transmitted and, because of this, any transmission is at the exclusive risk of the User. It is highlighted that any changes to this Privacy Policy will be published on the Site and, because of this, the User is invited to periodically review the Site to stay updated on the latest information related to privacy and confidentiality practices.

Data Disclosure

The Company pays great attention and seeks to be transparent about the entities with whom the User’s information is shared. For the purposes indicated in the previous article 5) and, in general, under this Information, the Company may communicate the User’s data to third parties to fulfill obligations arising from the law, for the execution of the requested services, to handle (potential) disputes, etc. For all the purposes indicated in this Information, the User’s data may also be communicated abroad, both inside and outside the European Union, in compliance with the rights and guarantees provided by current legislation, after verifying that the country in question guarantees an adequate level of protection. For the execution of the services offered on the Site and, in general, for the purposes of this Information, the Company, depending on the circumstances, may share the User’s personal information with the following entities: restaurants where orders are placed (for example, in relation to a delivery); entities in charge of delivering the order; third parties who perform various activities for the promotion and support of the Company’s services (such as, for example, customer support agents, website assistance and hosting providers, marketing service providers, IT professionals, companies that send a message to the User when the order is on its way and/or is confirmed); third parties who may contact the User, if they have given their consent, to inform them about goods or services that may be of interest; in case the Company should undergo a merger with another company or undergo corporate transformations, the User’s information could be disclosed/transferred to such companies, as well as to new business partners, new associates and/or advisors of such entities (it being understood that, in such cases, the Company will inform such entities that they must process the shared personal information only for the purposes provided in this Privacy Information); public safety/government/judicial bodies and, in any case, entities to which the Company believes it must disclose the User’s personal data under laws/regulations, to exercise/protect the rights of the Company or to protect the vital interests of the User or third parties.

Referrals to Third-Party Sites

The Site may contain links to or from third-party websites. For example, the Site may link to partner sites of the Company or, more generally, to websites that may offer useful information to Users (such as, for example, the websites of restaurants where orders can be placed). In this regard, it should be noted that the inclusion of such links is provided by the Company as a courtesy and does not imply endorsement by the Company of the reported websites. Therefore, when the User accesses one or more websites, they are invited to consult and verify the privacy policies and, in general, all documents present on such sites, it being understood that the Company is not responsible in any way and for any reason for such sites, their contents, and the documents published therein (including privacy policies, etc.).

User Rights

Under current legislation on personal data protection, the User may have a number of rights related to their personal data held by the Company. Users who wish to exercise one (or more) of these rights are invited to contact the Data Protection Officer of the Company indicated in the previous article 2) or the Customer Service using the contacts listed in the subsequent article 11). In any case, the User is invited to consult what is highlighted below. The right to be informed is the right of the User to receive clear, transparent, and easily understandable information about how their information is used and their rights (also for this purpose this Privacy Policy is drafted). The right of access gives the User the right to obtain access to their information (where processed) and this is for the purpose, for example, of verifying that the use of data is carried out in compliance with the legislation on data protection. The right to rectification allows the User to obtain the correction of one or more of their information if it is inaccurate/incomplete. The right to erasure, also known as the “right to be forgotten”, allows – not absolutely, but in certain circumstances – the User to request the deletion/removal of some data. The right to restrict processing allows the User to limit/block further use of their data and, in case of exercising this right by the User, the Company can keep their information but not use it further. The right to data portability is the right that allows the User – not generally, but with some exceptions – to obtain their personal information in an accessible and transferable format (for example, to reshare it for the User’s personal purposes). The right to lodge a complaint is the right that allows the User to file a complaint before the competent Authority for data protection, regarding the way the Company manages/treats their personal data. (In such a case, if the User is not satisfied with the response provided by the Company or believes that the processing of their data managed by the latter is not in compliance with the current legislation, they can file a complaint with the Garante per la Protezione dei Dati Personali at the address: Piazza di Monte Citorio n. 121 – 00186 Rome.) The right to withdraw consent (in case the Company uses consent as the legal basis for processing certain information) entails the right to revoke the consent given to the Company at any time, it being understood that such revocation will not render illegal the processing of information used by the Company during the period in which the consent was valid. The right to object to processing, that is, the right to oppose certain types of processing, including processing for marketing and profiling purposes. (In such a case, the User may modify their settings by disabling cookies, as provided in the Cookie Policy available on the site https://staging.sintialab.it. Users who wish to exercise one or more of these rights are invited to contact the Customer Service identified in the following article.

Contacts

In case of questions/clarifications/complaints related to this Privacy Policy or, more generally, about the management of your data, you are invited to write to Customer Service at the following email address info@sintialab.it or send a communication to the legal headquarters of the Company located at: SINTIA LAB S.R.L. Via Assarotti 7/4, 16122 Genova (GE) – VAT No. 02920040991.

 

Questo articolo è disponibile anche in: Italiano (Italian)