The new EU Regulation for the protection of personal data n. 679/2016 has the purpose of ensuring that the processing of personal data of users is carried out in compliance with the rights of fundamental freedom and dignity of people, with particular reference to privacy and personal identity. Therefore, drawn up under Article 13 and 14 of EU Regulation n. 679/2016 (hereinafter also "Regulation") Skypoint S.r.l. informs you, as the data subject for the processing of personal data, of the following.
The data controller for the processing of your personal data is Skypoint S.r.l., VAT IT-02120230301, with registered office in Campoformido (UD), via Zorutti 145/11, (hereinafter also referred to simply as the “Controller”). E-mail: email@example.com, PEC: firstname.lastname@example.org, phone +39-0432-652609.
2.1 The personal data you provide as a result of your relationship with Skypoint S.r.l. will be processed by the latter, with the support of electronic and/or paper means, solely for the following purposes and on the following legal basis:
2.2 We collect personal information about you when you visit our website, when you enroll for getting our products or technical services, or when you contact us (online and offline chat, "Contact us" form). We may use this personal information along with other information collected during our commercial and support relationship with you. We collect your contact information, selling and shipping address, VAT number (if necessary), e-mail and phone number.
2.4 Newsletter. Your e-mail address may be used, with your consent, to send "Newsletter" for the purpose of: promotion of products and services, sending advertising material, market research and commercial communication. This opposition will not produce any consequence on the provision of the other services of the Site.
2.5 We collect personal information about other people in the following ways: when you use our "Send to a friend" function; when you require us to ship at third destination addresses; when you purchase gift vouchers. In these cases, you declare under your responsibility that you have consent to provide us this information.
2.6 To conduct a purchasing of products or services on our website, you have to provide certain information required by us to execute the transaction and to enable us to comply with our legal obligations associated with providing our services and products. Failure to provide some of your personal information may affect our ability to provide our services to you. We will inform you when information is required in order to conduct a purchasing or to use some features of our website.
3.1 The data of the interested parties will be treated in compliance with the principles of lawfulness and transparency, using manual or automated tools also through the inclusion in databases and lists suitable for storing, managing and transmitting data, in the ways and within the limits necessary to pursuing the aforementioned purposes. The processing may also be carried out by third parties who provide specific processing, administrative or instrumental services necessary to achieve the aforementioned purposes.
3.2 The user data, stored in electronic form, are stored on a web server owned by Omniaevo S.r.l. based in Italy. This server allows usability and functionality of the site in compliance with the principles expressed in the GDPR and the Privacy Code. In particular, the Owner declares that the data recorded on the server are protected against the risk of intrusion and unauthorized access, and that they have also adopted appropriate security measures to ensure the integrity and availability of data, as well as the protection of areas and of the rooms relevant for their safekeeping and accessibility.
3.3 The user data, stored in electronic form, are also stored on a server for business management owned by the Owner. In particular, the Owner declares that the data recorded on the server are protected against the risk of intrusion and unauthorized access, and that they have also adopted security measures to guarantee the integrity and availability of data, as well as the protection of areas and premises relevant to their safekeeping and accessibility.
3.4 Personal data will be processed by collaborators and / or employees of the Owner within the scope of their respective functions and in accordance with the instructions given by the Data Controller.
3.5 Skypoint Srl has provided for adequate security measures in order to protect the personal data operating in the name and for account of suppliers, customers, partners and others. Data is not the subject of automated decision making or profiling. Skypoint does not have access and does not stored the information relating the credit card, which will be processed by intermediaries and card issuers in compliance with the GDPR and the Privacy Code.
3.6 Data may be stored on servers located in EU and non-EU countries for the purpose of backup. The owners of these servers respect the principles established in the EU Reg. "GDPR" n. 679/2016. If they are established in a non-EU country, they have an EU-US Privacy Shield certification.
3.7 The interested party may exercise his / her rights towards the Owner and / or each of the third parties to the Owner, who implement web and / or archiving services for which the Data Controller uses.
4.1 The Controller may communicate personal data to the personnel and to some external subjects who cooperate with them, always in compliance with the purposes indicated. Employees / collaborators who, on the basis of the roles and job duties performed, have been entitled to process personal data, are trained to do so within the limits of their competences and in accordance with the instructions given to them by the Controller.
4.2 The Controller may also communicate personal data, within the strictly necessary limits, to subjects that for issuing our orders or requests for information, must provide/deliver goods and/or execute/receive on our/your task performance or services, to carriers for shipping services, and to banks or other payment intermediaries to refund you when necessary.
4.3 The Controller may also disclose your personal information, as required or permitted by applicable laws and regulations, to financial authorities, law enforcement bodies, government agencies, to meet compliance and legal obligations or to assert or defend the rights and interests of Skypoint.
4.4 Personal data processed by the Controller will not be disclosed, or will not be disclosed to indeterminate subjects, in any possible form, including that of their availability or simple consultation.
We inform you that, as the data subject for the processing, you have the right to obtain from the Data Controller:
a) Right of access (Article 15 of the Regulation): confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, the right to obtain, among other things, access to your personal data and information regarding the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipients to whom the personal data have been or will be disclosed.
b) Right to rectification (Article 16 of the Regulation): (i) rectification without undue delay of inaccurate personal data concerning you and (ii) completion of your personal data, where incomplete.
c) Right to erasure ("right to be forgotten") (Article 17 of the Regulation): erasure of personal data concerning you without undue delay (the Data Controller has the obligation to erase personal data without undue delay in the cases set out in Article 17 of the Regulation).
d) Right to restriction of processing (Article 18 of the Regulation): restriction of processing in the cases set out in Article 18 of the Regulation.
e) Right to data portability (Article 20 of the Regulation): receipt in a structured, commonly used and machine-readable format of personal data concerning you; the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, in the cases set out in Article 20 of the Regulation.
f) Right to object for processing carried out under Article 6(1)(e) or (f) (Article 21 of the Regulation): objection, at any time, on grounds relating to your particular situation, to the processing of personal data relating to you under Article 6(1)(e) or (f), including profiling on the basis of such provisions.
At any time you will have the opportunity to exercise the above rights through a formal request sent to the e-mail: email@example.com; or PEC address firstname.lastname@example.org accompanied by an identity document or sending it to: Skypoint Srl, via Zorutti 145/11, 33030 Campoformido, Udine, Italy.
We will endeavor to respond to your request within one month but may be entitled to extend this period in certain circumstances. We will comply with your request to the extent required by applicable law. You also have the right to lodge a complaint with the Data Protection Authority if you believe that the processing of your personal data violates the provisions of EU Regulation no. 679/2016.
Your personal information will be retained in accordance with statutory periods contained in regulations applicable to e-commerce websites and retail company. Otherwise, we will retain your information only as long as necessary for the specific purposes it was collected, or to resolve any query you may raise. Your data will be kept for the time necessary for the fulfilment of contractual obligations as well as for additional purposes for no more than 10 years from the end of the contract or order. In any case, the terms of limitation in force will be respected to enforce the rights and obligations relating to your relationship with the Controller. After this retention period, the data will be destroyed and/or deleted.
Skypoint reserves the right to modify this Privacy Statement. Updated privacy statements will be posted on this Website when amendments occur. If we have contractually committed to notify you of changes to this Privacy Statement, we will do so within a reasonable time of such changes. We urge you to review this Privacy Statement when you visit to obtain the most current statement.