INFORMATION ON THE PROCESSING OF PERSONAL DATA

in compliance with Article 13 of Regulation (EU) 2016/679

This privacy policy (“Privacy Policy”) describes the processing activities of personal data carried out by Sky Star Services S.r.l. through the website www.skystar.it and the related commitments made to this effect by the Company.
Sky Star Services S.r.l. may process your personal data when you visit the Site and use the services and features on the website.

In the sections of the website where the personal data of the user are collected, specific information is normally published pursuant to art. 13 of Reg. EU 2016/679 and, before sending is required the specific consent to the user.
Where required by Reg. EU 2016/679, the user’s consent will be required before processing your personal data

 

Personal Data Controller

The Data Controller of personal data is Sky Star Services S.r.l. with an address in Via Dosso Alto, 68 – 00054 Fiumicino (Rm) which can be contacted at the following email address: skystar@pec.it , telephone 06.65029185/6.

 

Data Protection Officer (DPO)

The Data Controller has appointed a Data Protection Officer (Data Protection Officer – DPO) who can be contacted at the following email address: dpo@basicsrl.com.

 

Type of data processed

 The visit and consultation of the Site do not usually involve the collection and processing of personal data of the user except for navigation data as specified below.

The computer systems and software procedures used to operate the website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols (internet domain and IP protocol, type of browser and operating system of the computer used, date, time and stay on the site, pages viewed, possible search engine from which you entered the site). This information is not collected to be associated with identified interested parties, however, by their nature, could, through processing and association with data held by third parties, allow to identify users.

The navigation data are used only to obtain anonymous statistical information on the use of the site and to check its correct functioning, the data could also be used to ascertain responsibility in case of hypothetical computer crimes against the site (legitimate interests of the owner), for statistical purposes, to improve navigation and the content of the site.

In addition to the so-called “navigation data”, personal data may be processed voluntarily provided by the user when he interacts with the features of the Site or asks to use the services offered on the Site.

 

Purpose of treatment 

The personal data of which the Data Controller is in possession of those provided by you during navigation. Therefore, your personal data will be processed to:

  • allow you to use our Website;
  • interaction with external social networks and platforms

Further data, with explicit and distinct consent, the Data Controller may process for the following purposes :

  • management of requests and reports by its users
  • subscription to newsletter service

 

Legal Basis

This site treats data mainly based on the consent of users. The consent is given through the banner at the bottom of the page, through special forms on the various pages of the site, or through the use or consultation of the site, as a conclusive behaviour.

With the use or consultation of the site visitors and users approve this privacy policy and consent to the processing of their personal data in relation to the methods and purposes described.

The provision of data and therefore consent to the collection and processing of data is optional, the User can deny consent, and can revoke at any time a consent already provided (via the banner at the bottom of the page or the browser settings for cookies, or the link Contacts). However, denying consent may make it impossible to provide certain services and the experience of browsing the site would be compromised.

The data collected for site security, prevention of abuse and statistics, are processed according to the legitimate interests of the data controller

 

Processing Methods

Personal data will be processed in paper, computerized and telematic form, in compliance with the provisions of art. 32 of GDPR 2016/679 regarding security measures, by persons specifically appointed and in compliance with the provisions of art. 29 GDPR 2016/ 679.

 

Data transfer

The holder informs that he does not intend to transfer the data to a third country outside the EU or to an international organisation outside the EU

For better management of the service offered, the data may be stored on servers located within the European Union.

It remains, in any case, understood that the Data Controller, if necessary, will have the right to move servers even outside the EU

In this case, the Data Controller hereby ensures that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided by the European Commission

 

Data Retention Period 

The Data Controller retains and processes personal data for the time necessary for the processing and management of the request received and subsequently, will be deleted if their storage is not otherwise justified.

If you consent to the processing of data to receive newsletters, the data will be processed for a period not exceeding 5 years from the collection of data.

 

Data security and quality

Sky Star Services S.r.l. is committed to protecting the security of your personal data and complies with the security provisions provided by the applicable legislation in order to avoid data loss, unlawful or unlawful use of, and unauthorised access to, data.

In addition, the information systems and computer programs used by the writer are configured to minimize the use of personal data and identification; such data are processed only for the achievement of the specific purposes pursued from time to time.

 

Recipients of the Data, if any

The data processed will not be disclosed to third parties. They may, however, become aware of your data, in relation to the purposes of processing previously exposed:

  • all persons to whom the right of access to such data is recognized by law;
  • employees of the company as an “authorised person”
  • External Website Maintenance Managers

 

Compulsory or Optional nature of Data provision 

 The browsing data are not provided by the interested party but acquired automatically by the technological systems of the site therefore your refusal to provide personal data would make it impossible for the Owner to show you the contents of the Website.

The provision of certain personal data by the user (e.g. contact form or to subscribe to the newsletter service) is mandatory to allow the Company to manage communications, requests received by the user or to contact the user to respond to his request.

This type of data is marked by the asterisk symbol [*] and in this case, the provision is mandatory to allow the Company to comply with the request that, in default, cannot be processed.

 

Rights of Interested Parties 

In relation to the processing carried out you are guaranteed the rights referred to in Articles 15-22 of the GDPR and, therefore, may request access to your personal data and rectification or erasure of the same or restriction of processing concerning you or to object to their processing, in addition to having the right to portability of data processed in electronic format

Requests relating to the exercise of rights must be sent to the Data Controller who will verify within the deadline referred to in art. 12 of the GDPR.
At any time you can lodge a complaint with the Italian Data Protection Authority, Piazza Venezia n. 11, 00187 Roma, garante@gpdp.it.

 

Withdrawal of consent

With reference to art. 6, paragraph 1, letter a) and art. 9, paragraph 2, letter a) of GDPR 679/16, the data controller informs the data subject that he has the right to revoke at any time any consent given without affecting the lawfulness of the processing based on the consent given before the revocation.

 

Automated decision-making processes

The Data Controller does not process the data sent which consist of automated decision-making processes.