HMD EVENTS
di Hua My Ding
Maserada Sul Piave (TV)
mobile: (+39 3284422994)
VAT ID 05486250268
HMD EVENTS
HMD EVENTS
EXTENDED PRIVACY POLICY
This Application collects some Personal Data from its Users.
Data Controller
HMD EVENTS
di Hua My Ding
Address: Maserada Sul Piave (TV)
Email: hmdamministrazione@gmail.com
Categories and Types of Information Collected
This Application collects Personal Data in various ways, both directly and through third parties. Among the collected data are information such as first name, last name, email address, telephone number, profession, province, country, postal code, date of birth, city, address, company name, website, various information, gender, VAT Number, Tax Code, industry sector, User ID, geographic location, profile picture, personal description, data communicated during the use of the service, username, and camera permissions. Furthermore, unique device identifiers for advertising purposes, such as the Google Advertiser ID or the IDFA identifier, are collected.
Any further Personal Data may be mentioned in other sections of this privacy policy or in informational texts displayed at the time of data collection.
Personal Data may be freely provided by the User or collected automatically during the use of this Application.
Unless specified otherwise, all Data requested by this Application is mandatory. The refusal to provide it may make it impossible for the Application to provide its services. If some Data is indicated as optional, Users are free to refrain from communicating it without any consequences on the availability or the functioning of the service.
Users who are uncertain about which Personal Data is mandatory are welcome to contact the Owner. The use of Cookies – or of other tracking tools – by this Application or by the owners of third-party services used by this Application, unless otherwise specified, serves the purpose of providing the service required by the User.
The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application and declares to have the right to communicate or disseminate them, thus freeing the Data Controller from any liability to third parties.
Processing Methods
The Data Controller processes Users' Personal Data by taking appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data. The processing is carried out using computers and/or IT-enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of this Application (administration, sales, marketing, legal, system administration) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Owner. The updated list of these parties may be requested from the Data Controller at any time.
Legal Basis of Processing
The Data Controller may process Personal Data relating to Users if one of the following applies:
Users have given their consent for one or more specific purposes.
Provision of Data is necessary for the performance of an agreement with the User and/or for any pre-contractual obligations thereof.
Processing is necessary for compliance with a legal obligation to which the Data Controller is subject.
Processing is related to a task that is carried out in the public interest or in the exercise of official authority vested in the Data Controller.
Processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.
In any case, the Data Controller will gladly help to clarify the specific legal basis that applies to the processing.
Place of Processing
The Data is processed at the Data Controller's operating offices and in any other places where the parties involved in the processing are located. For further information, please contact the Data Controller.
The User's Personal Data may be transferred to a country other than the one where the User is located. To obtain further information on the place of processing, the User may refer to the section detailing the processing of Personal Data.
The User has the right to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Data Controller to safeguard their Data.
If any such transfer takes place, the User can find out more by checking the relevant sections of this document or inquire with the Data Controller using the information provided in the contact section.
Retention Period
Personal Data shall be processed and stored for as long as required by the purpose they have been collected for, unless the User requests their deletion, which will be carried out immediately.
Therefore:
Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User shall be retained until such contract has been fully performed.
Personal Data collected for the purposes of the Data Controller’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Data Controller within the relevant sections of this document or by contacting the Data Controller.
When Processing is based on the User’s consent, the Data Controller may retain the Personal Data for a longer period until such consent is withdrawn. Furthermore, the Data Controller may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.
Once the retention period expires, Personal Data shall be deleted. Therefore, the right of access, the right to erasure, the right to rectification, and the right to data portability cannot be enforced after expiration of the retention period.
Purpose of Processing Collected Data
The User's Data is collected to allow the Owner to provide its Services, as well as for the following purposes: Access to third-party accounts, Contacting the User, Contact management and sending messages, Payment processing, Handling support and contact requests, Hosting and backend infrastructure, Commenting on content, Social features, Tag management, Statistics, Interaction with external social networks and platforms, Heat mapping and session recording, Interaction with live chat platforms, Interaction with support and feedback platforms, Location-based interactions, Device permissions for Personal Data access, SPAM protection, Advertising, Registration and authentication, Remarketing and behavioral targeting, Content and functionality performance testing (A/B testing), Transfer of Data outside the EU, and Displaying
Facebook Permissions requested by this Application
This Application may request authorization to use certain permissions provided by Facebook, which allow the Application to interact with the User's Facebook account and collect information, including Personal Data. This service allows this Application to connect with the User's account on Facebook, which is provided by Facebook Inc.
For more details on the permissions referred to, please consult the Facebook permissions documentation and the Facebook privacy policy.
Basic information
The basic information of the User registered on Facebook usually includes the following Data: ID, name, profile picture, gender, and locale. In some cases, the User's Facebook "Friends" may also be accessible. If the User has made additional Data publicly available, this information will also be accessible.
Friends' 'About Me'
Allows access to the 'About Me' section of friends' profiles.
Access to private data
Grants access to the private data of the User and their friends.
Permissions for accessing Personal Data on the User's device
Depending on the specific device used by the User, this Application may request certain permissions to access the User's Data on their device, as described below. These permissions must be granted by the User before any information can be processed. The User has the right to revoke these permissions at any time. To revoke permissions, the User can use the system settings or contact the Data Controller using the contact details provided in this document.
It is important to note that revoking one or more permissions may affect the proper functioning of this Application. If the User grants the permissions listed below, the relevant Personal Data may be processed (e.g., accessed, modified, or removed) by this Application.
Camera Permission
This permission is required to allow access to the camera or to capture images and videos from the device.
Details on the processing of Personal Data
Personal Data is collected for the following purposes and using the following services:
Access to third-party accounts
This type of service allows this Application to access Data from your accounts on third-party services and to perform actions through them. These services are not activated automatically but require explicit authorization from the User.
Facebook account access (this Application)
This service allows this Application to connect with the User's account on the Facebook social network, provided by Facebook, Inc. The permissions requested include access to private data.
Place of processing: United States – For more details on data management, please consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Twitter account access (Twitter, Inc.)
This service allows this Application to connect with the User's account on the Twitter social network, provided by Twitter, Inc. The Personal Data collected includes various types of data, as specified in the service's privacy policy.
Place of processing: United States – For more details on data management, please consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Content commenting
Content commenting services allow Users to make and publicly share their own comments regarding the content of this Application. Depending on the settings established by the Data Controller, Users may leave comments anonymously. If the User provides an email address among the Personal Data, it may be used to send notifications regarding comments on the same content. Users are responsible for the content of their comments.
If a commenting service provided by a third party is used, it is possible that the service collects traffic data related to the pages where it is installed, even if the User does not use the commenting service.
Facebook Comments (Facebook, Inc.)
Facebook Comments is a service provided by Facebook, Inc. that allows the User to post comments and share them on the Facebook platform. The Personal Data collected by this service includes Cookies and Usage Data.
Place of processing: United States – For more details on data management, please consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Contacting the User
Mailing list or newsletter (this Application)
By registering for the mailing list or newsletter, the User's email address is automatically added to a contact list to which email messages containing information, including commercial and promotional information, related to this Application may be sent. The User's email address might be added to this list as a result of registering for this Application or after making a purchase.
Personal Data collected: ZIP code, city, last name, Cookies, date of birth, Usage Data, email address, physical address, country, first name, phone number, profession, state, company name, and website.
Contact via phone
Users who have provided their phone number may be contacted for commercial or promotional purposes related to this Application, as well as to respond to support requests.
Personal Data collected: phone number.
Contact form
When the User fills out the contact form with their Data, they consent to their use for responding to requests for information, quotes, or of any other nature indicated by the form’s header.
Personal Data collected through this process may include: ZIP code, city, Tax Code, last name, date of birth, email address, User ID, physical address, country, first name, phone number, VAT Number, profession, state, company name, gender, industry sector, website, and various types of Data.
Social features
Inviting and suggesting friends (this Application)
This Application may use the Personal Data provided by Users to allow them to invite their friends, for example through access to the address book (with permission), and to suggest friendships or connections within the Application. The Personal Data collected for this purpose may include various types of information.
Contact management and message sending
This type of service allows for the management of a database of contacts, which may include email addresses, telephone numbers, or other types of contact information, used to communicate with the User. These services may also collect data related to the date and time the User views messages, as well as the User's interaction with them, such as information on clicks on links within the messages.
Mailgun (Mailgun, Inc.)
Mailgun is an email address management and message sending service provided by Mailgun, Inc. Personal Data collected: last name, Cookies, date of birth, Usage Data, email address, physical address, country, first name, phone number, profession, gender, and various types of Data.
Place of processing: United States – For more details on data management, please consult the Privacy Policy.
ServerSMTP (TurboSMTP)
The Data Controller informs the User that, to enable the sending of electronic communications related to the Services offered, it may use an external email service provider called ServerSMTP (https://serversmtp.com/it/).
For this purpose, the User's email address and any data strictly necessary for message delivery may be processed by said provider, which acts as a Data Processor pursuant to Article 28 of Regulation (EU) 2016/679 (GDPR), by virtue of a specific contractual agreement with the Data Controller.
Data processing by ServerSMTP will occur solely for purposes connected to the transmission of communications and in compliance with adequate technical and organizational security measures. The data will not be processed by the provider for other purposes nor disclosed to unauthorized third parties.
Domain and Mailbox Management
This type of service allows for domain name registration, hosting, and the activation of mailboxes.
OpenSRS (Tucows domains inc)
Personal Data collected by this service includes: last name, Cookies, date of birth, Usage Data, email address, physical address, country, first name, phone number, profession, gender, as well as various types of Data, tax code, VAT Number, and company name.
Place of processing: Canada – For more details on data management.
Tag Management
This type of service is used for the centralized management of tags or scripts used on this Application. The use of such services involves the flow of User Data through them and, where applicable, their retention.
Google Tag Manager (Google LLC)
Google Tag Manager is a tag management service provided by Google LLC. Personal Data collected: Cookies and Usage Data. Place of processing: United States – For more details on data management, please consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Support and contact request management
This type of service allows this Application to manage support and contact requests received via email or through other means, such as the contact form. The Personal Data processed depends on the information provided by the User in the messages and the means of communication used, for example, the email address.
Zendesk (Zendesk, Inc.)
Zendesk is a support and contact request management service provided by Zendesk, Inc. Personal Data collected includes various types of information, as specified in the service's privacy policy. Place of processing: United States – For more details on data management, please consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Heat mapping and session recording
Heat mapping services are used to identify the areas of a web page that attract the most User interest, based on data such as cursor movement or mouse clicks. These services allow for the monitoring and analysis of traffic data to track User behavior. Some of these services may record sessions and make them available for later viewing.
Smartlook (Smartsupp.com, s.r.o.)
Smartlook is a heat mapping and session recording service provided by Smartsupp.com, s.r.o. Personal Data collected: Cookies, Usage Data, and various types of information, as specified in the service's privacy policy. Place of processing: Czech Republic – For more details on data management, please consult the Privacy Policy.
Hosting and backend infrastructure
Hosting services are intended to host Data and files that enable this Application to function, distribute its content, and provide a ready-to-use infrastructure for delivering specific functionalities. Some of these services use geographically distributed servers in different locations, making it difficult to determine the precise location where Personal Data is stored.
Google Cloud Storage (Google Inc.)
Google Cloud Storage is a hosting service provided by Google Inc. Personal Data collected includes various types of information, as specified in the service's privacy policy. Place of processing: United States – For more details on data management, consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Interaction with live chat platforms
This service allows for interaction with third-party live chat platforms directly from the pages of this Application. This allows the User to contact this Application's support service or for this Application to contact the User while they are browsing its pages. If a live chat platform interaction service is installed, it may collect Usage Data related to the pages where it is installed, even if Users do not use the service. Furthermore, live chat conversations may be recorded.
Facebook Messenger Customer Chat (Facebook, Inc.)
The Facebook Messenger Customer Chat is a service for interacting with the Facebook Messenger live chat platform, provided by Facebook, Inc. Personal Data collected: Cookies, Data communicated during the use of the service, Usage Data, and 'About Me' information. Place of processing: United States – For more details on data management, consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Interaction with support and feedback platforms
Interaction with support and feedback platforms services allow direct interactions with platforms managed by third parties, directly from the pages of this Application. Even if Users do not explicitly use these services, Usage Data related to the pages where these services are installed may still be collected.
Zendesk Widget (Zendesk, Inc.)
The Zendesk Widget is a service for interacting with the Zendesk support and feedback platform provided by Zendesk Inc. Personal Data collected: last name, Cookies, Usage Data, email address, first name, phone number, and username. Place of processing: United States – For more details on data management, consult the Privacy Policy. Note: The party is adherent to the Privacy Shield.
Interaction with external social networks and platforms
These services allow for direct interaction with social networks or other external platforms directly from the pages of this Application. The interactions and information acquired are subject to the User’s privacy settings for each social network.
Facebook Like button and social widgets (Facebook, Inc.)
The Facebook Like button and social widgets are services allowing interaction with the Facebook social network provided by Facebook, Inc. Personal Data collected: Cookies and Usage Data. Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
Tweet button and Twitter social widgets (Twitter, Inc.)
The Tweet button and Twitter social widgets are services allowing interaction with the Twitter social network provided by Twitter, Inc. Personal Data collected: Cookies and Usage Data. Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
Pinterest “Pin it” button and social widgets (Pinterest)
The “Pin it” button and Pinterest social widgets are services allowing interaction with the Pinterest platform provided by Pinterest Inc. Personal Data collected: Cookies and Usage Data. Place of processing: United States – Privacy Policy.
Google+ +1 button and social widgets (Google Inc.)
The +1 button and Google+ social widgets are services allowing interaction with the Google+ social network provided by Google Inc. Personal Data collected: Cookies and Usage Data. Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
LinkedIn button and social widgets (LinkedIn Corporation)
The LinkedIn button and social widgets are services allowing interaction with the LinkedIn social network provided by LinkedIn Corporation. Personal Data collected: Cookies and Usage Data. Place of processing: United States.
Tumblr button and social widgets (Tumblr Inc.)
The Tumblr button and social widgets are services allowing interaction with the Tumblr social network provided by Tumblr Inc. Personal Data collected: Cookies and Usage Data. Place of processing: United States.
YouTube button and social widgets (Google Inc.)
The YouTube button and social widgets are services allowing interaction with the YouTube social network provided by Google Inc. Personal Data collected: Usage Data. Place of processing: United States. Party adherent to the Privacy Shield.
Location-based interactions
Non-continuous geolocation (this Application)
This Application may collect, use, and, if authorized by the User, share location data to provide location-based services. The geographic location of the User is obtained only upon explicit request by the User or when the User allows the application to automatically detect the location. Most browsers and devices provide tools to refuse geographic tracking, thus ensuring control over the sharing of such data. Personal Data collected: the User's precise location.
Permissions for accessing Personal Data on the User's device
This Application requires the User to grant certain permissions, allowing access to data on their device, as indicated below.
Permissions for accessing Personal Data on the User's device (this Application)
This Application requests authorization from the User to access the device's camera. This allows the application to capture images and videos from the camera for specific purposes as indicated in this document.
SPAM protection
The Google reCAPTCHA service is used by this Application to protect traffic from unwanted content or content considered SPAM. This service helps determine if a user is a human or a bot, thereby reducing the sending of unwanted messages. Personal Data collected by Google reCAPTCHA includes cookies and usage data. For further details on privacy and terms of use, you can refer to Google's privacy policy. This service is subject to the Privacy Shield, which is an agreement between the United States and the European Union that establishes certain standards for the protection of personal data.
Advertising
These services allow the use of User Data for commercial communication purposes in various advertising forms, including banners, which may be personalized based on the user's interests. It is important to note that not all personal data is used for advertising purposes, and detailed information and terms of use are specified below.
Some of the services mentioned may use cookies to identify the user or use behavioral retargeting, a method aimed at showing personalized advertisements based on the user's interests and behavior, even outside of this Application. For more details, we recommend consulting the privacy policies provided by each service.
Furthermore, in addition to the opt-out options offered by the services listed for deactivating targeted advertising, users have the option to opt-out of receiving cookies from third-party services by visiting the Network Advertising Initiative opt-out page.
eADV (eADV s.r.l.)
eADV is an advertising service provided by eADV s.r.l.
Personal Data collected: Cookies and Usage Data.
Place of processing: Italy – Privacy Policy.
Facebook Audience Network (Facebook, Inc.)
Facebook Audience Network is an advertising service provided by Facebook, Inc. This service uses various identifiers, including the Android Advertising ID and the Advertising Identifier for OS (such as IDFA on iOS devices), to deliver targeted ads to users. It also uses users' advertising preferences to show them relevant ads.
If you wish to control the sharing of your advertising preferences or opt-out from Audience Network's targeting features, you can do so through your mobile device settings. You can make changes to the advertising settings available on your mobile devices or follow the specific instructions from Audience Network found in the application's privacy policy.
Please remember that you can consult Facebook's privacy policy for further details on Facebook's use of data and your privacy options. The headquarters of Facebook, Inc. is in the United States.
Registration and authentication
Registration and authentication services allow users to register or authenticate on an application, granting them access to specific services. In some cases, these services may be provided by third parties. Below are two registration and authentication services:
Facebook Authentication (Facebook, Inc.)
This registration and authentication service is provided by Facebook, Inc. and is connected to the Facebook social network. With this service, users can use their Facebook credentials to register or log in to the application. This service may provide the application with some information about the user registered via Facebook. For further details on the types of data collected, consult the service's privacy policy. The headquarters of Facebook, Inc. is in the United States.
Remarketing and behavioral targeting
Remarketing and behavioral targeting services allow this Application and its partners to personalize advertisements based on the User's past use of the Application. This personalization occurs by using information collected through tracking Usage Data and the use of cookies.
Personalized advertisements may be displayed both within this Application and on third-party websites. The goal is to provide the User with more relevant advertisements based on their interests and past behavior within the Application.
It is important to note that the User has the right to opt-out of this advertisement personalization. This can be done via the privacy settings or the opt-out options provided by the remarketing and behavioral targeting services. Furthermore, it is possible to opt-out of receiving cookies from third-party services by visiting the Network Advertising Initiative opt-out page.
Please note that opting out does not mean you will no longer see advertisements, but rather that the advertisements you see may not be personalized based on your past behavior.
AdWords Remarketing (Google Inc.)
This service is provided by Google and is connected to the AdWords advertising network. It uses cookies and usage data to personalize advertisements. You can opt-out by visiting Google's opt-out page. Place of processing: United States – Privacy Policy – Opt Out.
Facebook Custom Audience (Facebook, Inc.)
This service is provided by Facebook and is connected to the Facebook advertising network. It uses cookies and email for remarketing. You can opt-out of receiving these personalized ads by following the instructions provided in the privacy policy. Place of processing: United States – Privacy Policy – Opt Out. Party adherent to the Privacy Shield.
Facebook Remarketing (Facebook, Inc.)
Similar to the previous service, but uses only cookies and usage data to personalize ads. Place of processing: United States – Privacy Policy – Opt Out. Party adherent to the Privacy Shield.
LinkedIn Website Retargeting (LinkedIn Corporation)
This service is provided by LinkedIn and is connected to the LinkedIn advertising network. It uses cookies and usage data. You can opt-out by following the instructions in the privacy policy. Place of processing: United States – Privacy Policy – Opt Out.
Remarketing with Google Analytics for display advertising (Google Inc.)
This service links the tracking activity of Google Analytics with the AdWords advertising network and the DoubleClick cookie. It uses cookies and usage data to personalize ads. You can opt-out by visiting Google's opt-out page. Place of processing: United States – Privacy Policy – Opt Out. Party adherent to the Privacy Shield.
Analytics
The traffic monitoring and analysis services listed in this section allow the Data Controller to collect and analyze traffic data and user behavior. Below you will find some information about each service:
Matomo
Matomo is a statistics service that analyzes and displays the personal data of users who visit websites. This service collects cookies and usage data. You can opt-out by following the instructions in the privacy policy. Place of processing: United States – Privacy Policy – Opt Out. Party adherent to the Privacy Shield.
Google Analytics (Google Inc.)
Google Analytics is a web analysis service provided by Google Inc. and used to track and examine the use of this Application. Google may use the personal data collected to personalize ads within its advertising network. You can opt-out by following the instructions provided in the privacy policy. Place of processing: United States – Privacy Policy – Opt Out. Party adherent to the Privacy Shield.
Google Analytics with anonymized IP (Google Inc.)
This integration of Google Analytics anonymizes the user's IP address. Anonymization works by shortening the IP address within the borders of EU member states or other countries party to the Agreement on the European Economic Area. You can opt-out by following the instructions provided in the privacy policy. Place of processing: United States – Privacy Policy – Opt Out. Party adherent to the Privacy Shield.
ShinyStat (Triboo Data Analytics S.R.L.)
ShinyStat is a statistics service provided by Triboo Data Analytics S.R.L. This service anonymizes the user's IP address. You can opt-out by following the instructions in the privacy policy. Place of processing: Italy – Privacy Policy – Opt Out.
ShinyStat Free (Triboo Data Analytics S.R.L.)
ShinyStat Free is a statistics service provided by the same company. This service also anonymizes the user's IP address. You can opt-out by following the instructions in the privacy policy. Place of processing: Italy – Privacy Policy – Opt Out.
Google Website Optimizer (Google Inc.)
Google Website Optimizer is an A/B testing service provided by Google Inc. This service allows the Data Controller to perform A/B tests to evaluate changes made to the Application and the effect of these changes on user response. Google may use the personal data collected to personalize ads within its advertising network. Personal Data collected: cookies and usage data.
Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
Transfer of Data outside the EU
The Data Controller may transfer Personal Data collected within the European Union (EU) to third countries only in compliance with a specific legal basis. These data transfers occur in accordance with one of the legal bases described below. To obtain more detailed information on the legal basis specifically applicable to each service, we recommend contacting the Data Controller directly or referring to the privacy policies provided for each service.
Transfer to third countries based on standard contractual clauses (this Application)
When the legal basis for the transfer of Personal Data from the European Union (EU) to third countries is based on the standard data protection clauses adopted by the European Commission, it means that the transfer takes place in compliance with the data protection rules and standards established at the community level.
Under these circumstances, the recipients of the Personal Data have agreed to process such data in accordance with the levels of protection provided by European legislation. Users who wish to obtain further information on the details of such transfers or the data protection mechanisms can contact the Data Controller directly. You can find the Data Controller's contact details in the dedicated section of the privacy policy or in the platform's legal documents.
The Personal Data collected under these circumstances may concern various types of information, but it is important to emphasize that they are processed in accordance with the data protection standards provided by the European Commission.
Transfer to third countries based on consent (this Application)
When this is the legal basis, the transfer of Personal Data from the EU to third countries occurs only when the User has expressly consented to such transfer after being informed of the risks due to the absence of an adequacy decision and the adequate safeguards adopted.
In such cases, the Data Controller informs the Users and collects their consent through this Application.
Personal Data collected: various types of Data.
Transfer of Data to countries guaranteeing European standards (this Application)
When this is the legal basis, the transfer of Personal Data from the EU to third countries occurs based on an adequacy decision adopted by the European Commission. The European Commission adopts adequacy decisions concerning individual third countries that it deems to guarantee a level of protection of Personal Data comparable to that provided by European legislation on the protection of Personal Data. The User can view the updated list of adequacy decisions on the European Commission's website.
Personal Data collected: various types of Data.
Transfer of Data from the EU and/or Switzerland to the United States based on the Privacy Shield (this Application)
When this is the legal basis, the transfer of Personal Data from the EU or Switzerland to the United States occurs based on the EU-US Privacy Shield agreement or the Switzerland-US Privacy Shield agreement.
In particular, Personal Data is transferred to entities that have self-certified under the Privacy Shield framework and therefore guarantee an adequate level of protection for the transferred Data. The services involved in the Data transfer are listed in the respective sections of this document. Among them, those adhering to the Privacy Shield can be identified by consulting their respective privacy policy or verifying their registration status in the official Privacy Shield list.
Users' rights under the Privacy Shield are described in an always up-to-date form on the website of the US Department of Commerce.
The transfer of Personal Data from the EU or Switzerland to the United States to entities not (or no longer) enrolled in the Privacy Shield is permissible only under another valid legal basis. Users can request information from the Data Controller regarding such legal bases.
Personal Data collected: various types of Data.
Displaying content from external platforms
This type of service allows you to view content hosted on external platforms directly from the pages of this Application and interact with them.
If such a service is installed, it is possible that, even if Users do not use the service, it will collect traffic data related to the pages where it is installed.
Google Fonts (Google Inc.)
Google Fonts is a service offered by Google Inc. that allows this Application to incorporate font styles within its web pages.
Personal Information collected: This service collects usage data and various types of data as indicated in the service's privacy policy.
Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
Vimeo video (Vimeo, LLC)
Vimeo is a service for viewing video content, managed by Vimeo, LLC, which allows this Application to embed such content within its pages.
Personal Information collected: This service collects cookies and usage data.
Place of processing: United States – Privacy Policy.
Google Maps widget (Google Inc.)
Google Maps is a mapping service offered by Google Inc., which allows this Application to embed maps within its pages.
Personal Information collected: This service collects cookies and usage-related data.
Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
TripAdvisor widget (TripAdvisor LLC)
The TripAdvisor Widget is a service for displaying content managed by TripAdvisor LLC, which allows this Application to include content from this external source within its pages.
Personal Information collected: This service collects cookies and usage-related data.
Place of processing: United States – Privacy Policy.
Weather Widget (Open Weather)
The Weather Widget is a service for presenting weather information managed by Open Weather.
Personal Information collected: This service collects usage data.
Place of processing: Italy – Privacy Policy.
Instagram widget (Instagram, Inc.)
Instagram is an image-sharing platform managed by Instagram, Inc., which allows this Application to include such content within its pages.
Personal Information collected: This service collects cookies and usage data.
Place of processing: United States – Privacy Policy.
SoundCloud widget (SoundCloud Limited)
SoundCloud is an audio content streaming service managed by SoundCloud Limited, which allows this Application to embed such content within its pages.
Personal Information collected: This service collects usage data.
Place of processing: Germany – Privacy Policy.
YouTube video widget (Google Inc.)
YouTube is a video content sharing platform managed by Google Inc., which allows this Application to embed such content within its pages.
Personal Information collected: This service collects cookies and usage data.
Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
YouTube video widget without cookies (Google Inc.)
YouTube is a service for displaying video content managed by Google Inc., which allows this Application to embed such content within its pages.
It should be noted that this widget is set up in such a way that it does not collect information or cookies from Users on this Application, unless Users play the video.
Personal Information collected: This service collects usage data.
Place of processing: United States – Privacy Policy. Party adherent to the Privacy Shield.
Further information about Personal Data
ShippyPro
https://www.shippypro.com/privacy.html
SMS Hosting
https://www.smshosting.it/it/privacy-smshosting
PayU
https://corporate.payu.com/payu-privacy-policy
Eadv
https://www.eadv.it/privacy.php
Pixabay
https://pixabay.com/it/service/privacy/
Analysis of User Data and predictions (“Profiling”)
The Data Controller may process the usage data collected through this Application to create or update user profiles. This type of processing allows the Data Controller to evaluate user choices, preferences, and behavior for the specific purposes described in the relevant sections of this document.
User profiles may also be created through the use of automated tools, such as algorithms, which may be provided by third parties. For further details on profiling activity, the user can refer to the appropriate sections of this document.
The user always has the right to object to this profiling activity. For more information on the user's rights and how to exercise them, please consult the section of this document relating to user rights.
Personal Data collected from sources other than the User
The Data Controller of this Application may have legitimately acquired the user's personal data without their direct participation, using sources provided by third parties. This is done in accordance with the legal bases described in the section on the legal bases of processing.
If the Data Controller has collected personal data in this way, the user can find specific information about the sources used in the relevant sections of this document or by contacting the Data Controller directly.
Push notifications
This Application may send push notifications to the User.
Sale of goods and services online
The personal data collected are used to provide services to the user or for the sale of products, including payment processes and, if necessary, the delivery of goods. The personal data collected to facilitate payments may include information related to the credit card, the bank account used for the bank transfer, or other provided payment methods. The payment data collected by this Application depends on the payment system used.
User Rights
Users have the right to exercise specific rights regarding the data processed by the Data Controller. In particular, the user has the right to:
Withdraw consent: The user can withdraw consent previously given for the processing of their personal data at any time.
Object to processing: The user can object to the processing of their data when it occurs on a legal basis other than consent. Further details on the right to object are available in a section below.
Access their data: The user has the right to obtain information about the data processed by the Data Controller, on certain aspects of the processing, and to receive a copy of the processed data.
Verify and request rectification: The user can verify the accuracy of their data and request their update or correction.
Obtain restriction of processing: Under certain conditions, the user can request the restriction of the processing of their data. In this case, the Data Controller will not process the data for any other purpose than their storage.
Obtain the erasure or removal of their personal data: Under certain conditions, the user can request the deletion of their data by the Data Controller.
Receive their data or have it transferred to another controller: The user has the right to receive their data in a structured, commonly used, and machine-readable format and, where technically feasible, to obtain its transfer to another controller. This right applies when the data is processed by automated means and the processing is based on the user's consent, on a contract to which the user is a party, or on pre-contractual measures.
Lodge a complaint: The user can lodge a complaint with the competent data protection supervisory authority or take legal action.
Details on the right to object
Users have the right to object to the processing of their personal data when such data is processed in the public interest, in the exercise of public powers vested in the Data Controller, or for the purposes of the legitimate interests pursued by the Data Controller, for reasons related to their particular situation.
Furthermore, it is important to emphasize that if users' personal data are processed for direct marketing purposes, users can object to such processing without having to provide any justification. Users can check whether the Data Controller processes personal data for direct marketing purposes by consulting the relevant sections of this document.
How to exercise rights
To exercise their rights, users can send a request using the contact details provided by the Data Controller as indicated in this document. Requests are processed free of charge, and the Data Controller undertakes to respond as soon as possible, in any case within one month.
Further information on the processing
Legal action: The User's Personal Data may be used for legal purposes by the Data Controller in Court or in the stages leading to possible legal action arising from improper use of this Application or the related Services.
The User declares to be aware that the Data Controller may be required to reveal personal data upon request of public authorities.
Specific information: Upon request by the User, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information concerning particular Services or the collection and processing of Personal Data.
System logs and maintenance: For operation and maintenance purposes, this Application and any third-party services used may collect system logs, which are files that record interactions and may also contain Personal Data, such as the User's IP address.
Information not contained in this policy: More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time using the contact information provided.
Exercise of Rights by Users
The individuals to whom the Personal Data refer have the right to:
Obtain confirmation as to whether or not their data exists with the Data Controller.
Know the origin and content of the data, as well as request a copy of all processed data.
Verify the accuracy of the data or request its update, correction, transformation into anonymous form, or blocking of personal data processed in violation of the law.
Object, for legitimate reasons, to the processing of personal data.
Request the deletion of the account and the processed data.
Requests regarding these rights must be addressed to the Data Controller.
Regarding data processing on HMDVENTS.COM, requests can be sent to hmdamministrazione@gmail.com. To delete your own account, this can be done via a specific link provided.
However, it is important to note that this Application does not support "Do Not Track" requests. To check whether any third-party services used support these requests, you can consult their respective privacy policies.
Changes to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time, notifying users on this page. Please therefore consult this page regularly, referring to the date of the last modification indicated at the bottom.
Should the user object to any of the changes to this Policy, they must cease using this Application and may request the Data Controller to remove their Personal Data. Unless otherwise specified, the previous privacy policy will continue to apply to the Personal Data collected up to that time.
Definitions and References
Personal Data (or Data): This is any information relating to an identified or identifiable natural person, even indirectly.
Usage Data: This is data collected automatically by this Application or by third-party applications used by this Application, such as IP addresses, URI addresses, time of requests, and other data related to the use of the application.
User: This is the person using the application, who must be the Data Subject of the processed data or be authorized by them.
Data Subject: The natural or legal person to whom the Personal Data refers.
Data Processor (or Processor): This is the natural or legal person, public authority, agency, or other body which processes personal data on behalf of the Data Controller.
Data Controller (or Controller): This is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
This Application: Refers to the hardware or software tool used to collect the Users' Personal Data, i.e., the application itself.
Cookie: Small piece of data stored on the User's device.
Legal references: This privacy policy is based on multiple legislative frameworks, including Articles 13 and 14 of Regulation (EU) 2016/679 (GDPR) and the Swiss Federal Act on Data Protection (FADP).
Contacts: For questions regarding this privacy policy, you can contact HMDAMMINISTRAZIONE@GMAIL.COM
Date of last review: October 24, 2023
This response is AI-generated, for reference only.