Dental Shooting S.R.L.S. takes the privacy of users seriously and is committed to respecting it. This privacy policy (“Privacy Policy”) describes the personal data processing activities carried out by Dental Shooting S.R.L.S. through the Dental Shooting application (the “Application”) and the commitments made by the Company in this regard.
Dental Shooting S.R.L.S. may process users’ personal data when they visit the Application and use the services and features available on it. The notice is published pursuant to Articles 13-14 of Reg. EU 2016/679. Where required by Reg. EU 2016/679, user consent will be requested before proceeding with the processing of their personal data. If the user provides personal data of third parties, they must ensure that the communication of such data to Dental Shooting S.R.L.S. and the subsequent processing for the purposes specified in the applicable privacy notice complies with Reg. EU 2016/679 and the applicable regulations.
Data Controller
Name: Dental Shooting S.R.L.S.
Address: Via Arnolfo 32, 50121 Florence
VAT Number: 06704000485
Email Address of the Data Controller: info@dentalshooting.com
Types of Data Collected
In addition to so-called “navigation data” (see below), personal data voluntarily provided by the user when interacting with the features of the Application or requesting the services offered on the Application may be processed.
Personal Data collected includes: personal identification data, company identification data, email, and phone contacts.
Failure by the User to provide certain Personal Data may prevent this Application from delivering its services. The User assumes responsibility for third-party Personal Data published or shared through this Application and guarantees that they have the right to communicate or disseminate such data, relieving the Data Controller from any liability towards third parties.
Methods and Place of Processing Collected Data
Processing Methods
The Data Controller performs processing operations in such a way as to ensure the logical, physical, and confidentiality security of your personal data, adopting appropriate security measures. The Data Controller is committed to protecting the security of users’ Personal Data and complies with the security provisions required by applicable regulations to prevent data loss, unlawful or illegal use of data, and unauthorized access to it.
The user can help the Data Controller update and keep their personal data accurate by communicating any changes related to their address, qualification, contact information, etc. Personal Data may be communicated to:
- Individuals and/or legal entities, public and/or private, when the communication is necessary or functional to the conduct of our activities and in the ways and for the purposes described (e.g., hosting providers, communication agencies);
- All subjects to whom access to such data is granted by legislative measures;
- Our collaborators and employees, within the scope of their duties. The Data Controller will ensure that once the purposes of this processing are achieved, the data will be deleted.
In any case, in the cases provided for, the User may always request the cessation of Processing or the deletion of Data.
Purposes of Processing Collected Data
Dental Shooting S.R.L.S. may process personal data for the following purposes: use by users of services and features available on the Application, managing requests and reports from users. Furthermore, with the additional and specific optional consent of the user, Dental Shooting S.R.L.S. will process personal data for additional purposes such as, for example, sending newsletters, marketing activities (sending promotional material and/or commercial communications related to the Company’s services) to the indicated contacts, both through traditional methods and/or contact means (such as postal mail, operator calls, etc.) and automated methods (such as communications via the internet, fax, email, SMS, mobile device applications like smartphones and tablets, social network accounts, automated operator calls, etc.).
Specifically, the collected data are processed for the following purposes: sending targeted emails with commercial proposals, sending newsletters.
Details on Personal Data Processing
Contacting the User
The Application provides the User with a contact form through which personal data can be entered, which will be used to establish contact based on the stated purposes. This type of service allows for the management of a database with data such as email addresses, phone contacts, or other personal data used to communicate with the User.
These services may collect data related to the User’s interaction (e.g., reading the email message) and be used to carry out activities related to data collection.
Mailing Lists or Newsletters
By signing up for the mailing list or newsletter, the personal data provided by the User are included in the list and may be used to deliver email messages containing information, including commercial and promotional content, related to this Application.
Brevo
Brevo is a platform for email marketing and marketing automation.
Payment Management
The integration of payment management services (virtual POS) allows payments to be made directly on the Application via credit card, bank transfer, or other available methods. Data collected during the payment process are acquired by the manager and used to process the charge. Additionally, this data may be used to send messages related to the payment operation (e.g., sending invoices, payment notifications).
Hosting Services
These services are aimed at storing data and files that make up the Web Application and enable its visibility.
Amazon AWS is a cloud services platform provided by Amazon.com.
Cookie Policy
This Application does not use Cookies. For more information and detailed notice, you can consult the Cookie Policy. Cookies are specific to web browsers. They are small text files stored by the browser on the user’s device to retain information between visits to a website. Cookies are managed by browsers through specific HTTP mechanisms.
The Application does not operate within a web browser and therefore does not use HTTP in the same way.
Additional Information on Processing
Defense in Legal Proceedings
The User’s Personal Data may be used by the Data Controller in legal proceedings or preparatory phases for defense against misuse of this Application or related services by the User. The User acknowledges that the Data Controller may be required to disclose Data at the request of public authorities.
Specific Notices
Upon request by the User, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual notices regarding specific services, or the collection and processing of Personal Data.
System Logs and Maintenance
For operational and maintenance needs, this Application and any third-party services it uses may collect system logs, which are files that record interactions and may also contain Personal Data, such as the User’s IP address.
Information Not Contained in This Policy
Additional information regarding the processing of Personal Data may be requested at any time from the Data Controller using the contact information.
Changes to This Privacy Policy
The Data Controller reserves the right to make changes to this privacy policy at any time, with notice to Users on this page. Please check this page frequently, taking note of the last modification date indicated at the bottom. In case of non-acceptance of the changes to this privacy policy, the User is required to cease using this Application and may request the Data Controller to remove their Personal Data. Unless otherwise specified, the previous privacy policy will continue to apply to Personal Data collected up to that point.
Rights of the Data Subject
Article 15 (right of access), Article 16 (right to rectification) of Reg. EU 2016/679
The data subject has the right to obtain from the data controller confirmation as to whether or not personal data concerning them are being processed and, where that is the case, access to the personal data and the following information:
- the purposes of the processing;
- the categories of personal data concerned;
- the recipients or categories of recipients to whom the personal data have been or will be disclosed, particularly if recipients are third countries or international organizations;
- the period for which the personal data will be stored or, if not possible, the criteria used to determine that period;
- the existence of the data subject’s rights to request from the data controller rectification or erasure of personal data or restriction of processing concerning them or to object to such processing;
- the right to lodge a complaint with a supervisory authority;
- where the personal data are not collected from the data subject, any available information as to their source;
- the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.
The data subject also has the right to obtain the rectification of inaccurate personal data concerning them without undue delay and to have incomplete personal data completed, including by means of providing a supplementary statement.
Right to Erasure (Right to be Forgotten)
The data subject has the right to obtain from the data controller the erasure of personal data concerning them without undue delay and the data controller has the obligation to erase personal data without undue delay where one of the following grounds applies:
- the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
- the data subject withdraws consent on which the processing is based according to Article 6(1)(a) or Article 9(2)(a), and where there is no other legal ground for the processing;
- the data subject objects to processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing, or the data subject objects to processing pursuant to Article 21(2);
- the personal data have been unlawfully processed;
- the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the data controller is subject;
- the personal data have been collected in relation to the offer of information society services referred to in Article 8(1).
However, the right to erasure is not applicable to the extent that processing is necessary for:
- exercising the right of freedom of expression and information;
- compliance with a legal obligation which requires processing by Union or Member State law to which the data controller is subject;
- the performance of a task carried out in the public interest or in the exercise of official authority vested in the data controller;
- reasons of public interest in the area of public health;
- archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1);
- the establishment, exercise or defense of legal claims.
Right to Restriction of Processing
The data subject has the right to obtain from the data controller restriction of processing where one of the following applies:
- the data subject contests the accuracy of the personal data, for a period enabling the data controller to verify the accuracy of the personal data;
- the processing is unlawful and the data subject opposes the erasure of the personal data and requests instead the restriction of their use;
- the data controller no longer needs the personal data for the purposes of processing, but they are required by the data subject for the establishment, exercise, or defense of legal claims;
- the data subject has objected to processing pursuant to Article 21(1), pending the verification whether the legitimate grounds of the data controller override those of the data subject.
Right to Data Portability
The data subject has the right to receive the personal data concerning them, which they have provided to a data controller, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another data controller without hindrance from the data controller to which the personal data have been provided, where:
- the processing is based on consent pursuant to Article 6(1)(a) or Article 9(2)(a) or on a contract pursuant to Article 6(1)(b); and
- the processing is carried out by automated means.