Privacy Policy

PRIVACY POLICY CORPTAPE

Corptape Srl, [hereinafter “Corptape”] VAT number 12193920019, with registered office in Turin, corso Duca degli Abruzzi, 2, considers the privacy of your personal data to be a priority and guarantee that it is protected against potential risks. For this reason, Corptape provides the operating method of the Corptape’s platform [hereinafter “Platform”] for what concern the personal data processing [hereinafter “Personal Data”] of the user [hereinafter “User” or “Involved Party”].

Corptape applies policies and practices concerning the collection and use of Personal Data and the exercise of the rights recognized by the applicable legislation and will update such policies and practices whenever necessary and in any event whenever regulatory and organizational changes that may affect the processing of your Personal Data arise.

The information contained in this Privacy Policy is provided by EU Regulation (EU) 2016/679 [“GDPR”] and explains how the Data Controller collects and processes the Personal Data collected from users browsing the Platform: www.corptape.com and  www.app.corptape.com [hereinafter “Website”].

Data Controller 

Corptape Srl

📂 Vat Number: 12193920019

📫  Registered Office: Turin, Corso duca Degli Abruzzi, 2 – Torino

🖂 Email privacy@corptape.com

Is the data controller pursuant to GDPR [hereinafter “Data Controller”].

Data Processed and for what purpose from Corptape

Usage Data. The computer systems and procedures provided for the function of Website collect certain personal information during normal operation, the transmission of which is subject to the use of data exchange protocols on the Internet. Corptape may process your Personal Data, including electronic (e.g. logical access) or traffic data collected via your use of services displayed on the Website, only where this is strictly necessary and proportionate to ensuring the security of their IT networks, and to protect them against unforeseen events or illicit or malicious acts that compromise availability, authenticity, integrity and the confidentiality of Personal Data stored or transmitted. These data are used and processed only in order to check the correct use of Corptape’s Platform. The data could be used for responsibilities assessment in case of information offences to the prejudice of Corptape or other Users.

Data voluntarily provided by the User. The Data Controller will acquire any Personal Data you may voluntarily include in communications via the “Say Hello to us” section sending email to the address indicated on the Website: letstalk@corptape.com. Please only provide information necessary to respond to your requests in such communications and to provide information by email. The processing of data for this purpose is carried out on the basis of the legitimate interest of the Data Controller to satisfy such requests or reply to such communications. 

Registration Data. The Data Controller will acquire the data that User inserts in the appropriate registration form during the use od the Platform, as for example Personal Data [Name, Surname], contact details [e-mail, address,…], access credentials. Failure to provide the User with certain Personal Data may prevent this Website from providing its services. The User who communicates to the Data Controller the Personal Data of third parties is directly and exclusively responsible for their provenance, collection, processing.

Promotional and Marketing Data. The Personal Data you provide may be used by the Data Controller in order to send promotional material, only in the event that you have previously given consent to the processing of data for marketing purposes by ticking the appropriate box in the “Registration” section. 

Cookie. In order to improve your Corptape’s Platform experience, Corptape makes use of cookies. For more information, please view our cookie policy at the following link corptape.com/cookie

Purposes and legal basis 

Registration, User authentication and service provision. This data is collected and used for the sole purpose of providing the requested service. In relation to this purpose, the legal basis is the processing necessary for the execution of a contract to which the Involved Party is party or to the execution of pre-contractual measures a contract to which the interested party is party or to the execution of pre-contractual measures.

Management of data used by the Involved Party. These data are used only to check the correct operation and the improvement of the Platform. In relation to this purpose, the legal basis is the legitimate interest of the Data Controller to the proper functioning of the supply.

Management and response to the requests of the User. The User may address general requests and reports writing to letstalk@corptape.com. In relation to this purpose, the legal basis is the processing necessary for the execution of a contract to which the Involved Party is party or to the execution of pre-contractual measures a contract to which the User is party or to the execution of pre-contractual measures.

Management of purchase data. When purchasing services through the Platform, the Personal Data provided as part of the purchase process, and, in case it is a registered user, Personal Data provided by you for registration purposes to the Platform will be collected and processed by Corptape in order to manage the sale and to prevent any abuse/fraud in payments. In relation to this purpose, the legal basis is the processing necessary for the execution of a contract to which the Involve Party is party or to the execution of pre-contractual measures a contract to which the User is party or to the execution of pre-contractual measures.

Management of Promotional Data. Personal Data provided by User in order to receive promotional material will be collected and processed for marketing purposes. The legal basis for this processing is your consent. 

Management and execution of legal requirements. For the management and execution of any compliance required by law, the processing is necessary to fulfil a legal obligation to which the Data Controller is subject.

Management of disputes and any disputes. In case of management of disputes and/or any disputes, the legal basis for this specific processing is the legitimate interest of the Data Controller

Where Personal Data is processed

The Personal Data are mainly processed at the premises of the Data Controller and in the places where the Data Processors, if appointed by Corptape, are located. For further information about the place of storage of Personal Data and/ or the list of Data Processors appointed by Corptape you can contact the Data Controller at the addresses indicated in “How to contact Corptape”. 

Retention Period

In order to ensure compliance with the principles of necessity and proportionality of the processing, Corptape has identified several times of storage of Personal Data in relation to the individual purposes pursued and in particular:

• the Personal Data that you enter in the “Say Hello to us” section in order to request information for the time necessary to provide the requested service; 
• for the purposes of the management and execution of the obligations provided for by law, whether of an accounting, administrative, fiscal and/or other nature, the Personal Data will be kept for the time strictly necessary for this purpose;
• for the purposes of the management of disputes and any disputes, the Personal Data will be kept for the time strictly necessary for this purpose and, in any case, no later than the applicable limitation periods;
• for the purpose of processing of your Personal Data for marketing purposes, in case of User’s consent, unless you revoke your consent to the processing earlier, Personal Data will be kept for 2 years.

All Personal Data will be deleted upon expiry of the retention period. Upon expiry of this period, the rights of access, cancellation, rectification and the right to portability of Personal Data can no longer be exercised.

Categories of Recipients 

Corptape, in its quality of Data Controller, may also process with others the Personal Data of the User with: 

• the subjects with whom it is necessary to interact for the provision of the services offered by the Platform, which generally act as Data Processors appointed by the Data Controller;

• persons authorised by the Data Controller to process Personal Data who have committed to confidentiality or have an appropriate legal obligation of confidentiality [Corptape employees, Corptape collaborators, …];

• judicial or supervisory authorities, public sector (domestic and foreign) administrations, bodies and organisations, and professional bodies;

• Professionals and advisors, also not belonging to Corptape’s network.

Except as specified above, your Personal Data will be processed only by employees and / or collaborators of the Data Controller formally authorized pursuant to the GDPR, using security measures to protect and safeguard your data as provided by the GDPR. Your Personal Data will not be otherwise disclosed in any way.

Transfer of Personal Data outside the European Economic Area

Countries outside of the European Economic Area (EEA) do not always offer the same levels of protection to your Personal Data, so European law has prohibited transfers of Personal Data outside of the EEA unless the transfer meets certain criteria. 

Personal Data may be transferred outside the European Economic Area, namely outside the European Union and Iceland, Norway and Liechtenstein. Whenever Corptape transfers your Personal Data out of the EEA, Data Controller do its best to ensure a similar degree of security of data by ensuring at least one of the following safeguards is in place:

• Corptape only transfers User’s Personal Data to countries that the European Commission have approved as providing an adequate level of protection for Personal Data by; or
• Where Corptape uses certain service providers, Data Controller may use specific contracts or codes of conduct or certification mechanisms approved by the European Commission which give Personal Data the same protection it has in Europe; or
• Corptape will only transfer your Personal Data to companies that comply with the GDPR.

If none of the above safeguards is available, Corptape may request User’s explicit consent to the specific transfer. You will have the right to withdraw this consent at any time.

Interaction with social networks and third party links 

Corptape’s Platform allows you to interact with social networks, or other external platforms, directly from the pages of this Website. The information acquired by the Platform through this interaction is in any case subject to the User’s privacy settings related to each social network. If an interaction service with social networks is installed, it is possible that, even if the User do not use the service, the latter collect traffic data relating to the pages in which it is installed. 

Facebook social widgets 

Facebook social widgets are services of interaction with the social network Facebook, provided by Facebook Ireland Ltd.

Personal Data collected: Cookies and Usage Data

Place of processing: Ireland – Privacy Policy

Instagram social widgets

Instagram social widgets are services of interaction with the social network, provided by Facebook Ireland Ltd.

Personal Data collected: Cookies and Usage Data

Place of processing: Ireland – Privacy Policy 

This Website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share User’s data. Corptape does not control these third-party websites and is not responsible for their privacy statements. When User leaves Corptape’s Website, Data Controller encourages Users to read the privacy notice of every website visited.

Your rights 

In compliance with GDPR, you can exercise the rights indicated therein and in particular:

• Right of access – The right to obtain confirmation as to whether or not Personal Data concerning yourself are being processed and, where that is the case, to obtain information, in particular about: the purposes of the processing, the categories of Personal Data processed and the period of storage, the recipients to whom the Personal Data may be disclosed (Article 15 of GDPR).

• Right to rectification – The right to obtain, without undue delay, the rectification of inaccurate Personal Data concerning yourself and to have incomplete Personal Data completed (Article 16 of GDPR).

• Right to erasure – The right to obtain, without undue delay, the erasure of your Personal Data, in the circumstances envisaged by GDPR (Article 17 of GDPR).

• Right to restriction of processing – The right to obtain from the Data Controller the restriction of processing in the circumstances envisaged by GDPR (Article 18 of GDPR).

• Right to data portability – The right to receive the Personal Data concerning yourself which you have provided to the Data Controller in a structured, commonly used and machine-readable format, and to have those data transmitted to another controller without hindrance, in the circumstances envisaged by GDPR (Article 20 of GDPR).

• Right to object – The right to object to processing of Personal Data concerning yourself, unless legitimate grounds for the Controller or the Joint Controller continuing the processing exist (Article 21 of GDPR). For reasons related to your particular situation, you may object at any time to the processing of your Personal Data if it is based on legitimate interest, by sending your request to Corptape Srl, at the address: privacy@corptape.com.

• Right to file a complaint with the Authority – The right to file a complaint with the Italian data protection authority, Garante per la protezione dei dati personali. Information and contact details can be found on the authority’s website www.garanteprivacy.it). Without prejudice to any other administrative or judicial action, you may lodge a complaint with the Italian Data Protection Authority, which you may contact as follows:

🕿 Telephone: (+39) 06.696771

🖳 Website: http://www.garanteprivacy.it/

📫 Place: Garante per la protezione dei dati personali, Piazza di Monte Citorio,121 00186 Rome.

You may exercise, unless otherwise specified, all the above rights simply by contacting Corptape at the addresses indicated in “How to contact Corptape”.

Jurisdiction

The Platform does not represent or warrant that the Website is appropriate or available for use in any particular jurisdiction. Those who choose to access the Website do so on their own initiative and at their own risk, and are responsible for complying with all local laws, rules, and regulations that apply to them.

Updates to the Privacy Policy

Legislation and its implementation are constantly developing. Corptape’s policies and procedures are therefore subject to continuous review. The date on which the latest version of the Privacy Policy has been modified, is in the final part of this document. If the changes involve processing whose legal basis is consent, the Data Controller will re-collect the consent of the User, where necessary.

How to contact Corptape

If you have any questions, comments, or complaints, regarding this Privacy Policy, or our privacy, security or data protection practices, please contact us by email at privacy@corptape.com

Date of last update: 20/01/2022