openQCM is a Brand of Novaetech Srl wants you to be familiar with how we collect, use and disclose information in our capacity as a Data Controller. We want you to be in control of how we use your personal data and to make you aware of your rights, and our legal basis for using this information under the European Union General Data Protection Regulations (GDPR).
1.What is Personally Identifiable Information?
“Personally Identifiable Information” (PII) is information that identifies you as an individual or relates to another identifiable living individual, examples of PII include:
2. Collection of Personally Identifiable Information
We, and our service providers (see Annex 1), may collect Personally Identifiable Information (PII) in a variety of ways, known collectively as “NOVAETECH Services”, including:
3. Use of Personally Identifiable Information and the Legal Basis for Processing under GDPR
We, and our service providers, may use PII as follows:
Note: For European Union customers, contract fulfillment will be performed by Novaetech Srl, located in the United Kingdom.
We require the above information for the purposes of Contract Fulfilment. You have requested, and we will deliver to you, products or services, or to inform you of any significant changes to the conditions under which we do business.
We require the above information for the purposes of Legal Obligation as detailed above and required by applicable local laws in one or more of the countries in which we operate.
We will ask for your Consent for any of the above functions and will send marketing communications to you only if you consent to receive them.
We have a Legitimate Interest in using your information, in the above scenarios, to develop our website using your feedback and to grow our business.
Please see the section 8 below for additional information in relation to your rights in relation to the Personally Identifiable Information that you provide us with.
Your Personal Information may be disclosed:
We also may use and disclose your PII as we believe to be necessary or appropriate:
“Other Information” is any information that does not reveal your specific identity or does not directly relate, or can be linked to, to an identifiable individual, such as:
Collection of Other Information
We and our service providers may collect Other Information in a variety of ways, including:
We use this information to ensure that our On-Line Services function properly.
Uses and Disclosures of Other Information
We may use and disclose Other Information for any purpose, except where we are required to do otherwise under applicable law. In some instances, we may collect Other Information together with PII. If we do, we will treat the combined information as PII as long as it is combined or can be linked to PII.
Third Party Service Providers
We may pass your information to our third party service providers for the purposes of completing specific tasks and/or to provide services to you on our behalf, as specified above. When we utilize these third-party service providers we will only disclose the personal information necessary to complete the task or deliver the service as instructed by Novaetech Srl. In accordance with the requirements of the GDPR, Data transfer agreements are in place with all of our third-party service providers requiring them to keep your information secure and to only use it for the particular purposes that it has been provided to them for.
Third Party Linking
In addition, we are not responsible for the information collection, use, disclosure or security policies or practices of other organizations, such as Facebook, Apple, Google, Microsoft, RIM or any other app developer, app provider, social media platform provider, operating system provider, wireless service provider or device manufacturer, including with respect to any Personal Information you disclose to other organizations through or in connection with our Social Media Pages.
We are committed to using all reasonable organizational, technical and administrative measures to protect the Personal Information that you provide us with. When inputting information onto our website, sensitive information (such as credit or debit card information) is encrypted and protected via SSL encryption, and is subsequently transferred and tokenized by our payment provider, Novaetech Srl does not store your credit or debit card information on any of our systems.
Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure, please immediately notify us in accordance with the “Contacting Us” section below.
Your choices regarding our use and disclosure of your Personally Identifiable Information for Marketing Purposes
We give you choices regarding our use and disclosure of your Personally Identifiable Information for marketing purposes. You may opt-out from any of these services as follows:
We will comply with your request(s) as soon as reasonably practicable. Please note that if you withdraw consent to receive marketing related emails from us, we may still send you important administrative or order related messages.
If you would like to review, correct, update, suppress or delete Personal Information that you have previously disclosed to us, you may contact us in accordance with the “Contacting Us” section below.
Under the GDPR you have the following rights:
In your request, please make clear what Personally Identifiable Information is affected and what changes you would like to make, or let us know what limitations you would like to put on our use of your Personal Information. A record of any changes, deletions or withdrawals of consent will be recorded solely for the purposes of complying with the Legal Obligations required under the GDPR.
For your protection, we may only implement requests with respect to the Personal Information associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request.
Where one of the circumstances specified in Article 17(1), GDPR applies you may request that we permanently delete any Personal Identifiable Information that we hold in respect of you.
We will only use and store your Personal Information for as long as it is required for the purposes it was collected for. How long it will be stored for depends on the information in question, what it is being used for and, sometimes, statutory legal requirements.
“NOVAETECH Services” are not directed to individuals under the age of thirteen (13), and we do not knowingly collect Personally Identifiable Information from individuals under 13.
Your Personal Information may be stored and processed in any country where we have facilities or in which we engage third party service providers in accordance with the terms outlined in section 7. In certain circumstances, courts, law enforcement agencies, regulatory agencies or security authorities in those other countries may be entitled to access your personal information.
If you are located in the EEA: Some of the non-EEA countries are recognized by the European Commission as providing an adequate level of protection according to EEA standards (the full list of these countries is available here: http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm.) With regard to transfers of Personal Information that we may from time to time make to other countries, we have put in place measures, such as standard contractual clauses adopted by the European Commission to protect your Personal Information. You may obtain a copy of these measures by contacting us in accordance with the “Contacting Us” section below.
We ask that you not send us, and you not disclose, any sensitive Personal Information (e.g., social security numbers, information related to racial or ethnic origin, political opinions, religion or other beliefs, health, biometrics or genetic characteristics, criminal background or trade union membership) on or through the Services or otherwise to us. Where unsolicited sensitive Personal Information is received it will be deleted unless there is a compelling and legitimate reason for it to be retained.
The Marketing department, located at the address below, is responsible for collection, use and disclosure of your Personally Identifiable Information.
Marco Mauro – Database Director
Centro Direzionale, Isola G7
80143 Napoli, Italy
Because email communications are not always secure, please do not include credit card or other sensitive information in your emails to us.
Annex 1. List of service providers
Novaetech Srl utilizes the services of various third parties in various different functional areas, including, but not limited to, Shipment logistics, Data backup, and recovery, IT security and Marketing/Marketing communications.
The following are representative of some of the companies whose services we utilise:
Marketing and Marketing Communications: