Privacy Policy regarding the processing of personal data on the website www.quantasia.ch
In accordance with and for the purposes of Article 13 of Regulation (EU) 2016/679 (GDPR) and Article 19 of the LPD.
In accordance with Article 19 of the Federal Data Protection Act (LPD) and Article 13 of Regulation (EU) 2016/679 (GDPR), we provide you with the necessary information regarding the processing of personal data collected during your experience on our website www.quantasia.ch.
The personal data provided – or otherwise acquired in accordance with current legislative and contractual provisions – concerning, connected, and/or instrumental to the evaluation of your experience on our website, will be processed in accordance with privacy regulations and the confidentiality obligations applicable to you.
Personal data: all information related to an identified or identifiable person.
In particular, we will process the following personal data: browsing data (for more information on data collected with Cookies, please refer to the Cookie Policy), personal identification data, and contact details.
It is specified that the computer systems responsible for the functioning of this website acquire, during their normal operation, certain personal data, the transmission of which is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of the computers and terminals used by users, addresses in URI/URL (Uniform Resource Identifier/Locator) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters related to the user’s operating system and computer environment.
Data subjects: natural or legal persons whose data is the subject of processing (hereinafter also referred to as “You”).
Processing: any operation related to personal data, regardless of the means and procedures adopted, including the collection, storage, use, review, communication, archiving, or destruction of data.
Communication: that is, making personal data accessible, for example, by allowing access, transmission, or publication.
The entity that determines the purposes and means of the processing (hereinafter also referred to as the “Data Controller” or the “Company” or “we”) is Quantasia SA, a Swiss company with registered office at Via Carlo Frasca, 3, 6900 Lugano, CHE-181.998.728. The Data Controller can be contacted at the following address: info@quantasia.ch
| PURPOSE OF PROCESSING | LEGAL BASIS | LEGAL GROUNDS | DATA RETENTION PERIOD | NATURE OF PROVIDING |
|
a) Activities strictly necessary for the user’s navigation on this website and to ensure its proper functioning.
|
Predominant Interest of the Data Controller | Legitimate Interest of the Data Controller | The data will be kept until the end of the browsing session. For data processed with technical cookies, please refer to our Cookie Policy. |
The provision is necessary for navigation on the website.
|
|
b) Obtaining anonymous statistical information about the use of the website.
|
Predominant Interest of the Data Controller | Legitimate Interest of the Data Controller | Please refer to our Cookie Policy |
The provision is necessary for navigation on the website.
|
|
c) Processing of purchases made on the website and related administrative and accounting activities (e.g., order management and product shipment).
|
Contract |
Contact data: 10 years for administrative purposes Personal identification data: 10 years for administrative purposes Identifying data: 10 years for administrative purposes Navigation data: Until the end of the browsing session Connection data: Until the end of the browsing session |
The provision is necessary for the conclusion of the purchase contract. |
| d) Addressing requests received through the “Contact” section on this website. |
Predominant interest of the data controller.
|
Contact data: Within 1 year from the processing of the request. Personal identification data: Within 1 year from the processing of the request. |
The provision is necessary to achieve this purpose. |
| e) Invio di newsletter (direct marketing). |
Consenso
|
Indirizzo e-mail: fino ad opposizione. | Il conferimento è necessario per raggiungere tale finalità. Il mancato conferimento dei dati non impedirà la corretta fruizione del Sito web. |
The processing will be carried out in an automated and/or manual way, using methods and tools aimed at ensuring maximum security and confidentiality, carried out by specifically trained individuals. The personal data collected will be stored in a form that allows the identification of the data subjects for a period not exceeding the achievement of the purposes for which the personal data are processed.
We may share personal information with employees and/or staff acting under the authority of the Data Controller (duly instructed for this purpose), as well as third parties bound to the Controller by a contractual relationship, to fulfill contractual obligations and meet one or more of the aforementioned processing purposes. These third parties will process the provided data as data processors or independent data controllers. Specifically, we may share the personal data collected with the following categories of recipients: a) entities providing services related to the operation of this website (e.g., hosting providers, webmasters); b) assistance and consulting companies (e.g., web and digital marketing agencies); c) competent authorities to comply with legal obligations and/or the provisions of public authorities, upon request.
The website is hosted in Switzerland; therefore, the data will not be transferred abroad.
|
Under the Federal Data Protection Act (LPD), you are entitled to the following rights (non-exhaustive list): ● Obtain the correction of inaccurate or outdated personal data; ● Be informed in writing and free of charge if personal data concerning you is being processed; ● Prevent the communication to third parties of any sensitive personal data; ● Obtain the portability of personal data or request that they be transferred to third parties; ● Request the limitation or blocking of data processing, prevention of data communication to third parties, or correction or destruction of personal data; ● Request the prohibition of specific personal data processing and specific communication of personal data to third parties, or the deletion or destruction of certain personal data; ● If neither the accuracy nor the inaccuracy of personal data can be proven, request the addition of a note to indicate the dispute; ● Request that the correction, destruction, blocking, especially communication to third parties, in addition to the note on the dispute or judgment, be communicated to third parties or published; ● Have the illegality of personal data processing declared. |
Under the General Data Protection Regulation (GDPR), you are entitled to the following rights: ● Obtain from the data controller confirmation as to whether or not personal data concerning you is being processed and, if so, access to the personal data (Access); ● Obtain from the data controller the erasure of personal data concerning you (Erasure); ● Obtain from the data controller restriction of processing (Restriction); ● Ottenere dal titolare del trattamento la limitazione del trattamento (Limitazione); ● Receive the personal data concerning you, which you have provided to a data controller, in a structured, commonly used, and machine-readable format and have the right to transmit those data to another data controller without hindrance from the data controller to which the personal data have been provided (Portability); ● Object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you (Objection). |
Without prejudice to any other administrative and judicial remedy, if the user believes that the processing of data concerning them violates the provisions of the Federal Data Protection Act (LPD) and the General Data Protection Regulation (GDPR), they have the right to lodge a complaint with the competent supervisory authority (For Switzerland: Federal Data Protection and Information Commissioner; for the European Economic Area, you can consult the website of the European Data Protection Board here: https://edpb.europa.eu/about-edpb/about-edpb/members_it).
You can exercise your rights under the Federal Data Protection Act (LPD) and the GDPR (as far as applicable) by contacting the Data Controller at the addresses provided above
The Data Controller reserves the right to review, update, add, or remove any part of this privacy notice at its discretion at any time. In the event of changes, the update date will be indicated.
Date of last update: 01.09.2023