Privacy Policy En - Physicool

This is information on the processing of personal data pursuant to Regulation (EU) 2016/679 and Legislative Decree no. 196/2003. This Website (ama-physicool.com, www.ama-physicool.com) collects some Personal Data from its Users. This document can be printed using the print command present in the settings of any browser.

Data Controller

AMA Consulting GmbH,

VAT CHE-353.571.219,

Pilatusstrasse 26, 8330 Pfäffikon, Switzerland

Email address of the Data Controller: matteo.limonta@amaconsulting-group.com

Types of Data collected

Among the personal data collected by this website, either independently or through third parties, are tracking tools, usage data, and email. Complete details on each data collection type are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data collection. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically when using this Website. Unless otherwise specified, all Data requested by this Website is mandatory. If the User refuses to communicate with them, it may be impossible for this Website to provide the Service. In cases where this Website indicates some Data as optional, Users are free to refrain from communicating such Data without any consequence on the availability of the Service or its operation. Users who doubt which Data is mandatory are encouraged to contact the Data Controller. Any use of Cookies – or other tracking tools – by this Website or by the owners of third-party services used by this Website, unless otherwise specified, is to provide the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy, if available. The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Website and guarantees they have the right to communicate or disseminate them, freeing the Data Controller from any responsibility towards third parties.

Methods and place of processing the collected Data

Processing methods

The Data Controller adopts appropriate security measures to prevent unauthorised access, disclosure, modification, or destruction of Personal Data. The processing is carried out using IT and/or telematic tools, with organisational methods and logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organisation of this Website (administrative, commercial, marketing, legal, and system administrators) or external parties (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communication agencies) may have access to the Data, if necessary, as Data Processors appointed by the Data Controller. The data controller can always request the updated list of data processors.

Legal basis of processing

The Data Controller processes Personal Data relating to the User in case one of the following conditions exists:

The User has given consent for one or more specific purposes. Note: in some jurisdictions, the Data Controller may be authorised to process Personal Data without the User’s consent or another of the legal bases specified below until the User objects (“opt-out”) to such processing. However, this is not applicable when the processing of Personal Data is regulated by European legislation on the protection of Personal Data;

The processing is necessary for the performance of a contract with the User and/or for any pre-contractual obligations thereof;

The processing is necessary for compliance with a legal obligation to which the Data Controller is subject;

The processing is necessary for the performance of a task carried out in the public interest or the exercise of official authority vested in the Data Controller;

The processing is necessary for the legitimate interests pursued by the Data Controller or a third party.

In any case, it is always possible to request the Data Controller to clarify the specific legal basis for each processing and to specify whether the processing is based on the law, required by a contract, or necessary to conclude a contract.

Place

The data is processed at the operational headquarters of the data controller and in any other place where the parties involved are located. For further information, contact the Data Controller. The User’s Personal Data may be transferred to a country other than their own. To obtain additional information on the place of processing, the User can refer to the section concerning details on processing Personal Data. The User has the right to obtain information about the legal basis for data transfers outside the European Union or to an international organisation governed by public international law or constituted by two or more countries, such as the UN, as well as about the security measures taken by the Data Controller to protect the Data. The User can check if one of these transfers takes place by examining the section of this document relating to details on the processing of Personal Data or asking the Data Controller for information by contacting them using the provided contact details.

Retention time

The Data is processed and stored for the time required for the purposes for which it was collected. Therefore:

Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until such contract has been entirely performed.

Personal Data collected for purposes related to the Data Controller’s legitimate interests will be retained as long as needed to fulfil those purposes. The User can obtain specific information regarding the Data Controller’s legitimate interests in the relevant sections of this document or by contacting the Data Controller.

When processing is based on the User’s consent, the Data Controller may retain Personal Data longer until such consent is revoked. Furthermore, the Data Controller may be obliged to retain Personal Data for a more extended period in compliance with a legal obligation or by order of an authority. Once the retention period expires, Personal Data will be deleted. Therefore, the right to access, the right to erasure, the right to rectification, and the right to data portability cannot be enforced after the expiration of the retention period.

Purposes of the collected Data processing

The Data concerning the User is collected to allow the Data Controller to provide its Services, comply with legal obligations, respond to enforcement requests, protect its rights and interests (or those of Users or third parties), detect any malicious or fraudulent activities, as well as the following: Statistics, Displaying content from external platforms, and Remarketing and behavioural targeting. For specific information about the purposes of the processing and the Personal Data used for each purpose, the User can refer to the section “Details on the processing of Personal Data”.

Details on the processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Contact form (This Website): By filling in the contact form with their Data, the User authorises the use of these details to reply to requests for information, quotes, or any other kind of request as indicated by the form’s header. Personal Data collected: surname, name, email, phone/mobile number, and IP address.

Newsletter form (This Website): By filling in the contact form with their Data, the User authorises the use of these details to reply to requests for information, quotes, or any other kind of request as indicated by the form’s header. Personal Data collected: surname, name, email, phone/mobile number, and IP address. The site features a bi-monthly Newsletter dedicated to all readers who voluntarily want to receive exclusive editorial content via email. The service provided by MailChimp (The Rocket Science Group, LLC, 512 Means St., Suite 404 – 30318 – Atlanta, Georgia) is used to deliver and manage the Newsletter, and the collected data is stored on the secure servers of the delivery service. According to MailChimp’s privacy policy, the data will never be used directly by MailChimp or sold to third parties by MailChimp. MailChimp uses authorised operators to maintain the service, and in exercising this function, they may have access to your data. In any case, the guarantees provided by MailChimp’s privacy policy apply.

Interaction with live chat platforms: This type of service allows interaction with live chat platforms managed by third parties directly from the pages of this Website. This enables the user to to contact the support service of this Website or this Website to contact the User while they are browsing its pages. In the event that a service for interaction with live chat platforms is installed, it is possible that, even if users do not use the service, it will collect usage data relating to the pages where it is installed. Additionally, live chat conversations may be recorded.

Information on how to disable interest-based advertisements: In addition to any opt-out feature provided by any of the services listed in this document, Users can read more about how to disable interest-based ads in the relevant section of the Cookie Policy.

Cookies: This document contains information about technologies that enable this Website to achieve the purposes described below. These technologies allow the Data Controller to collect and save information (for example, by using Cookies) or to use resources (for example, by executing a script) on the User’s device when interacting with this Website. For simplicity, in this document, these technologies are referred to as “Tracking Tools” unless there is a reason to differentiate them. For example, although cookies can be used in web and mobile browsers, it would be inappropriate to talk about Them in the context of mobile applications, as they are Tracking Tools that require a browser. Therefore, in this document, the term Cookie is used to indicate that particular type of Tracking Tool. Some of the purposes for which Tracking Tools are used may also require the User’s consent. If consent is given, it can be revoked freely at any time by following the instructions contained in this document. This Website uses Tracking Tools managed directly by the Data Controller (commonly referred to as “first-party” Tracking Tools) and Tracking Tools that enable services provided by third parties (commonly referred to as “third-party” Tracking Tools). Unless otherwise specified within this document, these third parties have access to their respective Tracking Tools. The duration and expiration of Cookies and other similar Tracking Tools may vary depending on what is set by the Data Controller or each third-party provider. Some of them expire at the end of the User’s browsing session. In addition to what is specified in the description of each of the categories below, Users can obtain more detailed and updated information about the duration, as well as any other relevant information – such as the presence of other Tracking Tools – in the privacy policies of the respective third-party providers (via the links provided) or by contacting the Data Controller.

Cookies used

Technical and session Cookies: Their use is limited to transmitting session identification data to allow normal site exploration. They are automatically deleted when the browser is closed (non-persistent). Such Cookies do not require the User’s prior consent to be installed and used.

Tag Management: This type of service is functional for the centralised management of the tags or scripts used on this Website. Using such services involves the flow of User Data through them and, if necessary, their retention.

Google Tag Manager (Google Ireland Limited): Google Tag Manager is a tag management service provided by Google Ireland Limited. Personal Data processed: Tracking Tool. Place of processing:

Ireland – Privacy Policy. Storage duration:

dc_gtm*: 1 minute

_gcl_au: 3 months

Traffic optimisation: This type of service allows this application to distribute its content through servers located in different countries and optimise its performance. The processing of personal data depends on the characteristics and implementation of these services, which filter communications between this application and the user’s browser. Given the distributed nature of this system, it is difficult to determine the locations where the content is transferred, which may contain the user’s Personal Data.

Cloudflare (Cloudflare Inc.): Cloudflare is a traffic optimisation and distribution service provided by Cloudflare Inc. The integration methods of Cloudflare foresee that this filters all the traffic of this Application, i.e., the communications between this Application and the User’s browser, allowing the collection of statistical data on it as well. Personal Data processed: Tracking Tools; various types of Data as specified in the service’s privacy policy. Place of processing: United States – Privacy Policy.

Displaying content from external third-party platforms: This type of service allows you to view content hosted on external platforms