Complete information - Newsletter

Who are we and what do we do with your personal data?

XTN Cognitive Security S.r.l., headquartered at Via Santa Caterina no. 95, 38062 Arco (TN) (hereinafter also referred to as “the Data Controller”), is committed to protecting your personal data and ensuring its security against any events that could risk a data breach.

The Data Controller implements policies and practices regarding the collection and use of personal data, as well as the exercise of the rights granted to you under applicable regulations. These policies and practices are updated whenever necessary, particularly in response to regulatory or organizational changes that may impact the processing of your personal data.

The Data Controller has appointed a Data Protection Officer (DPO), who can be contacted for any questions regarding data protection policies and practices at dpo@xtn-lab.com

How and why does the Data Controller collect and process your data?

The Data Controller collects and/or receives information about you, including:

• Personal identification data provided when filling out the form (such as name, surname, and email address).

These data are necessary for processing your request to subscribe to the newsletter, subject to your consent. They are used to send communications, including promotional and advertising messages, related to sales, market research, opinion surveys, commercial communications, and to provide information and/or offer products or services.

Your personal data may be shared with third parties and/or recipients whose involvement is necessary for the fulfillment of the aforementioned purposes and for compliance with legal obligations, such as:

• IT support and hosting service providers;
• Companies providing website management and maintenance services.

Your personal data will not be publicly disclosed or shared with unspecified entities.

What happens if you do not consent to the processing of your personal data for marketing purposes (direct marketing, market research, and surveys) by the Data Controller?

IYour personal data will not be processed for such purposes, and this will have no impact on the processing of your data for other primary purposes or any processing for which you have already given your consent, if required.

If you previously granted consent but later withdraw it or object to the processing for marketing purposes, your data will no longer be used for these purposes without any adverse consequences

How and for how long are your data stored?

Your data is processed using electronic and manual means by authorized and trained personnel acting under the authority of the Data Controller.

Personal data processed for marketing purposes (direct marketing, market research, and surveys) will be retained for 24 months unless you request its deletion.

What are your rights?

Within the limits established by applicable laws, you have control over your personal data and can exercise the following rights:

• Access
• Rectification
• Deletion
• Restriction of processing
• Objection to processing
• Data portability

These rights can be exercised free of charge and without specific formalities. Specifically, you have the right to:

• obtain a copy, including in electronic format, of the data you have requested access to. If you request additional copies, the Data Controller may charge a reasonable fee.
• request the deletion, restriction of processing, updating, or rectification of your personal data, and to ensure that third parties/recipients who have received your data comply with your request, unless there are overriding legitimate reasons that outweigh your request (e.g., environmental investigations or risk containment related to an emergency managed by the Data Controller).
• receive any relevant communication regarding actions taken following the exercise of your rights without delay and, in any case, within one month of your request. This period may be extended by up to two months with proper justification, which will be duly communicated to you.
• For any further information or to submit your request, you must contact the Data Controller at dpo@xtn-lab.com

Where can you file a complaint?

Without prejudice to any other administrative or legal action, you may file a complaint with the competent supervisory authority, either in Italy (if you reside or work there) or in the EU member state where the alleged violation of Regulation (EU) 2016/679 occurred.