According to and for the effects of the 13th article of the (EU) Regulation 2016/679 of the 27th April 2016 “on the protection of individuals with regard to the processing of personal data, as as free movement of such data and repealing the directive 95/46/CE” (“General Data Protection Regulation” or “GPR”), the Company (as defined below) is required to provide you with the information regarding the methods and purposes of the processing of personal data that concern you.

Preliminarily, we inform you that, for the purposes of this information, “Company” refers to Vikey S.r.l with legal residence in Via di Grotte Portelle, 34 – 00044 Frascati (RM);

Preliminarily, we inform you that, for the purposes of this information, “Company” refers to Vikey S.r.l with legal residence in Via di Grotte Portelle, 34 – 00044 Frascati (RM);

This information is provided only for the website and not for other websites consulted by the user through links present on the site. The information is intended for all subjects that interact with the website pages and in particular, both those who use the site without registration and those who intend to register at the same time.

Source of personal data and basis of processing
The personal data held by the Company is collected directly from the interested parties who access the site and intend to register. In any case all acquired data will be treated in compliance with the GDPR, as well as according to the rules of confidentiality, inherent to the performance of the activity, to which the Company has always been inspired. The legal basis for processing personal data is the constituted by the consent of the data subject to processing of personal data for the purposes indicated below.

Purpose of the treatments
The user’s personal data will processed for the following purposes:

a)     Purposes connected and instrumental to the management of pre-contractual and contractual relationships with the customers (ex. Check-in or information requests, purchase of products or services);

b)    Purposes related and instrumental to the fulfillment of legal obligations, community legislation or provisions issued by Authorities legitimated by the law;

The provision by the party concerned of the data necessary for the pursuit of the purposes referred to in points a) and b) above, although not mandatory, are essential and indispensable for the management, in whole or in part, of the relations with customers as well as for the fulfilment of the obligations of the law; therefore, an eventual refusal to provide such data would in fact make it impossible for the Company to execute the predicted activities.

If the Company intends to use the personal data collected for any other incompatible purpose with the purposes for which they were originally collected or authorized, the Company will inform you in advance, and you may deny or revoke your consent.

Data Processing Method
In relation to the above-mentioned purposes, the processing of personal data takes place by means of manual tools, IT and telematics devices for storing, managing and transmitting the same data, solely for the purpose of pursuing the purposes for which they were collected and, in any case, in such a way to guarantee its security and confidentiality.

In carrying out the processing activities, the Company undertakes to:

a)     Ensure the accuracy and updating of data processed, and promptly implement any corrections and/or additions requested by the interested party;

b)     Notify the interested party, in a timely manner and in the case provided by the bliding legislation, any possible violations of personal data;

c)     Guarantee the compliance of the processing operations with the applicable provisions of the law.

The Company also processes personal data acquired in full compliance with the principal of fairness, lawfulness and transparency. In compliance with the GDPR, the Company configures, or in any case, commits to configuring the information systems and computer programs while minimizing the use of personal data, so as to exclude treatment if they aims pursued can be realized through, respectively, anonymous data or opportune modalities that allow the interested party to be identified only if necessary.

Personal data provided by users who request information is used for the sole purpose of performing SERVICE or the requested performance and are communicated to third parties only if for a necessary end.

The use of c.d. session cookies (which are not stored permanently on the user’s computer and vanish upon closing the web browser) is strictly limited to the transmission of session identifies (consisting of random numbers generated by the server) necessary to consent the safe and efficient exploration of the website.

The session c.d. cookies utilized in this website avoid the use of other IT techniques which are potentially detrimental to the confidentiality of the users’ browsing and do not permit the acquisition of personal identification data of the user.

Categories of subject to whom data can be communicated
For the pursuit of the above mentioned purposes, the Company could disclose the users’ personal data for the purpose of the provision of chosen services, should these services be provided by third parties, the data will be communicated to the single operators. These operators work as

“owners" for the treatment connected to the provision of the services within their competence.

Your personal data could be also be discloses to a Judicial Authority and /or a Police Force, should their specifically request it, to comply with legal or regulatory requirements for the purpose of identifying the authors of any unlawful acts committed to the detriment of the Company.

Your personal data may only be disclosed within our company employees and external collaborators in charge of their treatment.

Policy on the retention of personal data

The Company keeps acquired personal data in a form that allows the identification of subjects for a period of time not exceeding 10 years for the purpose for which they were processed or to comply with specific regulatory or contractual obligations.

Rights of the interested party
We inform you that, pursuant to art. 15-22 of the GDPR, the interested party may exercise specific rights, including:

a) Right of access: the right to obtain confirmation from the Owner that there is a current processing of personal data in progress and, in this case, to obtain access to set personal data and further information such as information on origin, purpose, category of data processed, recipients of communication and / or data transfer, etc.

b) Right of rectification: right to obtain from the Data Controller the correction of inaccurate personal data without unjustified delay, as well as the integration of incomplete personal data; this can also be done by providing a supplementary declaration.

c) Right to cancellation: right to obtain from the Data Controller the cancellation of personal data

without unjustified delay in the event that:

▪ personal data are no longer necessary with respect to the purposes of the processing;

▪ the consent on which the treatment is based is revoked and there is no other legal basis

for the treatment;

▪ personal data has been processed unlawfully;

▪ personal data must be deleted to fulfill a legal obligation.

d) Right to oppose treatment: right to object at any time the processing of personal data that have as a legal basis a legitimate interest of the Owner.

e) Right to limit processing: the right to obtain from the Owner the limitation of treatment, in cases where the accuracy of personal data is contested (for the necessary period for the Data Controller to verify the accuracy of such personal data), if the processing is illicit and / or the interested party has opposed the processing.

f) Right to data portability: right to receive the personal data in a structured format, in common use language and readable by automatic device and to transmit such data to another holder of the treatment, only for cases where the treatment is based on consent and only for the data processed through electronic tools.

g) Right to lodge a complaint with a supervisory authority: without prejudice to any other administrative or judicial appeal, the interested party that considers that the treatment that concerns him violates the Privacy Law has the right to lodge a complaint with the state control authority in which he resides or works habitually, or the State in which the alleged violation occurred.

In case the treatment is based on consent, the interested party can revoke his given consent at any time, without prejudice to the lawfulness of the treatment performed before the revocation.

If you want to have more information on the processing of your personal data, or exercise any of the rights previously indicated, you can:

Send your request to:

Send a Message