PRIVACY POLICY

Privacy policy on the processing of personal data of www.dichta.com

According to the Federal Data Protection Act (FDPA), Regulation (EU) 2016/679 (GDPR) and Directive 2002/58/CE (eDirective), we provide you with the necessary information regarding the processing of personal data collected and processed during your experience on our website www.dichta.com

1. CATEGORIES OF PERSONAL DATA PROCESSED | DEFINITIONS
Personal data provided by you – or otherwise acquired in compliance with the legislative and contractual provisions in force – inherent in, connected with and/or instrumental to the assessment of your experience on our website, will be processed in compliance with the provisions of the applicable privacy laws and the obligations of confidentiality.

Personal Data: all information relating to an identified or identifiable person.
In particular, we will process the following personal data: browsing data (for information on data collected through cookies, please see our Cookie Policy).

We specify that the computer systems responsible for the operation of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of the computers and devices used by users, the addresses in URI/URL (Uniform Resource Identifier/Locator) notation of the resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer.

Data subjects: natural or legal persons whose data is processed (also referred to as “you”).
Processing: any operation with personal data, irrespective of the means applied and the procedure, and in particular the collection, storage, use, revision, disclosure, archiving or destruction of data.
Disclosure: making personal data accessible, for example by permitting access, transmission or publication.

2. IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER
The company that determines the purposes and means of this processing of personal data is DICHTA SA, a company under Swiss law with registered office in Via Sottobisio 28, 6828 Balerna (also referred to as “Dichta” or the “Data Controller” or the “Company” or “we”).
The contact details of the Data Controller are as follows: info.ch@dichta.com

3. PURPOSE OF THE PROCESSING | DATA RETENTION PERIOD

 PURPOSE OF THE PROCESSING | JUSTIFICATION   JUSTIFYING REASON | LEGAL BASIS  DATA RETENTION PERIOD
 a) Activities strictly necessary for the navigation on this website, and to control website’s correct functioning. Overriding interest of the Data Controller | Legitimate Interest of the Data Controller  Data will be retained until the end of the browsing session. For personal data processed with technical cookies, please read our Cookie Policy.
 b) Obtaining anonymous statistical information on the use of the website.  Please read our Cookie Policy.  Please read our Cookie Policy.

3.1 MEANS OF DATA PROCESSING
The processing will be carried out in automated and/or manual form, using methods and tools designed to ensure maximum security and confidentiality, by subjects specially trained to do so. The personal data collected will be kept in a form that allows the identification of data subjects for a period of time not exceeding the achievement of the purposes for which the personal data are processed.

4. RECIPIENTS OF PERSONAL DATA
We may share your personal information with employees and/or staff acting under the Data Controller’s authority (duly instructed for the former purposes), as well as third parties contractually linked to Dichta, in order to fulfill contractual obligations and achieve one or more of the aforesaid purposes of processing. Such third parties will process your data in their capacity as data processors, or as independent data controllers. More in detail, we may share your personal information to the following categories of recipients: a) subjects who provide services related to the functioning of this website, the information system of Dichta and the telecommunications networks (e.g., hosting provider, webmaster); b) firms or companies within the scope of assistance and consultancy relations (e.g. web&digital marketing agencies); c) competent Authorities for the fulfilment of legal obligations and/or provisions of public bodies, upon request.

5. TRANSFERS OF PERSONAL DATA OUTSIDE THE CONFEDERATION
This website is hosted in Germany and thus outside the Swiss Confederation. We specify that in accordance with the FDPA and the Federal Data Protection and Transparency Commissioner, Germany is a third country with adequate safeguards for the transfer of personal data. The list of adequate countries can be verified at the following link: https://www.edoeb.admin.ch/dam/edoeb/fr/dokumente/2021/20211115_Staatenliste_f.pdf.download.pdf/20211115_Staatenliste_f.pdf

6. RIGHTS OF THE DATA SUBJECT

According to the conditions established by the FDPA, the Data Controller acknowledges the following rights to you as a Data Subject (non-exhaustive list):

  • to obtain the rectification of inaccurate or obsolete personal data;
  • to be informed in writing and free of charge if personal data concerning you are being processed;
  • to revoke the consent to the processing of data that you have previously given;
  • prevent the communication to third parties of sensitive personal data;
  • to obtain the portability of personal data or to demand their transmission to a third party;
  • to request the restriction or blocking of data processing, the prevention of data disclosure to third parties or rectification or destruction of personal data;
  • the right to request that a given processing of personal data be prohibited, that a given communication of personal data to third parties be prohibited, or that certain personal data be deleted or destroyed;
  • if neither the correctness nor the inaccuracy of the personal data can be proved, to request that a note be added to the data to indicate its disputed nature;
  • to request that the rectification, destruction, blocking, in particular the communication to third parties, as well as the mention of the disputed character or the judgment be communicated to third parties or published;
  • to have the unlawfulness of the processing of personal data declared.

Under the GDPR, you are granted the following rights:

  • Obtain from the data controller confirmation as to whether or not personal data concerning you are being processed and if so, to obtain access to the personal data (Access);
  • Obtain from the data controller rectification of inaccurate personal data concerning you (Rectification);
  • Obtain from the data controller the erasure of personal data concerning you (Erasure);
  • Obtain from the data controller the restriction of processing (Limitation);
  • Receive in a structured, commonly used and machine-readable format personal data concerning him or her provided to a data controller and have the right to transmit such data to another data controller without hindrance from the data controller to whom you provided it (Portability);
  • Object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you (Objection).

With the exemption of any other administrative or jurisdictional remedy, if the user considers that the processing of his or her data breaches the provisions of the FDPA and the GDPR, he or she has the right to file a complaint with the competent supervisory authority (i.e. the Federal Data Protection and Transparency Commissioner; For the European Economic Area, you can consult the website of the European Data Protection Board here https://edpb.europa.eu/about-edpb/about-edpb/members_en).

You may exercise your rights under the FDPA and GDPR by contacting the Data Controller by writing at the above-indicated contacts.

6.1 INFORMATION FOR CALIFORNIA RESIDENTS UNDER THE CALIFORNIA CONSUMER PRIVACY ACT NOTICE (CCPA)
You have the right to request that we disclose to you: (i) the categories of personal information we collected about you and the categories of sources from which we collected such information; (ii) the personal information we collected about you; (iii) the business or commercial purpose for collecting personal information about you; and (iv) the categories of personal information about you that we shared or disclosed and the categories of third parties with whom we shared or to whom we disclosed such information in the preceding 12 months. You also have the right to request that we delete personal information we collected from you subject to certain exceptions. You also have the right not to be discriminated in pricing and services because you exercise any of your rights under the CCPA.

7. ADDITIONAL INFORMATION | AMENDMENTS | UPDATES
We do not sell any of the personal data we process.

The Data Controller reserves the right to revise, update, add or remove any part of the present privacy policy at its own discretion and at any time. In case of modifications, the date of update will be indicated.

Date of last update: October 10, 2022