Information on the processing of personal data
This information is provided in compliance with art. 13 of Regulation (EU) 2016/679 relating to the protection of natural persons with regard to data processing personal data, as well as the free circulation of such data (hereinafter, for brevity, the“Regulations” or the“GDPR”) by Checkmoov s.r.l., with headquarters in Viale di Villa Massimo 39 - Rome (RM), VAT number 13755581009 - R.E.A. 1470409, operator of the FitPrime platform (hereinafter, for brevity, the“Site”) and the app of the same name (hereinafter, for brevity, the“App”), which can be contacted at the email address info@fitprime.com, as Data Controller (hereinafter, for brevity, the“Company” or the“Owner”). In this information we will explain the purposes and the methods with which the Company collects, through the Site and the App, and processes your data personal data, which categories of data are being processed, what are the rights of the interested in the treatment and how they can be exercised. The information is provided exclusively for the Site and/or the App; therefore, the Owner does not assume any responsibility regarding other websites and/or apps that may be consulted via hypertext links present on the Site and/or App. This information includes also any other Internet domains that replicate the Site. In the event that the User log in or register for the services of the Site and/or App via the login credentials of a social network platform or associate your own account to an account of the same user on another service (e.g. Facebook, Apple, Google), the Owner may receive data relating to the User from these platforms, in accordance to the conditions of use and to the provisions of the privacy policy of the platforms themselves. The Data Controller may add to this information that of the interested party already collected through its services. If the interested party agrees information on the Site and/or App with such platforms and/or services, the Owner may receive data from these platforms in accordance with the consent options provided by interested party. Any data communicated to the platforms and/or services will be subject to the terms and conditions of use of the platforms themselves. We therefore invite Users to consult the privacy policies of platforms and/or services if necessary used.
The IT systems and software procedures used to operate the Site e of the App I can acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. Yes This is information that is not collected to be associated with interested parties identified, but which by their very nature could, through processing and associations with data held by third parties, allow users to be identified. In This category of data includes IP addresses or computer domain names used by users who connect to the site, the addresses in URI notation (Uniform Resource Identifier) of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (good end, error, etc.) and other parameters relating to the operating system and environment user’s computer. This data is used for the sole purpose of deriving anonymous statistical information on the use of the site and to check its correctness operation and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical crimes computer systems to the detriment of the site.
This is data provided by the User for the purposes of registering on the Site and/or the App. For registration purposes, the following data is required: name, surname, address email. The provision of such data is mandatory for the purposes of use of the service.
In addition to the data necessary for registration purposes, the User can provide the following personal data: date of birth, gender (male/female/I prefer not to specify), country, telephone. The provision of such data is optional. However, it is optional provision of a photographic image, for the purpose of personalizing the profile.
In the event that a User decides to make a reservation via the Site and/or of the App to access a sports center, the following personal data is required: tax code, gender, telephone number, date of birth, data on the method of payment (only in the event that the User decides to purchase a service). The provision of such data is mandatory for the use of the service.
With the User’s consent, it is possible to geolocate the same using your own device connected to the Site and/or the App, in order to find the nearest sports center. The provision of such data is optional. The personal data indicated above will be processed by the Company exclusively for the purposes and within the limits indicated in the paragraph following.
With the User’s consent, it is possible that the Site and/or the App collect categories details of personal data, pursuant to art. 9 of the GDPR, provided voluntarily by the User for the purposes of personalizing the services (e.g. weight; height; allergies).
Without prejudice to what is specified above in relation to the previous points, the Company may acquire any personal data provided by the User through the Site and/or the App by means of certain services (e.g. through the contact form), or by make requests via email.
The personal data provided for registration on the Site and/or App (letter b) and for reservations (letter d) and will therefore be processed for the execution of the legal relationship and the contractual obligations in place with the Owner, as provided from the art. 6, par. 1, letter. b. of the GDPR. The personal data provided for the geolocation (letter e) and those provided voluntarily by the User to enrich your profile (letter c) will be processed on the basis of specific consent and expressed, in accordance with the provisions of the art. 6, par. 1, letter. a., GDPR. The categories details of personal data provided by the User (letter f), with his estimate consent, may be processed by the Data Controller in order to offer services personalized. This activity is carried out on the basis of specific and expressed consent, according to the provisions of the art. 6, par. 1, letter. a., GDPR. The consent given is revocable at any time by writing to Checkmoov s.r.l., Viale di Villa Massimo 39 - Rome (RM),info@fitprime.com. The personal data voluntarily provided by the User, with his prior consent, may be processed by the Data Controller for the purpose of reporting promotions and/or offers through the use of automated systems (e.g. e-mail, app notifications) or systems traditional (e.g. paper mail). This activity is carried out on the basis of consent specific and expressed during registration on the Site and/or App, according to what provided for by the art. 6, par. 1, letter. a., GDPR. The consent given is revocable at any time moment by writing to Checkmoov s.r.l., Viale di Villa Massimo 39 - Rome (RM),info@fitprime.com. The personal data voluntarily provided by the User, with his prior consent, may be processed by the Data Controller for the purpose of profiling through the use of automated systems (e.g. email, app notifications) or traditional systems (e.g. post paper). This activity is carried out on the basis of specific and expressed consent in registration phase on the Site and/or App, in accordance with the provisions of the art. 6, par. 1, lit. a., GDPR. The consent given can be revoked at any time by writing to Checkmoov s.r.l., Viale di Villa Massimo 39 - Rome (RM),info@fitprime.com.
The data provided by the User for the provision of services (letter b, letter d) will be object of conservation for the entire duration of the contractual relationship with the Data Controller; following the termination of the relationship, for any reason, the personal data will be kept for a limited period, up to ten years from the termination of the contractual relationship, exclusively for the needs of protecting the rights of the Owner and for the fulfillment of legal obligations. With reference to the data referred to in letter. f., the same will be kept for the shortest possible time, on the basis of lawfulness interest of the owner, and, in any case, until any revocation by the User. With reference to the data referred to in letters. a., c., e., g., the same will be preserved for the shortest possible time and, in any case, for a maximum period of 12 months from termination of the provision of the service or the processing of the User’s requests or until any revocation by the User. With reference to treatments for marketing and profiling purposes, the User’s personal data will be processed for the entire duration of registration on the Site and/or App unless revoked consent given or opposition to the processing and, in any case, no later than 12 months from the last interaction with the Company or until any revocation by the party of the User.
The Data Controller may communicate, for the same purposes referred to in point 2., some data personal data, including those of the User, to third parties, who will treat them as Data controllers. The list of data controllers can be requested from the Owner at any time. The Data Controller adopts appropriate measures security designed to prevent access, disclosure, modification or destruction authorized persons of personal data. The processing is carried out using tools IT and/or telematic, with strictly organizational methods and logic related to the purposes indicated.
Pursuant to current legislation, the Regulation grants you the following rights:Access (art. 15 GDPR): right to obtain from Owner confirms whether or not personal data is being processed concern and in this case, to obtain access to the personal data processed and to a series of other information (for example, the categories of data processed, the purposes of the processing, the storage times, the existence of a process automated decision-making).
Rectification (art. 16 GDPR): right to have your data personal data processed by the Data Controller are correct and therefore, if necessary, updated.
Deletion (art. 17 GDPR): right to obtain that your personal data processed by the Data Controller are deleted in certain circumstances (e.g. when the Data Controller has achieved the purpose for which such data was collected and, therefore, has no reason to keep them any further).
Limitation of processing (art. 18 GDPR): right to obtain from the Data Controller that the processing of your personal data is limited to occurrence of a series of hypotheses (e.g. when the interested party disputes the accuracy of the personal data; when the processing is unlawful and you do not want it to proceed deletion of personal data; when the personal data are necessary for the interested party for the establishment, exercise or defense of a right in court; when the interested party has objected to the processing based on the legitimate interest of the owner because it considers its rights, interests and freedoms to prevail over this, and the owner has need to evaluate this prevalence ratio).
Portability (art. 20 GDPR): right to receive i your personal data processed by the Data Controller in a structured, commonly used format readable by an automatic device, as well as the right to have such data transmitted directly to another data controller, if the processing is based on consent or on a contract, and is carried out by automated means.
Opposition (art. 21 GDPR): right to object in any time, for reasons related to your particular situation, to the processing of personal data concerning you when such processing is based on lawfulness interest of the owner (which must prevail over rights, freedoms and interests of the interested party), or is carried out in performance of a task of public interest.
Automated decision-making process (art. 22 GDPR): right not to be subjected to decisions based on treatment entirely automated processing of personal data (e.g. using algorithms/artificial intelligence and without human intervention), including profiling, where this decision produces effects that have a significant impact on your person.
Your personal data will not be transferred outside the European Union.
We inform you that the Data Controller has appointed a Protection Officer of personal data who can be contacted atinfo@fitprime.com. We also inform you that pursuant to current legislation you can propose any complaints regarding the processing of your personal data to the Guarantor for the protection of personal data. You can exercise your rights, in the manner and within the limits of referred to in articles 12 and 23 of the GDPR, writing to Checkmoov s.r.l., Viale di Villa Massimo 39 - Rome (RM),info@fitprime.com. We also inform you that you can send reports or complaints relating to the processing of your personal data to the Guarantor for the protection of personal data. DPO:
- Name: E-Lex Law Firm