Purpose of This Document

This document aims to inform the individual (hereinafter referred to as “Data Subject”) regarding the processing of their personal data (hereinafter referred to as “Personal Data”) collected by the data controller, Larin Srl, headquartered at Via della Rivetta 32B, 32100 Belluno, Italy, with VAT number IT 01144900253, and email address assistenza@larin.it (hereinafter referred to as “Data Controller”), through and AmuseApp (hereinafter referred to as “Application”).

Any modifications and updates will become binding as soon as they are published on the Application. Should the Data Subject not accept the changes made to the Privacy Policy, they must cease using the Application and may request the Data Controller to delete their Personal Data.

Categories of Personal Data Processed

The Data Controller processes the following types of Personal Data voluntarily provided by the Data Subject:

• Contact Data: name, surname, address, email, phone number, images, authentication credentials, and any additional information provided by the Data Subject.
• Fiscal and Payment Data: tax code, VAT number, credit card information, bank account details, etc.
• Employment-Related Data: information included in the CV, details regarding spouse or children, social security data, etc.

The Data Controller also processes the following types of Personal Data collected automatically:

• Technical Data: Personal Data generated by devices, applications, tools, and protocols used, such as device information, IP addresses, browser type, Internet Service Provider (ISP). This data can leave traces that, particularly when combined with unique identifiers and other information received from servers, can be used to create profiles of individuals.
• Navigation and Usage Data: such as visited pages, number of clicks, actions taken, session duration, etc.

Failure to provide Personal Data required by legal or contractual obligations, or necessary for the completion of the contract with the Data Controller, will result in the Data Controller being unable to establish or continue the relationship with the Data Subject.

The Data Subject who provides Personal Data of third parties is solely and exclusively responsible for their origin, collection, processing, communication, or dissemination.

Cookies and Similar Technologies

The Application uses cookies, web beacons, unique identifiers, and other similar technologies to collect Personal Data of the Data Subject regarding pages visited, links clicked, and other actions performed when using the Application. These are stored to be transmitted during subsequent visits by the Data Subject. The complete Cookie Policy can be reviewed at: [Insert Cookie Policy URL]

Legal Basis and Purpose of Processing

The processing of Personal Data is necessary:

• For Contract Execution:

  • Fulfillment of all obligations arising from pre-contractual or contractual relationships with the Data Subject.
  • Registration and authentication: to enable the Data Subject to register on the Application, access, and be identified, including through external platforms.
  • Support and contact with the Data Subject: to respond to inquiries from the Data Subject.
  • Payment management: to handle payments via credit card, bank transfer, or other means.

• For Legal Obligations:

  • Fulfillment of any obligations required by applicable laws, regulations, and regulations, particularly in the field of tax and fiscal matters.

• Based on the Data Controller’s Legitimate Interests:

  • Marketing purposes via email for the Data Controller’s products and/or services to directly sell products or services using the email provided by the Data Subject in the context of a similar sale.
  • Infrastructure management, optimization, and monitoring: to identify and resolve technical issues, improve the Application’s performance, and manage and organize information within an IT system (e.g., servers, databases).
  • Security and fraud prevention: to ensure the security of the Data Controller’s assets, infrastructure, and networks.
  • Statistical purposes with anonymous data: to conduct statistical analyses on aggregated and anonymous data to understand the Data Subject’s behavior, improve the Data Controller’s products and/or services, and better meet the Data Subject’s expectations.

• Based on the Data Subject’s Consent:

  • Profiling for marketing purposes: to provide the Data Subject with information about the Data Controller’s products and/or services through automated processing aimed at collecting personal information to predict or assess their preferences or behaviors.
  • Retargeting and remarketing: to deliver personalized advertising to the Data Subject who has previously visited or shown interest in the Application’s products and/or services using their Personal Data. The Data Subject can opt-out by visiting the Network Advertising Initiative page.
  • Marketing purposes of the Data Controller’s products and/or services: to send commercial and/or promotional information or materials, conduct direct sales activities, or perform market research using automated and traditional methods.
  • Marketing purposes of third-party products and/or services: to send commercial and/or promotional information or materials from third parties, conduct direct sales activities, or perform market research on their products and/or services using automated and traditional methods.
  • Communication of Personal Data for third-party marketing purposes: to communicate Personal Data to third parties in the marketing and advertising sector so they can use it to send commercial and/or promotional information or conduct direct sales or market research.

• Based on the Data Controller’s Legitimate Interests:

  • The Application facilitates interactions with external platforms or social networks whose Personal Data processing is governed by their respective privacy policies. These interactions and the information acquired through the Application are subject to the privacy settings chosen by the Data Subject on such platforms or social networks. This information—unless specific consent for additional purposes is given—is used solely to facilitate the use of the Application and provide the requested information and services.

The Data Controller may also use the Data Subject’s Personal Data for legal protection in judicial proceedings before competent courts.

Processing Methods and Recipients of Personal Data

Personal Data processing is carried out using paper-based and electronic tools, with organizational and logical methods strictly related to the purposes indicated and with appropriate security measures.

Personal Data is processed exclusively by:

• Individuals authorized by the Data Controller who have committed to confidentiality or have a legal obligation of confidentiality.
• Entities operating independently as separate data controllers or those appointed as data processors by the Data Controller to carry out all processing activities necessary to achieve the purposes outlined in this notice (e.g., commercial partners, consultants, IT companies, service providers, hosting providers).
• Entities or authorities to whom Personal Data must be communicated by law or by order of authorities.

These parties are required to use appropriate safeguards to protect Personal Data and may only access the data necessary to perform their assigned tasks.

Personal Data will not be indiscriminately disclosed in any manner.

Location

If necessary, Personal Data may be transferred to entities located outside the European Economic Area (EEA). Whenever Personal Data is transferred outside the EEA, the Data Controller will adopt all appropriate contractual measures to ensure an adequate level of protection for the Personal Data, including, among others, agreements based on standard contractual clauses approved by the European Commission. For information about the specific safeguards adopted, the Data Subject can contact the Data Controller at assistenza@larin.it.

Data Retention Period

Personal Data will be retained for the period necessary to fulfill the purposes for which they were collected, specifically:

• For contractual purposes with the Data Controller, Personal Data will be retained for the entire duration of the contractual relationship and, after termination, for the ordinary prescription period of 10 years. In case of judicial disputes, for the duration of the dispute and until the expiration of appeal periods.
• For legitimate interest purposes, Personal Data will be retained until the interest is fulfilled.
• For legal obligations, authority orders, and legal protection, Personal Data will be retained in accordance with the applicable timeframes and until the expiration of statutory limitations.
• For purposes based on the Data Subject’s consent, Personal Data will be retained until consent is revoked. For marketing purposes, for a period not exceeding 24 months.

After the retention period, all Personal Data will be deleted or maintained in a form that does not permit the identification of the Data Subject.

Data Subject Rights

Data Subjects have certain rights regarding their Personal Data processed by the Data Controller. Specifically, the Data Subject has the right to:

• Be informed about the processing of their Personal Data.
• Withdraw consent at any time.
• Restrict the processing of their Personal Data.
• Object to the processing of their Personal Data.
• Access their Personal Data.
• Verify and request the rectification of their Personal Data.
• Obtain the restriction of processing of their Personal Data.
• Request the deletion of their Personal Data.
• Transfer their Personal Data to another data controller.
• Lodge a complaint with the data protection authority and/or take legal action.

To exercise their rights, Data Subjects may send a request to assistenza@larin.it. Requests will be promptly addressed by the Data Controller and completed as soon as possible, in any case within 30 days.