The newsletter is sent via e-mail to those who ask for, by filling the newsletter form and accepting the processing of User Personal Data. The provision of data is optional. Without providing data, User won’t be able to receive our newsletter.
This website collects Personal Data from its users as per the article 13 of the EU 2016/679 Regulation (hereafter also GDPR).
Y Couture Fine Art sagl
Via Ai Ronchi 3 – 6912 Pazzallo – Lugano
Contact email: firstname.lastname@example.org
Company registration number: CHE-354-778-645
The Data Controller hereby informs you that your Personal Data will be processed in accordance with the above regulation, in order to safeguard the rights, the fundamental freedoms and the dignity of individuals, with special regard to confidentiality and personal identity.
Data may be transferred to third parties authorised to process Personal Data as per the article 28 of the GDPR, in particular to financial institutions, insurance companies, suppliers of services linked to the business activities, i.e. company advisers, where this is required for fiscal, administrative or contractual purposes, or compelled by current regulations.
User’s Personal Data may be transferred to external companies, identified each time, that will receive only the required data for the activities they applied for.
Every employee, advisor, and any other individual acting under the authority of the Data Controller, as per the article 29 of the GDPR, is named “Controller’s Representative” (hereafter also “Representative”).
The Representative or the Supervisor, where applicable, shall process data on instructions from the Data Controller, with special regard to the respect of safety measures, in order to ensure data safety and confidentiality. With regard to the protection of personal data, the user shall report to the Data Controller, as per the article 33 of the GDPR any case of Personal Data breach, in order to take the right measures to mitigate its possible adverse effects.
The Data Controller shall notify the Personal Data breach to the supervisory authority competent upon request.
Type of Collected Data and Purposes
The type of Personal Data collected by this website, autonomously or through third parties are: Personal References, Cookies and Statistical Data.
Personal Data can be intentionally entered by the User through the proper contact form. They are used only for identification, data management and communications the User applied for.
The cookies generated by the website, or by other additional services, don’t save Personal Data that may trace and/or inform about your own identity. They don’t present a risk for your privacy or for the IT systems you use to access the Website.
Any missing Personal Data, not provided by the User, may hinder the correct functioning of the website and not provide the right services.
The User assumes responsibility for releasing or sharing Personal Data through this website and accepts the right to communicate or spread them, exempting the Data Controller from any responsibility towards third parties.
Methods, place and delays for the processing of Personal Data
User Personal Data are collected and registered in a legal way and according to the principles and provisions indicated in the article 5, section 1 of the GDPR.
The Data Controller process Users’ Personal Data take every reasonable step to avoid unauthorized access, disclosure, alteration or erasure of User Personal Data.
User Personal Data are processed through IT and/or electronic devices, following methods and logics related to the main purposes. As well as the Data Controller, in some cases, other people can have access to your Data. Internal (administrative, sales, marketing, legal, system admin staff) or external staff (third party service suppliers, couriers, hosting provider, IT companies, media agencies) named, if required, Supervisors of the Processing. The list of the Supervisors an be asked to the Data Controller of the Processing.
User Personal Data are processed at the headquarters of the Data Controller, through web server located in Switzerland and in any other place the parties are located in. For further information, please ask the Data Controller.
User Personal Data are processed by the Data Controller during the whole job and even after, in order to preserve the rights of both parties, or for administrative purposes and/or to enforce obligations arising from the pro-tempore regulatory environment applied and with regard to the specific rules on Data Retention.
Purposes of the Processing of Collected Data
User Personal Data are only collected to allow the Data Controller to provide its services.
The types of Personal Data used for each purpose are specified in other sections of this document.
User Personal Data are processed in accordance with the Article 6, Section 1, Letter b) of the GDPR.
Any person under 18 years old, without prior consent of their parents or a tutor, cannot send information to this website or buying or executing a legal act, without the above consent, unless it’s allowed by the rules in force.
Defence in Court
User Personal Data may be used for legal purposes by the Data Controller, in Court or in the stages leading to possible legal action arising from improper use of this Application or the related services.
The User declares to be aware that the Data Controller may be required to reveal Personal Data upon request of Public Authorities.
System Logs and Maintenance
For needs related to operation and maintenance, this Application and any third party services it uses may collect system logs, which are files that record the interactions and may also contain Personal Information, such as IP address User.
More details concerning the collection or processing of User Personal Data may be requested to the Data Controller at any time using the specific contact form on this website or by writing to this address: email@example.com.
Exercise of Rights by Users
In accordance, within the limits and under the conditions laid down by the regulation on Personal Data protection, concerning the exercise of rights by the users, as per the art. 15-22 of the EU Regulation No 2016/679, regarding the treatments covered by this legislation, the data subject shall have the right to obtain from the Data Controller confirmation as to whether or not Personal Data concerning him or her are being processed, and access to the content and the origin. The interested person has also the right to request that any data that are treated breaching the law be embedded, cancelled, updated, corrected, transformed into anonymous form, or blocked, as well as to oppose their treatment in any case, for legitimate reasons. Such requests must be addressed to the Data Controller, through the specific contact form on this website or by writing to this address: firstname.lastname@example.org.
This website does not support “Do Not Track” requests.
As per the article 17 of the GDPR, the data subject shall have the right to obtain from the Data Controller that any Personal Data concerning him or her, be erased (“right to be forgotten”), transformed into anonymous form, or blocked, as well as to oppose their treatment in any case, for legitimate reasons. Request of erasure of Personal Data must be send through the specific contact form on this website or by writing to this address: email@example.com