Privacy Policy

GDPR - Regolamento UE 2016/679

The present privacy policy is written by Blue Bear s.r.l.s. unipersonal, in observance of the provisions of art. 13 of EU Regulation 2016/679, in relation with the personal data provided by the users or otherwise acquired when browsing the site, hereinafter “Site”.

1. Data Controller
Blue Bear s.r.l.s. unipersonal, via Cicerone n.19 Bagheria, Italy, REA PA-401212, email, hereinafter “BlueBear”.

2. Processed data
Personal data processed in the Site can be subdivided into:
Browsing data: the Site collects some personal data (IP address, browser, other) the transmission of which is considered implicit in the use of the Internet communication protocols. These data are used to retrieve anonymous statistical information on use of the present Site, and to identify faults and/or abuse.
Data provided voluntarily by the data subject: the Site is thought to be used by companies and professionals. The registration to the Site from third parties is consented to economic operators and is forbidden to under eighteens. Only necessary information functional to the aim of processing is required.

3. Purposes of processing
The Purposes of the processing of the personal data provided by the user are the following:
A. to allow you to browse and explore the Site and to prevent computer abuses;
B. to guarantee the access to the Site services and their use: registration and creation of the user Restricted Area and the Company Page, use of the tools based on the user type, notifications and messages via email related to the provided service, join the community, other;
C. to send newsletters with updates, news and in-depth analysis of the Site and its themes;
D. to discharge legal, accounting and tax obligations;
E. to carry out direct marketing activities via email;
F. to answer requests for assistance, which we will receive via email, livechat, ticket or telephone;
G. to answer requests for information, which we will receive via livechat or ticket.

4. Legal basis legitimating data processing
Purpose A: to guarantee the Site browsing, legitimate interest.
Purpose B: to use the Site and its services, providing services as per contract.
Purpose C: to send the Site newsletter with specific consent.
Purpose D: required to comply with legal obligations.
Purpose E: to send the Site’s commercial communications, with specific consent.
Purpose F: to answer requests for assistance, providing services as per contract.
Purpose G: to answer requests for information, with specific consent.

5. Nature of the provision
The provision of personal data, different from the browsing data (Purpose A), is optional.
The provision for the Purposes B-D-F is optional, but its refusal prevents BlueBear to execute the contractual obligations.
The provision for the Purposes C-E-G is a free choice of the user.

6. Right of information, modification, export and cancellation
Any user can independently inspect and modify the data provided accessing to the page “Personal Data” and the data visible to other users in the “Company Page” in their own restricted area.
The user can also ask for the cancellation of his profile at the page “User profile cancellation”: within three months the data will be cancelled or made anonymous in an irreversible way.
It is possible to ask for the export of the data provided via email:

7. Email management and consent withdrawal
Any user can independently validate or invalidate the reception of different kinds of email through the page “Personal Data”: notification, newsletter, marketing.
Invalidation equals consent withdrawal for the processing based on this.

8. Processing duration
Data are stored for the time strictly necessary for the management of the Purposes related to the data collected. The data processing ends up:
Purpose A: 14 months after provision.
Purpose B: with profile cancellation or 5 years after the user’s last access to his restricted area.
Purpose C-E: with consent withdrawal or 5 years after the user’s last access to his restricted area.
Purpose D: once the time range imposed by Italian civil and fiscal legislation has passed.
Purpose F-G: 30 days after provision.

9. Processing location
Data are processed with IT tools at the Data Controller’s seat. Processed data can be transferred out of the EU, but only to the countries which can grant an adequate level of protection.

10. Receivers of personal data
The data collected are processed by BlueBear staff.
Third parties can have access to some data as external receivers or autonomous holders. Main categories:
a. subjects who provide BlueBear with assistance and advice;
b. subjects who perform services connected and instrumental to the execution of the intended purposes (service of analysis, management of payments by credit card, IT system provider, other);
c. subjects to whom it is mandatory to communicate personal data in observance of the law.
The updated list can be requested from the Data Controller by each user.
Under no circumstances does BlueBear yield or sell personal data to third parties.

11. Display of contents from external platforms
This type of service allows the display of contents hosted on external platforms directly onto the site’s pages and to interact with them. The use of third party services is governed by their Privacy policies and not those of the Site.
The external services used from the site are:
Google fonts: for the personalization of the fonts. Personal data gathered: usage data and various types of data as specified in the information sheet: privacy policy. Place of processing: USA.
BootstrapCDN: for the personalization of the fonts and the icons. Personal data gathered: usage data and various types of data as specified in the information sheet: privacy policy. Place of processing: USA.

12. Data Security
The Controller processes the personal data of users by adopting appropriate security measures to prevent unauthorized access, modification and destruction of data.
Among the security measures adopted: backup system, SSL encryption, other.

13. Claim Right
Any user who believes that the processing of the given data has not been carried out according to the current regulations has the right to lodge a complaint with the competent EU state supervisory authority.

14. Clarifications
The Site can send emails through one or more external suppliers: this system may include the insertion of a tracking code on links or a transparent image that detects the opening of emails and clicks on links.
The Site may contain links to other websites that have no connection with BlueBear, also entered by users. BlueBear does not monitor these sites and cannot be held responsible for the contents and behaviour adopted by them.

15. Connection with the previous legislation
The personal data of the users registered on the Site before the entry into force of the 2016/679 EU Regulation and of this information were only given for the purposes B-D-F.

16. Italian language prevails
This information notice has been prepared in Italian. Translations, if available, are provided solely as a convenience to the user and, in the event of any conflict between the Italian and translated versions, the original Italian version shall prevail.

Privacy policy 2017.10.01 – 2018.05.23