SYNESGY APP
INFORMATION PURSUANT TO ART. 13 OF EU REGULATION 2016/679
You are viewing this Privacy Policy, since you joined Synesgy App (hereinafter “App”) and you can view its contents. Therefore, we need to process some personal data related to you. This processing will take place in compliance with current legislation and, in particular, in accordance with the provisions of the EU Regulation on the protection of personal data n. 2016/679 (hereinafter “GDPR”).
1 – Controller and contact details
Your personal data will be processed by CRIF SpA with headquarters in Via della Beverara 21 - Bologna (BO) (hereinafter “CRIF ”or “Controller ”), as Controller.
You can contact the Controller at the above address or by means of the following email addresses: e-mail: dirprivacy@crif.com and registered email : crif@pec.crif.com
2 – Place of data processing
The processing activities performed on the data collected for access and use of the App are mainly carried out at the CRIF headquarters and, in any case, in compliance with the provisions of the GDPR and all other applicable regulations.
3 – Processing methods
The data will be processed lawfully, correctly, in such a way as to guarantee its security and confidentiality, in accordance with the provisions of the GDPR and all other applicable laws. Personal data will be processed with electronic or automated tools.
4 - Categories of personal data processed
Following your access and use of the App, CRIF may process the following data for you referring to: name, surname, email, age, encrypted credentials, information on how you interact with the App, such as which features you use and how often, phone model, operating system, unique device ID, language, technical cookies in order to guarantee the authentication session.
5 – Purpose and legal basis of the processing of personal data
5.1 – Needed Purposes
Your personal data will be processed for the following Needed Purpose:
Providing personal data for this purpose is needed and does not require your consent, since this processing activity is based on art. 6, par. 1, let. b of GDPR. Any refusal to provide such data will make it impossible to use the App and enjoy its contents.
5.2 – Further Purposes
You have the option to accept the receipt of push notifications from the App via your device. You have the option, at any time, to activate or deactivate such notifications.
The provision of personal data for this purpose is optional and the related processing requires your explicit consent and indeed it is based on art. 6, par. 1, let. a of GDPR; any refusal to provide consent does not entail any consequences.
Any further processing for different purposes is excluded.
6- Storage times
With reference to the Processing referred to in point 5.1 “Needed Purpose”, your personal data will be stored for 18 months.
With reference to point 5.2 “Further Purposes”, your personal data will be processed and stored for a maximum of 24 months or in any case until you decide to revoke the consent given for the purposes described therein. To this end, you may revoke at any time your consent to the processing of personal data for the purposes referred to in point 5.2 through your device.
7 – Categories of subjects to whom personal data may be communicated or who may become aware of them
Personal data is processed only by persons with adequate technical skills, employees or collaborators, specifically trained and designated persons authorised to process data and/or by the Processors appointed by the Controller pursuant to articles 4, n. 8 and 28 of GDPR. The list of Processors can be requested from the Controller.
8 – Transfer of personal data outside the European Economic Area
In order to proceed with this processing activity, the Controller transfers personal data to its other Processors, also located in Third Countries outside the European Economic Area. The transfer is carried out in accordance with Chapter V of the GDPR.
9 - Rights of the data subjects
9.1 We inform you that, pursuant to articles 15 – 22 of the GDPR, you may exercise the following rights, including: obtaining access to your personal data and the information referred to in art. 15 of the GDPR, requesting rectification or erasure or the limitation and/or integration of the processing. You also have the right to object to the processing, as well as the right to request portability in the cases referred to in articles 20 and 21 of the GDPR. Furthermore, at any time, you may revoke the consent given, with the specification that the revocation of consent does not affect the lawfulness of the processing carried out until the revocation.
You may exercise your rights by contacting the Controller at the following contact details: e-mail: dirprivacy@crif.com and registered e-mail: crif@pec.crif.com
Pursuant to art. 77 of GDPR, you can also lodge a complaint with the Italian Supervisory Authority, following the instructions at the following link: http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524
10 – Data Protection Officer
For any questions regarding the processing of your personal data, you can contact the Data Protection Officer using the following contact details: e-mail: dirprivacy@crif.com : registered e-mail: crif@pec.crif.com .
11 – Update to this Privacy Policy
The Controller reserves the right to update this Privacy Policy at any time. Last update: 10.04.2025