Privacy Policy
1. Summary Privacy Policy
1.1 Internet website Moresi.com
Necessary cookies
Personal data collected: HTTP Cookie, IP address
External cookie sources: Google, Linkedin, Youtube
Preference cookies
Personal data collected: HTTP Cookie, IP address
External cookie sources: none
Statistics cookies
Personal data collected: HTTP Cookie, IP address
External cookie sources: Google, Linkedin, Microsoft
Marketing cookies
Personal data collected: HTTP Cookie, Pixel Tracker, and IP address
External cookie sources: Google, Linkedin, Microsoft, Yotube
For the updated Cookie Statement, please refer to the following link https://moresi.com/cookie-policy/ and the relevant privacy policies of the individual vendors.
1.2 Moresi.com newsletter service
Mailchimp newsletter mailing service
Personal data collected: first name, last name, email address, company, company location, IP address
External databases: Mailchimp cloud application database (see dedicated section of the full privacy policy)
1.3 Moresi.com anti-spam service
E-mail traffic log
Personal data collected: first name, last name, email address, IP address
1.4 Moresi.com e-mail service
E-mail traffic log
Personal data collected: first name, last name, email address, IP address
E-mail traffic
Personal data collected: first name, last name, email address, additional personal data entered in the email body, IP address
1.5 Moresi.com business master data archive
Management applications
Personal data collected: first name, last name, email address, landline phone number, mobile phone number, business address, business location
External database: Microsoft Sharepoint application database
2. Full Privacy Policy
2.1 Initial note
The corporate headquarters of Moresi.com sa is located within the Swiss Confederation and therefore this company is subject, first and foremost, to the Federal Data Protection Act (DPA) in the management of personal data, particularly of persons residing in Switzerland.
In addition, the EU General Data Protection Regulation (GDPR) serves as the legal basis for handling personal data of EU citizens.
In the case of processing of personal data of employees and/or collaborators of third-party companies, customers and/or suppliers of Moresi.com, the data controller turns out to be the third-party company itself.
Personal data are used, by Moresi.com, on behalf of the third company to deliver the products and/or services defined by the contract.
Therefore, Moresi.com, in this context, results to be the data controller only for the part of the service under its responsibility.
Contact the data controller of the third-party company for more information regarding the processing itself.
In the case of processing of personal data of individuals, by companies that are customers and/or suppliers of Moresi.com, through products and/or services offered by Moresi.com, the data controller turns out to be the customer and/or supplier company.
Therefore, Moresi.com, in this context, results to be the data controller only for the part of the service under its responsibility and for the level of access to the IT infrastructure on which such personal data are stored.
Moresi.com, on the other hand, turns out to be the data controller only for those processing operations whose collected personal data are directly provided by the owners of such data (where, therefore, there is no direct or indirect contractual link between the data owner and Moresi.com).
Moresi.com also turns out to be the owner of the processing of personal data of employees and/or collaborators of third-party companies, where the purpose of the processing is different from what is stated in the contract between Moresi.com and the third-party company.
Data controller
Moresi.com SA
via Pedemonte di Sopra 1
6818 Melano
Switzerland
privacy@moresi.com
2.2 Definitions And Types Of Personal Data Processed
Personal data means any information that identifies or makes identifiable, directly, or indirectly, a natural person and that can provide information on his characteristics, habits, lifestyle, personal relationships, health status, economic situation, etc.
Processing of personal data means any operation or set of operations, performed with or without the aid of automated processes and applied to personal data or sets of personal data, even if not recorded in a database, such as collection, recording, organization, storage, modification, extraction, use, communication by transmission, dissemination, or any other form of making available, restriction, erasure, or destruction.
The personal data collected by Moresi.com, either independently or through third parties, are as follows:
– Cookie
– IP address
– E-mail
– Name
– Surname
– Landline Phone Number
– Corporate address
– Job title
2.3 Purpose Of Processing and Legal Basis
Users’ personal data are collected to enable Moresi.com to provide its services, or strictly related to business operations.
The types of Personal Data used for each purpose are indicated in the specific sections of this document.
The Processing of Personal Data is carried out exclusively for the following purposes:
– To meet the user’s requests for information and assistance. The processing is functional to comply with a user request and is based on the performance of a contract or pre-contractual measures.
– to ensure the proper functioning of the web pages and their content. In this case, the data processing is based on the legitimate interest of the Data Controller.
– for sending one or more newsletters at the user’s request. The processing is based on the data subject’s permission.
– to communicate your personal data where we are requested to do so by the competent authorities. In this case, the processing of your data is based on the need to fulfill a legal obligation.
By accepting this Privacy Policy, you declare that you approve it in all its points.
To unsubscribe from the newsletter, you can do so at any time, simply click on the appropriate link found within each communication you receive.
2.4 Data voluntarily supplied by the user
No submission of personal data by the user is required to consult the site.
However, any contact with Moresi.com SA or the optional, explicit, and spontaneous sending of messages, of
electronic or traditional mail, to the addresses indicated on the site imply the subsequent acquisition
of the sender’s e-mail address, or even postal address, or the related telephone number, necessary to respond to requests, as well as any other personal data included in the related communications.
These data will be used for the sole purpose of following up on the user’s request and may be communicated to third parties only if this is necessary for that purpose.
The processing of data for these purposes does not require your consent since the processing is necessary
to the performance of a contract to which you are a party, or the execution of pre-contractual measures taken at your
request, as well as, where applicable, to fulfill a legal obligation.
2.5 Storage Period of Personal Data
Personal data are processed by both automated and paper-based means, solely for the purposes indicated and for the time strictly necessary for the purposes for which they were collected.
It is specified that the Data Controller has taken all necessary security measures to prevent data loss, illicit or incorrect use and unauthorized access.
The data you provide to us will be kept by us only if necessary to fulfill the purpose for which you have provided us with your data or to comply with legal requirements.
Regarding any further personal data, since it is not possible to determine with precision the period of
storage, the Data Controller undertakes as of now to inspire the processing of personal data to the principles of adequacy, relevance and minimization of data, as required by the European Regulations and Federal Regulations, constantly checking the necessity of their storage.
Therefore, once the purposes for which they were collected and processed have been achieved, they will be removed from the
systems or made completely anonymous.
If you have given us your explicit consent to use your personal data for advertising purposes (such as newsletter registration), we will use your data for these purposes until you revoke your consent.
The consent provided can be revoked at any time with effect for the future.
2.6 Categories Of Data Recipients
The Data Controller processes Users’ Personal Data by taking appropriate security measures to prevent unauthorized access, diffusion, modification, or destruction of Personal Data.
The processing is carried out by means of computer and/or telematic tools, with organizational methods and logics strictly related to the indicated purposes.
In addition to the Data Controller, in some cases, for the pursuit of the purposes indicated above, it may be necessary for the Company to communicate your Personal Data to the following categories of recipients: categories of employees involved in the company’s organization (administrative, sales, marketing, legal, system administrators) or external parties (such as IT service providers) also designated, if necessary, as Data Processors by the Data Controller may have access to the Data. The updated list of Data Processors can always be requested from the Data Controller.
• Company employees, duly authorized and designated as the Administrator of the System by the Data Controller in accordance with the European Regulations and Federal Regulations.
• third parties who can access the data by virtue of legal provisions provided by the law European Union or that of the member state to which the Data Controller is subject.
• external third parties (such as IT service providers) also appointed, if necessary, as Data Processors by the Data Controller. The updated list of Data Processors can always be requested from the Data Controller.
Any communication of personal data will take place in full compliance with the legal provisions provided for
Swiss and European regulations and the technical and organizational measures put in place by the Company to guarantee an adequate level of security.
2.7 Transfer Of Personal Data to Third Countries
The data will mainly be processed within the national territory, but may be transferred
also to other countries within the territory of the EU.
Any transfer of the User Data to countries located outside the EU will only take place in compliance with adequate safeguards for the purposes of the transfer itself, i.e., that the Confederation has confirmed that the Third Country has an adequate level of data protection or there are other safeguards relating to data protection, such as binding corporate rules or signing EU standard contractual clauses.
The specific locations where Personal Data used for each purpose will be processed are indicated in the specific sections of this document.
2.8 Privacy policy for the use of Mailchimp
The newsletter is sent using “MailChimp,” a newsletter sending platform of the U.S. vendor Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.
The email addresses of recipients of our newsletters, as well as other data described in this policy, are stored on MailChimp’s servers in the United States. MailChimp uses this information to send and rate the newsletter on our behalf. In addition, based on its own information, MailChimp may use this data to optimize or improve its services, such as to technically optimize the sending and presentation of newsletters or for economic purposes to determine which countries recipients come from.
However, MailChimp does not use the data of our newsletter recipients to write to themselves or to pass it on to third parties.
MailChimp is certified under the U.S.-EU “Privacy Shield” data protection agreement and is therefore committed to complying with EU data protection regulations. In addition, we have entered a “Data Processing Agreement” with MailChimp. This is a contract in which MailChimp agrees to protect our users’ data, to process it on our behalf in accordance with data protection regulations, and in particular, not to pass it on to third parties. You can view MailChimp’s privacy policy here: Data Protection Policy (“Privacy Policy”); “Mailchimp and European Data Transfers” (“Mailchimp and European Data Transfers”).
Mailchimp has implemented conformity measures for international data transfers. These apply to all global activities where Mailchimp processes personal data of individuals in the EU. These measures are based on the EU’s Standard Contractual Clauses (SCC). For more information, visit: https://mailchimp.com/legal/data-processing-addendum/
The processing of data entered in the module to subscribe to the newsletter is done exclusively based on your permission according to GDPR and current national data processing regulations. The permission given to store the data and e-mail address and to use them for sending the newsletter can be revoked at any time, for example by clicking on the unsubscribe link in the newsletter.
2.9 Data subject’s rights
The persons to whom the personal data refer have the right, at any time, to obtain confirmation
of the existence or non-existence of the same data and to know its content, verify its accuracy or request
their integration or updating, or their rectification.
The following is also specified:
– it is possible to revoke consent to processing at any time.
It should be noted, however, that revocation of permission does not affect the lawfulness of the processing based on the permission before revocation.
– it is possible to ask the Data Controller for access to personal data.
– it is possible to obtain from the Data Controller the rectification and integration of personal data deemed inaccurate, including by providing a simple supplementary statement.
– it is possible to obtain from the Data Controller the cancellation of personal data.
– it is possible to obtain from the Data Controller the limitation of the processing of personal data if one of the hypotheses established by the reference legislation occurs.
– it is possible to receive from the Data Controller the personal data concerning you in a format that is structured, commonly used, and machine-readable format, as well as it is possible that such data be transmitted to another Data Controller without obstacles, as provided for in the reference legislation.
– it is possible to object at any time, for reasons related to your situation, to the processing of personal data carried out, including profiling.
– you can submit a complaint to a supervisory authority, if you believe that the processing that concerns you you violates the relevant legislation. The complaint may be submitted in the country where you habitually reside, works or in the place where the alleged violation occurred.
To exercise each of your rights, requests should be addressed to:
by e-mail, to the address privacy@moresi.com
or
by mail, Moresi.com SA via Pedemonte di Sopra 1 6818 Melano Switzerland
by providing the following data:
– – first name, last name, and mailing address.
– – details of the application.
– – color and clearly legible copy of a valid identification document.
In some cases, where IT platforms allow, it is possible for the user to operate independently regarding cancellation or updating of the authorization to process their personal data.
2.10 Amendments to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to Users on this page. Therefore, please consult this page often, taking as reference the date of last modification indicated at the bottom. In the event of non-acceptance of the changes made to this privacy policy, the User is required to notify the Controller of her/his wish to discontinue or modify her/his authorization to process her/his personal data (compatibly with the security requirements defined by the Swiss telecommunications laws). In some cases, where IT platforms allow it, it is possible for the user to operate autonomously regarding the cancellation or updating of the authorization to process his or her personal data. Unless otherwise specified, the previous privacy policy will continue to apply to Personal Data collected up to that point.
Updated to September 11, 2023