The Big Now S.p.A. is a company of the group of companies called Dentsu Italia S.p.A. (”Dentsu”), specialized worldwide in digital media and advertising. Dentsu helps its clients to improve how they advertise and market, whether by print, post, email or on websites. Dentsu believes that the responsible use of data supports business growth and builds strong relationships between brand and consumer. As a business, Dentsu is committed to respecting and protecting the privacy of all individuals with whom it interacts, it is committed to being transparent in the handling of personal information and processing of personal data, at all times in accordance with applicable privacy and data protection laws.
This Website and any services offered through the Website are reserved for individuals who are 16 years and over. Therefore, the Controller does not collect personal data relating to individuals under 16 years of age. Upon request of the Users, the Controller will promptly delete all personal data that has been involuntarily collected and related to subjects under the age of 16.
Users may also contact the Data Protection Officer (RPD or DPO) of the Controller, the contact data of which is reported below: Mr. Garreth Cameron - DPO EMEA, Garreth.Cameron@dentsuaegis.com - Mr. Lapo Curini Galletti – DPM Italia (Data Protection Manager), email@example.com.
1. Processing purposes
The personal data of the Users will be processed lawfully by the Controller pursuant to Article 6 of the Regulation for the following processing purposes:
The provision of personal data for the purposes of processing indicated above is optional but necessary; failure to provide the data will make it impossible for the User to browse the website, register with the Website and take advantage of the services offered by the Controller on the Website.
The Controller does not provide the Users’ data collected through the Website to any third party.
2. Processing methods and data retention times
The Controller will process the personal data of Users using manual and IT tools, with logic strictly related to the purposes themselves and, in any case, in order to guarantee the security and confidentiality of the data.
The Controller has implemented appropriate technical and organizational security measures in order to avoid the use, unlawful unauthorized access or accidental loss of Users’ data.
The personal data of Website Users will be retained for the time strictly necessary to carry out the main purposes explained in paragraph 1 above or, in any case, as necessary for the protection in civil law of the interests of both the Users and the Controller.
3. Transmission and dissemination of data
The employees and/or collaborators of the Controller who are in charge of managing the Website may become aware of the personal data of the Users. These subjects, who are formally appointed by the Controller as "persons in charge of processing", will process the User's data exclusively for the purposes indicated in this policy and in compliance with the provisions of the Applicable Law.
The personal data of the Users may also be disclosed to third parties who may process personal data on behalf of the Controller as “Data Processors”, such as, for example, IT and logistic service providers functional to the operation of the Website, outsourcing or cloud computing service providers, professionals and consultants.
Users have the right to obtain a list of any data processor appointed by the Controller, making a request to the Controller in the manner indicated in paragraph 4 below.
4. Rights of the Data subjects
Users may exercise their rights granted by the Applicable Law by contacting the Controller as follows:
Whether the User makes a request to the Controller concerning the Controller’s data handling and his/her personal data, as provided for by this paragraph, the Controller reserves the right to preemptively ask the User for further information with the sole aim to ascertain his/her identity before providing a response.
Pursuant to the Applicable Law, the Controller informs that Users have the right to obtain indication (i) of the origin of personal data; (ii) the purposes and methods of the processing; (iii) the logic applied in the event of processing carried out with the aid of electronic instruments; (iv) of the identification details of the data controller and processors; (v) the subjects or categories of subjects to whom the personal data may be communicated or who may come to aware of them as processors or agents.
Furthermore, Users have the right to obtain: a) access, updating, rectification, or, when interested, integration of data; b) the cancellation, transformation into anonymous form or the blockage of data processed in breach of the law, including data that does not need to be stored in relation to the purposes for which the data was collected or subsequently processed; c) certification to the effect that notification has been supplied of operations as per letters a) and b), as regards their content, to those to whom the data was communicated or disseminated, except for the case where notification proves impossible or requires the use of means clearly disproportionate to the right being protected.
Moreover, Users have: