What information do we collect?

The Data Controller processes personal identification data (such as name and surname, telephone number, email address, billing data - later we will refer to these with the terms "personal data" or even "data") communicated by you. Data relating to payment methods (ie Credit Cards) are not memorised in any way.

Why do we gather data?

Your personal data will be used:

Without your express consent, as indicated by article 6 lett. b), e), f) GDPR, for the following Service Purposes:

• Conclude the contracts for the services of the Owner, as well as fulfil the pre-contractual, contractual and tax obligations deriving from existing relationships with you; in particular:
• Allow registration on the Site and the use of services reserved for registered users, including the possibility of purchasing online through the Site;
• Allow the conclusion of the purchase contract through the Site and the correct execution of the obligations arising from this contract, such as, by way of example, the delivery and payment, also online, of the products purchased;
• Allow assistance and customer care activities and therefore respond to requests for information from users or to respond to complaints, reports, disputes as well as in order to allow the user, if they wish, to issue a review;
• Execute requests sent by the user himself.
• Fulfil the obligations established by law, by a regulation, by community legislation or by an order of the Authority (such as in the matter of anti-money laundering);
• Exercise the rights of the Owner, for example the right of defence in court;

Only with your specific and distinct consent (art. 7 GDPR), for the following Marketing Purposes:

• Send you via e-mail, mail and/or sms and/or telephone contacts, newsletters, commercial communications and/or advertising material on products or services offered by the Data Controller and detection of the degree of satisfaction with the quality of services;
• Send you commercial and/or promotional communications from third parties via e-mail, post and/or text message and/or telephone contacts.

How do we process your data?

The processing of your personal data is carried out by means of the operations indicated in article 4 n. 2) GDPR and precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, limitation, communication, cancellation and destruction of data. Your personal data is processed both in paper form and in electronic and/or automated form.

The Data Controller will process personal data for the time necessary to fulfill the aforementioned purposes and in any case for no more than 10 years from the termination of the relationship for the Service Purposes and for no more than 2 years from the collection of data for the Marketing Purposes.

Katateck will process users' personal data in order to, in the case of paying for purchases made on the Site by credit card, manage and possibly block payment transactions relating to fraudulent orders, also through monitoring user behaviour and creating their profiles. This treatment will take place through an anti-fraud computer system and therefore in a completely automated way, also with the aid of systems provided by an external data controller.

How can you access your data?

Your data may be made accessible, for the purposes referred to in point B, to employees and collaborators of the Data Controller, in their capacity as persons in charge and/or internal data processors and/or system administrators, as well as to external data processors to allow the processing of payments for products purchased through this website.

Is your information shared with anyone else?

No data deriving from the web service (therefore navigation data specified above and cookies) is communicated or disseminated (except for communication to judicial or police bodies if necessary).

Without the need for express consent, see Article 6 lett. b) and c) GDPR, the Data Controller may communicate your data for the purposes referred to in point B.1 to Supervisory Bodies, Judicial Authorities, insurance companies for the provision of insurance services, as well as to all subjects to whom the communication is mandatory by law for the accomplishment of the aforementioned purposes. These subjects will process the data in their capacity as independent data controllers.

Where is the data stored?

Personal data is stored on a server called sauron.misterketing.it, with IP address 167.235.48.159, located in Nuremberg (DE), within the European Union.

Is it mandatory to submit information?

The provision of data for the purposes referred to in point B.1 is mandatory. In their absence, we will not be able to guarantee you the Services of point B.1.

The provision of data for the purposes referred to in point B.2 (marketing purposes) is instead optional. You can therefore decide not to provide any data or to deny, at a later time, the right to process data previously provided: in this case, you will not receive newsletters, commercial communications and advertising materials relating to the Services offered by the Data Controller. However, you will continue to be entitled to the Services referred to in point B.1.

What are your rights?

In your capacity as an interested party, you have the access rights pursuant to articles 15 - 22 GDPR, or right of access, right of rectification, right of cancellation ("right to be forgotten"), right of limitation of treatment, right to data portability, right of opposition, as well as the right of complaint to the Guarantor Authority.

How can you exercise your rights?

You may exercise your rights at any time by sending an e-mail to info@katateck.com

How can complaints be submitted?

The interested party has the right to lodge a complaint with the Supervisory Authority of the State of residence.

Are there any automated decision-making processes?

The Data Controller does not carry out treatments that consist of automated decision-making processes.

Who is the Data Controller?

The Data Controller is Katateck – Kataglobe Ltd, SmartCity Malta, SCM01, Ricasoli SCM 1001 – Malta