IPAZIA SERVICE S.R.L.Privacy policy and Cookie policy
Ipazia Service is aware of the importance of the personal data of its clients and users, therefore pursuant to Article 13 of Legislative Decree no. 196/2003 - "Privacy Code" regarding the protection of personal data and Article 13 of EU Regulation no. 2016/679 (hereinafter, "GDPR"), we hereby inform you that the processing of personal data provided by you and personal information collected through the present website www.ipaziaservice.it, hereinafter referred to as "the Site", will be based on the principles of fairness, legitimacy and transparency, thus protecting your privacy and your rights in the following ways and for the following purposes:
1) Data Controller and Data Processor
The Data Controller of the data collected on the Site is Ipazia Service located in Via Maremmana, 1 - 00017 Nerola (RM), Italy (hereinafter, "Ipazia Service" or the "Data Controller").
The person responsible for the processing of personal data is Mr. Giancarlo Di Virgilio that can be contacted at the following e-mail address privacy@ipaziaservice.it.
2) Purpose of Data Processing
The Data Controller handles personal, sensitive and identifying data (e.g. name, surname, company name, address, date and place of birth, telephone, profession, e-mail, bank and payment details, state of health and conditions in general) - hereinafter, "personal data" or even "data" communicated by you when signing contracts for the services provided by the Data Controller.
3) Category of data processed, purposes of processing carried out on the Site
Different types of personal data are collected and processed through the Site, for different purposes and in different ways. More specifically:
(a) Cookies: these are small text files that are automatically stored on the user's PC browser. They collect basic information about internet navigation and are recognized through the browser each time the user logs on to the Site. In this case, the personal data related to navigation are processed both to allow the correct functioning of the Site and for marketing purposes. In this regard, we encourage you to read the specific Cookie Policy;
(b) Registration and Services: these are personal data voluntarily provided by the user (such as e-mail address, personal details, password and information provided by filling in the personal account registration form), or otherwise legitimately collected, in order to meet the user's requests and offer services, assistance and information on Ipazia Service products. The personal data provided directly by the user and related to work experience and education, to apply for a job at Ipazia Service along with a CV, are processed by the latter to examine the application submitted.
(c) Log-in via social media: registration and access via social media involves the disclosure of certain data (including name, surname, email and any other data relating to the user and available on their social media page) by the selected social media and require a specific authorization to proceed before logging in. In some cases, social media sites may require some feedback and information about logging in. For more information, please refer to the relevant privacy documents on
Facebook ( https://www.facebook.com/about/privacy/update?ref=old_policy )
Google + ( https://policies.google.com/privacy );
d) Marketing: with the express consent of the user, Ipazia Servicemay process the user's personal data for marketing purposes, i.e. to send the user, also by newsletter, email, text message and mms, information and updates on products, sales, promotional campaigns, events and other initiatives promoted by Ipazia Service, also in collaboration with its business partners, as well as to carry out specific market research.
(e) Analysis of preferences: with the express consent of the user, Ipazia Service may also process the user's personal data for the purpose of research into consumer habits and choices, to make its products and initiatives more responsive to the tastes and needs of its clients.
(f) Disclosure to third parties: With the express consent of the user, Ipazia Service may transfer the user's personal data to the other companies affiliated to Ipazia Service, as well as to its business partners, so that they may process such data for their own commercial and marketing purposes both through technological tools, such as newsletters, email, text messages, mms, and traditional tools such as mail and telephone.
4) Source of personal data and legal basis for processing
The personal data collected and processed by Ipazia Service are provided directly by the user, with the exception of navigation data referred to in the "Cookie" section of point 3 (a) above and data collected in case of registration and access via social media as referred to in the "Log-in via social media" section of point 3 (c) above.
Except for navigation data, which are regulated by the Cookie Policy, the processing of personal data is justified:
- for operational purposes related to the processing of requests received as well as for possible litigation (defaults, debt collection for contributions to be paid, legal disputes).
- for the purposes of Registration and Services (point 3 (b) above, in the legitimate interest of Ipazia Service to provide information and services on the Site and respond to the requests of the user. The legal basis for the processing of data relating to applications lies within the legitimate interest of Ipazia Service in evaluating the same applications for the selection process;
- for the purposes of Log-in via social media (point 3 c), Marketing (point 3 d), Analysis of preferences (point 3 e) and for the purposes of Disclosure to third parties (point 3 f), with the express consent of the user;
Only with your express and clear consent (art. 23 and 130 of the Privacy Code and art. 7 of the GDPR), for the following Marketing Purposes: to send information, advertising and promotional material on the activities of Ipazia Service and affiliated bodies (sending papers and ID cards, invitations to events, etc.) by e-mail, post and/or text messages and/or telephone contacts, newsletters, commercial communications and/or advertising material on the products or services offered by the Data Controller and to measure the degree of satisfaction with the quality of the services;
5) Analysis of consumption habits and choices
As indicated in point 3 (d) above and with the express consent of the user, Ipazia Service may process the user's personal data for the purpose of analysing users' consumption habits and choices in order to make its products and initiatives more responsive to the tastes and needs of its clients.
The data will be handled with the aid of automated tools, through which Ipazia Service will process data relating to the value and frequency of purchased services over a specific period of time. The sole objective of this study is to provide clients and users with products, services and initiatives that are more in line with their tastes and needs, but in a non-intrusive manner.
As indicated in point 3 (a) above, with the express consent of the user, Ipazia Service may also process the user's personal data, using automated tools to analyse cookies in order to monitor navigation on the Site and propose services in line with the latter.
6) Methods for processing personal data and storage period
The processing of your personal data is carried out through the operations indicated under art. 4 of the Privacy Code and art. 4 n. 2) of the GDPR and precisely: collection, recording, organisation, storage, consultation, processing, alteration, selection, retrieval, comparison, use, interconnection, restriction, transmission, dissemination erasure or destruction. Your personal data are subject to both paper and electronic and/or automated processing. The Data Controller will process your personal data for the time necessary to fulfil the above purposes and in any case for no longer than 5 years from the termination of the relationship for the Service Purposes and for no longer than 1 year from the collection of data for Marketing Purposes.
However, such measures, due to the nature of online transmission, cannot limit or exclude in absolute terms any risk of unauthorized access or dispersion of data not attributable to Ipazia Service. To this end, it is recommended that you periodically check that your computer is equipped with suitable software to protect data transmission over the Internet, both incoming and outgoing (such as up-to-date antivirus systems) and that your Internet service provider has adopted suitable measures for the security of online data transmission (such as firewalls and spam filters).
Personal data processed in order to give feedback to the user, i.e. to provide a service, will be kept for the time necessary to provide them with the feedback or service requested. The data collected as a result of an application for a job will be kept for the time necessary to evaluate said application. Data collected for profiling purposes will be kept for a limited period of time in order to allow Ipazia Service to evaluate the user's preferences, always respecting the privacy and consent provided. Data collected for marketing purposes will be kept for an appropriate period of time in line with the sector of reference and in consideration of the interest shown by the client to receive updates on products and events organized by Ipazia Service. For further information, please contact the Data Protection Manager.
7) Data transfer
Personal data are stored on servers and archives of the Data Controller and/or third party companies and appointed as System Administrators and/or Data Processors, located in the EU. Data will not be transferred outside the European Union.
8) Compulsory or optional data transfer.
With the exception of navigation data, whose provision and collection are regulated by the Cookie Policy, the provision of personal data collected through the Site, both to meet the requests and questions of users and for marketing purposes and to analyse consumer habits and preferences, is free, discretionary and optional. The transmission of personal data is mandatory for the management of requests received, to provide information and to allow any compensation due. Since your personal data may include sensitive information (relating to your state of health), we will be able to process such data only after having obtained your express consent. Failing such data, we will not be able to provide you with the requested services; the optional disclosure of certain additional data (relating to your contact details) may also be useful to facilitate the sending of notices and service communications.
9) Categories of recipients of personal data
Ipazia Service shall transmit the personal data of users of the Site only to the extent permitted by law and in accordance with what is set out below. In addition to what indicated in point 3 (f) above. (i.e. the disclosure of personal data to third parties affiliated to Ipazia Service or to commercial partners upon express consent) and point 3 (c) above (i.e. the use of Log-in via social media), personal data will be processed and made known to:
a. The Data Controller;
b. The Data Controller's staff, for the fulfilment of the user's requests (registration to the website,registration to the Reserved Area, reply to a request for information as well as settlement of payments and application for membership);
c. The staff of partner companies in their capacities as designated data processors;
d. The companies that provide specific technical and organizational services for Ipazia Service related to the Site and the management of marketing and communication activities and users’ requests, in their capacity as data processors.
Furthermore, the data may be communicated, with no need for express consent, to the police or judicial authorities, in accordance with the law and upon formal request by such parties, or should there be well-founded reasons to believe that the communication of such data is reasonably necessary to (1) investigate, prevent or take initiatives relating to suspected illegal activities or assist state control and supervisory authorities; (2) defend oneself against any complaint or accusation by a third party, or protect the security of its website and company; or (3) exercise or protect the rights, property or safety of Ipazia Service, of companies within the same group, its affiliates, clients, employees or any other person. Data will not be transferred outside the European Union.
10) Disclosure of data
With no need for express consent (ex. art. 24 letter a), b), d) of the Privacy Code and art. 6 letter b) and c) of the GDPR), for the purposes set forth in art. 3, the Data Controller may transmit your data to judicial authorities, insurance companies for the provision of insurance services, other Health Service Providers to which services are outsourced, Mutual Aid Companies and Health Care Funds, Banks as well as to those subjects for whom communication is required by law in order to fulfil the said purposes. These subjects will process the data in their capacity as independent data controllers.
11) Rights recognized to the user by privacy law
In your capacity as interested party, you have the rights set forth under art. 7 of the Privacy Code and art. 13 paragraphs 2, 15, 18, 19 and 21 of the GDPR, summarized hereunder:
- To get confirmation of the existence or not of personal data concerning you, even if not registered yet, and their transmission in an intelligible form;
- to obtain indication of: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applicable in the event of processing carried out with the aid of electronic instruments; d) the identification details of the data controller, data processors and the representative designated pursuant to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1, of the GDPR; e) the subjects or categories of subjects to whom the personal data may be transmitted or who may become aware of such data in their capacity as designated representatives throughout the country, data processors or persons in charge;
- To obtain: a) the updating, rectification or, whenever interested therein, integration of data; b) the cancellation, anonymization or restriction of data that have been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed; c) a confirmation that the operations referred to under letters a) and b) have been notified, also as regards their content, to those to whom the data were transmitted or disclosed, unless this requirement turns out to be impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
- To object, either in full or in part: a) for legitimate reasons, the processing of personal data concerning you, even if pertinent to the purpose of collection; b) the processing of personal data concerning you for the purpose of sending marketing materials or commercial communications, through the use of automated calling systems without the intervention of an operator by e-mail and/or through traditional marketing methods by telephone and/or certified mail. Please note that the right to object of the interested party, set out in point b) above, for the purposes of direct marketing by automated means extends to traditional methods and that in any case the right to object can be exercised also partially. Therefore, the interested party may decide to receive only communications using traditional methods or only automated communications or neither.
Where applicable, you also have the rights set forth under articles 16-21 of the GDPR (Right to rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object), as well as the right to complain to the Guarantor Authority on www.garanteprivacy.it , by clicking here
12) How to exercise your rights
You may exercise your rights at any time by sending:
- A registered letter with acknowledgement of receipt to Ipazia Service, via Maremmana, 1 00017 Nerola (RM).
- An e-mail to privacy@ipaziaservice.it
13) Data processors and persons in charge
The updated list of data processors and persons in charge of processing is kept at the registered office of the Data Controller.
• The applicant, having acquired the information provided by the data controller, pursuant to art. 13 of Legislative Decree no. 196/2003 and EU Regulation no. 2016/679, is aware, in particular, that the processing will concern the "sensitive" data referred to under art. 4 paragraph 1 letter d) of art. 266 of Legislative Decree no. 196/2003, i.e. those relating to the state of health.
• Gives his/her consent for the processing of the data necessary to carry out the operations indicated in the privacy policy.
• Gives his/her consent for the communication of the data to the subjects indicated in the privacy policy.
• Gives his/her consent for the processing of data for promotional and marketing purposes.
Last updated 4 July 2018
Ipazia Service is aware of the importance of the personal data of its clients and users, therefore pursuant to Article 13 of Legislative Decree no. 196/2003 - "Privacy Code" regarding the protection of personal data and Article 13 of EU Regulation no. 2016/679 (hereinafter, "GDPR"), we hereby inform you that the processing of personal data provided by you and personal information collected through the present website www.ipaziaservice.it, hereinafter referred to as "the Site", will be based on the principles of fairness, legitimacy and transparency, thus protecting your privacy and your rights in the following ways and for the following purposes:
1) Data Controller and Data Processor
The Data Controller of the data collected on the Site is Ipazia Service located in Via Maremmana, 1 - 00017 Nerola (RM), Italy (hereinafter, "Ipazia Service" or the "Data Controller").
The person responsible for the processing of personal data is Mr. Giancarlo Di Virgilio that can be contacted at the following e-mail address privacy@ipaziaservice.it.
2) Purpose of Data Processing
The Data Controller handles personal, sensitive and identifying data (e.g. name, surname, company name, address, date and place of birth, telephone, profession, e-mail, bank and payment details, state of health and conditions in general) - hereinafter, "personal data" or even "data" communicated by you when signing contracts for the services provided by the Data Controller.
3) Category of data processed, purposes of processing carried out on the Site
Different types of personal data are collected and processed through the Site, for different purposes and in different ways. More specifically:
(a) Cookies: these are small text files that are automatically stored on the user's PC browser. They collect basic information about internet navigation and are recognized through the browser each time the user logs on to the Site. In this case, the personal data related to navigation are processed both to allow the correct functioning of the Site and for marketing purposes. In this regard, we encourage you to read the specific Cookie Policy;
(b) Registration and Services: these are personal data voluntarily provided by the user (such as e-mail address, personal details, password and information provided by filling in the personal account registration form), or otherwise legitimately collected, in order to meet the user's requests and offer services, assistance and information on Ipazia Service products. The personal data provided directly by the user and related to work experience and education, to apply for a job at Ipazia Service along with a CV, are processed by the latter to examine the application submitted.
(c) Log-in via social media: registration and access via social media involves the disclosure of certain data (including name, surname, email and any other data relating to the user and available on their social media page) by the selected social media and require a specific authorization to proceed before logging in. In some cases, social media sites may require some feedback and information about logging in. For more information, please refer to the relevant privacy documents on
Facebook ( https://www.facebook.com/about/privacy/update?ref=old_policy )
Google + ( https://policies.google.com/privacy );
d) Marketing: with the express consent of the user, Ipazia Servicemay process the user's personal data for marketing purposes, i.e. to send the user, also by newsletter, email, text message and mms, information and updates on products, sales, promotional campaigns, events and other initiatives promoted by Ipazia Service, also in collaboration with its business partners, as well as to carry out specific market research.
(e) Analysis of preferences: with the express consent of the user, Ipazia Service may also process the user's personal data for the purpose of research into consumer habits and choices, to make its products and initiatives more responsive to the tastes and needs of its clients.
(f) Disclosure to third parties: With the express consent of the user, Ipazia Service may transfer the user's personal data to the other companies affiliated to Ipazia Service, as well as to its business partners, so that they may process such data for their own commercial and marketing purposes both through technological tools, such as newsletters, email, text messages, mms, and traditional tools such as mail and telephone.
4) Source of personal data and legal basis for processing
The personal data collected and processed by Ipazia Service are provided directly by the user, with the exception of navigation data referred to in the "Cookie" section of point 3 (a) above and data collected in case of registration and access via social media as referred to in the "Log-in via social media" section of point 3 (c) above.
Except for navigation data, which are regulated by the Cookie Policy, the processing of personal data is justified:
- for operational purposes related to the processing of requests received as well as for possible litigation (defaults, debt collection for contributions to be paid, legal disputes).
- for the purposes of Registration and Services (point 3 (b) above, in the legitimate interest of Ipazia Service to provide information and services on the Site and respond to the requests of the user. The legal basis for the processing of data relating to applications lies within the legitimate interest of Ipazia Service in evaluating the same applications for the selection process;
- for the purposes of Log-in via social media (point 3 c), Marketing (point 3 d), Analysis of preferences (point 3 e) and for the purposes of Disclosure to third parties (point 3 f), with the express consent of the user;
Only with your express and clear consent (art. 23 and 130 of the Privacy Code and art. 7 of the GDPR), for the following Marketing Purposes: to send information, advertising and promotional material on the activities of Ipazia Service and affiliated bodies (sending papers and ID cards, invitations to events, etc.) by e-mail, post and/or text messages and/or telephone contacts, newsletters, commercial communications and/or advertising material on the products or services offered by the Data Controller and to measure the degree of satisfaction with the quality of the services;
5) Analysis of consumption habits and choices
As indicated in point 3 (d) above and with the express consent of the user, Ipazia Service may process the user's personal data for the purpose of analysing users' consumption habits and choices in order to make its products and initiatives more responsive to the tastes and needs of its clients.
The data will be handled with the aid of automated tools, through which Ipazia Service will process data relating to the value and frequency of purchased services over a specific period of time. The sole objective of this study is to provide clients and users with products, services and initiatives that are more in line with their tastes and needs, but in a non-intrusive manner.
As indicated in point 3 (a) above, with the express consent of the user, Ipazia Service may also process the user's personal data, using automated tools to analyse cookies in order to monitor navigation on the Site and propose services in line with the latter.
6) Methods for processing personal data and storage period
The processing of your personal data is carried out through the operations indicated under art. 4 of the Privacy Code and art. 4 n. 2) of the GDPR and precisely: collection, recording, organisation, storage, consultation, processing, alteration, selection, retrieval, comparison, use, interconnection, restriction, transmission, dissemination erasure or destruction. Your personal data are subject to both paper and electronic and/or automated processing. The Data Controller will process your personal data for the time necessary to fulfil the above purposes and in any case for no longer than 5 years from the termination of the relationship for the Service Purposes and for no longer than 1 year from the collection of data for Marketing Purposes.
However, such measures, due to the nature of online transmission, cannot limit or exclude in absolute terms any risk of unauthorized access or dispersion of data not attributable to Ipazia Service. To this end, it is recommended that you periodically check that your computer is equipped with suitable software to protect data transmission over the Internet, both incoming and outgoing (such as up-to-date antivirus systems) and that your Internet service provider has adopted suitable measures for the security of online data transmission (such as firewalls and spam filters).
Personal data processed in order to give feedback to the user, i.e. to provide a service, will be kept for the time necessary to provide them with the feedback or service requested. The data collected as a result of an application for a job will be kept for the time necessary to evaluate said application. Data collected for profiling purposes will be kept for a limited period of time in order to allow Ipazia Service to evaluate the user's preferences, always respecting the privacy and consent provided. Data collected for marketing purposes will be kept for an appropriate period of time in line with the sector of reference and in consideration of the interest shown by the client to receive updates on products and events organized by Ipazia Service. For further information, please contact the Data Protection Manager.
7) Data transfer
Personal data are stored on servers and archives of the Data Controller and/or third party companies and appointed as System Administrators and/or Data Processors, located in the EU. Data will not be transferred outside the European Union.
8) Compulsory or optional data transfer.
With the exception of navigation data, whose provision and collection are regulated by the Cookie Policy, the provision of personal data collected through the Site, both to meet the requests and questions of users and for marketing purposes and to analyse consumer habits and preferences, is free, discretionary and optional. The transmission of personal data is mandatory for the management of requests received, to provide information and to allow any compensation due. Since your personal data may include sensitive information (relating to your state of health), we will be able to process such data only after having obtained your express consent. Failing such data, we will not be able to provide you with the requested services; the optional disclosure of certain additional data (relating to your contact details) may also be useful to facilitate the sending of notices and service communications.
9) Categories of recipients of personal data
Ipazia Service shall transmit the personal data of users of the Site only to the extent permitted by law and in accordance with what is set out below. In addition to what indicated in point 3 (f) above. (i.e. the disclosure of personal data to third parties affiliated to Ipazia Service or to commercial partners upon express consent) and point 3 (c) above (i.e. the use of Log-in via social media), personal data will be processed and made known to:
a. The Data Controller;
b. The Data Controller's staff, for the fulfilment of the user's requests (registration to the website,registration to the Reserved Area, reply to a request for information as well as settlement of payments and application for membership);
c. The staff of partner companies in their capacities as designated data processors;
d. The companies that provide specific technical and organizational services for Ipazia Service related to the Site and the management of marketing and communication activities and users’ requests, in their capacity as data processors.
Furthermore, the data may be communicated, with no need for express consent, to the police or judicial authorities, in accordance with the law and upon formal request by such parties, or should there be well-founded reasons to believe that the communication of such data is reasonably necessary to (1) investigate, prevent or take initiatives relating to suspected illegal activities or assist state control and supervisory authorities; (2) defend oneself against any complaint or accusation by a third party, or protect the security of its website and company; or (3) exercise or protect the rights, property or safety of Ipazia Service, of companies within the same group, its affiliates, clients, employees or any other person. Data will not be transferred outside the European Union.
10) Disclosure of data
With no need for express consent (ex. art. 24 letter a), b), d) of the Privacy Code and art. 6 letter b) and c) of the GDPR), for the purposes set forth in art. 3, the Data Controller may transmit your data to judicial authorities, insurance companies for the provision of insurance services, other Health Service Providers to which services are outsourced, Mutual Aid Companies and Health Care Funds, Banks as well as to those subjects for whom communication is required by law in order to fulfil the said purposes. These subjects will process the data in their capacity as independent data controllers.
11) Rights recognized to the user by privacy law
In your capacity as interested party, you have the rights set forth under art. 7 of the Privacy Code and art. 13 paragraphs 2, 15, 18, 19 and 21 of the GDPR, summarized hereunder:
- To get confirmation of the existence or not of personal data concerning you, even if not registered yet, and their transmission in an intelligible form;
- to obtain indication of: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applicable in the event of processing carried out with the aid of electronic instruments; d) the identification details of the data controller, data processors and the representative designated pursuant to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1, of the GDPR; e) the subjects or categories of subjects to whom the personal data may be transmitted or who may become aware of such data in their capacity as designated representatives throughout the country, data processors or persons in charge;
- To obtain: a) the updating, rectification or, whenever interested therein, integration of data; b) the cancellation, anonymization or restriction of data that have been processed unlawfully, including data whose retention is unnecessary for the purposes for which they have been collected or subsequently processed; c) a confirmation that the operations referred to under letters a) and b) have been notified, also as regards their content, to those to whom the data were transmitted or disclosed, unless this requirement turns out to be impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
- To object, either in full or in part: a) for legitimate reasons, the processing of personal data concerning you, even if pertinent to the purpose of collection; b) the processing of personal data concerning you for the purpose of sending marketing materials or commercial communications, through the use of automated calling systems without the intervention of an operator by e-mail and/or through traditional marketing methods by telephone and/or certified mail. Please note that the right to object of the interested party, set out in point b) above, for the purposes of direct marketing by automated means extends to traditional methods and that in any case the right to object can be exercised also partially. Therefore, the interested party may decide to receive only communications using traditional methods or only automated communications or neither.
Where applicable, you also have the rights set forth under articles 16-21 of the GDPR (Right to rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object), as well as the right to complain to the Guarantor Authority on www.garanteprivacy.it , by clicking here
12) How to exercise your rights
You may exercise your rights at any time by sending:
- A registered letter with acknowledgement of receipt to Ipazia Service, via Maremmana, 1 00017 Nerola (RM).
- An e-mail to privacy@ipaziaservice.it
13) Data processors and persons in charge
The updated list of data processors and persons in charge of processing is kept at the registered office of the Data Controller.
• The applicant, having acquired the information provided by the data controller, pursuant to art. 13 of Legislative Decree no. 196/2003 and EU Regulation no. 2016/679, is aware, in particular, that the processing will concern the "sensitive" data referred to under art. 4 paragraph 1 letter d) of art. 266 of Legislative Decree no. 196/2003, i.e. those relating to the state of health.
• Gives his/her consent for the processing of the data necessary to carry out the operations indicated in the privacy policy.
• Gives his/her consent for the communication of the data to the subjects indicated in the privacy policy.
• Gives his/her consent for the processing of data for promotional and marketing purposes.
Last updated 4 July 2018