English
Pursuant to Art. 14 of the GDPR, we hereby provide you with information regarding the processing of personal data by our Company.
Such processing will always be based on the principles of correctness, lawfulness, transparency, and the protection of confidentiality and the rights of the Data Controllers pursuant to Art. 5 of the GDPR.
DATA PROTECTION CONTROLLER. The Data Controller, pursuant to Art. 37 of the GDPR, has designated a Data Protection Officer whose contacts are as follows: - EMAIL: dpo@tesisquare.com
DESCRIPTION OF PROCESSING. Your Personal Data are processed in electronic format by the Data Controller for the purposes described below and communicated to third parties, exclusively for the purposes described below, in accordance with this information notice. The processing of the personal data communicated by you is carried out by means of all or some of the operations indicated in Art. 4 no. 2) of the GDPR ("collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, communication, erasure, and destruction of data").
DATA PROCESSED. Within the scope of the processing, the following data will be collected and processed:
PURPOSE AND LEGAL BASIS. The processing will take place for the following purposes:
SOFT SPAM. Based on current legislation (Art. 130, par. 4, Legislative Decree 196/2003 and subsequent amendments), the Data Controller may use the email coordinates provided by the user during the purchase of a service and/or product to offer services and products similar to those already purchased. However, should the user not wish to receive such communications, they may object by giving notice at any time to the Data Controller, by writing to the address indicated below or by directly using the link present in the email communications received (so-called opt-out). In such case, the Data Controller will cease the aforementioned activity without delay. The legal basis that legitimizes the sending of the promotional communications in question is found in the legitimate interest of the Data Controller pursuant to art. 6, par. 1 lett. f) of the GDPR. For more information and/or to object to the service, it is possible to contact the Data Controller at the email address dpo@tesisquare.com.
VOLUNTARY OR OBLIGATORY NATURE. The provision of your data is optional for the full completion of the purposes mentioned above and, consequently, your refusal to provide personal data may lead to the failure to fulfill the aforementioned purposes. The Data Controller has the right to withdraw their consent at any time, and the withdrawal of consent does not affect the lawfulness of the processing based on the consent before the withdrawal. Consent is withdrawn with the same ease with which it is granted.
RECIPIENTS OR CATEGORIES OF RECIPIENTS. Personal data will be processed by the Data Controller and by persons strictly authorized by them.
Data may be communicated to the following subjects: (i) other companies belonging to the TESISQUARE Group (meaning those participated in and controlled by TESISQUARE S.p.a.); (ii) trusted external subjects of the Data Controller who perform, on behalf of the Data Controller itself, in their capacity as data processors (bound by a specific contract pursuant to Art. 28 of the GDPR) or as independent controllers, certain processing activities, such as, by way of example, companies in charge of telemarketing services.
Personal data are not subject to dissemination.
RIGHTS OF THE DATA SUBJECTS. Data Subjects may, at any time, exercise the rights of access to personal data, rectification or erasure of the same, limitation of processing, objection, and portability referred to in Articles 15-20 of European Regulation 2016/679 by sending an email request to the address dpo@tesisquare.com. The exercise of the Data Subjects’ rights could be delayed, limited, or excluded in cases provided for by applicable law.
RIGHT TO FILE A COMPLAINT WITH THE SUPERVISORY AUTHORITY. The Data Subject has the right to file a complaint with the Supervisory Authority called Autorità Garante della Privacy.
RIGHT TO REVOKE CONSENT. The Data Subject has the right to revoke their consent at any time by submitting a request to that effect via email to the address privacy@tesisquare.com; the withdrawal does not affect the lawfulness of the processing based on the consent provided before the revocation itself.
EXISTENCE OF AN AUTOMATED DECISION-MAKING PROCESS. The processing does NOT involve an automated decision-making process.
TRANSFER OF DATA TO A THIRD COUNTRY OR TO AN INTERNATIONAL ORGANIZATION. The Data Controller will not systematically transfer personal data to a country outside the European Union or to an international organization. In the event that this should become necessary for any reason, the Data Controller hereby ensures that the transfer of data will take place in accordance with the applicable legal provisions and, in particular, in accordance with Articles 44 – 49 of the GDPR and other applicable legal norms.
TRANSFER OF DATA TO A THIRD COUNTRY OR TO AN INTERNATIONAL ORGANIZATION. The Data Controller will not systematically transfer personal data to a country outside the European Union or to an international organization. In the event that this should become necessary for any reason, the Data Controller hereby ensures that the transfer of data will take place in accordance with the applicable legal provisions and, in particular, in accordance with Articles 44 – 49 of the GDPR and other applicable legal norms.
Version updated in February 2026