PRIVACY POLICY

bt_bb_section_bottom_section_coverage_image

We care about your Privacy

UltraAI S.r.l., in quality of Data Controller, informs Users, pursuant to art. 13 EU Regulation no. 2016/679 (hereinafter also “GDPR”) and Legislative Decree 196/2003 (Privacy Code), as amended by Legislative Decree 101/2018, of its own privacy policy to understand how personal data are managed when using the services offered and to allow the Users themselves, if necessary, to give consent to the processing of their personal data expressed and aware in the sections of the site where it is requested to provide personal data.

This information also fully respects and complies with Recommendation no. 2/2001 that the European authorities for the protection of personal data adopted on 17 May 2001 to identify some minimum requirements for the collection of personal data online and, in particular, the methods, timing and nature of the information that the owners of the treatment must provide to users when they connect to web pages, regardless of the purpose of the connection. By consulting this site, data relating to identified or identifiable persons may be processed. It is specified that the consent mechanisms will be evident, brief and easily understandable; if the original conditions for which consent was requested should undergo changes, eg. if the purpose of data processing changes, further consent will be required pursuant to EU Regulation 2016/679.

This information is to be considered valid only for this website and not for other websites that may be consulted through links published on this site; on these third party sites, the data controller is not to be considered responsible in any way.

1 – Identity and contact details of the Data Controller

1.1 The data controller is ULTRAAI S.R.L., with a registered office in Trento (TN) in street Marino Stenico n.26, 38123, tax code and VAT number 02621930227.

1.2 To contact the Data Controller it is also possible to write to the following  e-mail address: info@ultraai.eu or PEC ultraai@legalmail.it.

2 – Types of Data processed

            1. a) Browsing Data

Regarding the aspects of technical nature and protocols, we wish to inform you that:

a1. Computer systems and software procedures used to operate this website may acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

a2. These informations are not collected to be associated with identified interested parties, but, due to their very nature, they could allow Users to be identified  through processing and association with data held by third parties.

a3. This category of data includes the IP addresses or domain names of the computers used by the Users who connect to the site, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the operating system and the user’s IT environment.

a4. These data can be used to ascertain any liability in case of hypothetical computer crimes against the site.

a5. In some cases, sensitive data may be collected (if, for example, contained within the curricula sent via the “Careers” section).

            1. b) Cookie

b1. Cookies consist of portions of code installed in the browser that assist the Owner in providing the Service according to the purposes described. Some of the purposes for installing Cookies may also require the User’s consent. When the installation of Cookies takes place on the basis of consent, this consent can be freely revoked at any time by following the instructions contained in this document.

b2. In particular, Cookies are small text files that are sent from the website visited to the User’s device (usually to the browser), where they are stored in order to be able to recognize this device on the next visit. In fact, on each subsequent visit, the cookies are sent back to the site from the User’s device.

b3. Each cookie generally contains: the name of the server from which the cookie was sent, the expiration date and a value, usually a unique number randomly generated by the computer. The website server that transfers the cookie uses this number to recognize the User when he returns to visit a site or browses from one page to another.

b4. Cookies can be installed not only by the operator of the site visited by the user (first-party cookies), but also by a different site that installs cookies through the first site (third-party cookies) and is able to recognize them. . This happens because on the visited site there may be elements (images, maps, sounds, links to web pages of other domains, etc.) that reside on servers other than that of the visited site.

            1. c) Data voluntarily provided by the user

c1. As a result of the consultation of this site, data relating to identified or identifiable persons may be processed. In particular, it is specified that this processing may take place in relation to personal data freely provided by Users who send their information to the data controller through the contact details on the website www.ultraai.eu, such as, for example, the email addresses company, and / or by filling in specific information collection forms on the site. In fact, the optional, explicit and voluntary sending of emails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary for the purpose of responding to requests, as well as any other personal data entered in the email or form. The present information is aimed at defining the limits, purposes and methods of processing the data collection form / form and each visitor can freely express their consent and authorize the collection of data and subsequent use.

c2. It’s to be stressed that, in no section of the site, nor for access to any functionality of the site, is required the provision of “particular categories of personal data” and / or “personal data relating to criminal convictions and offenses”, as defined from art. 9 and 10 of EU Reg. 679/2016: if the User spontaneously sends information of the aforementioned type to the data controller, the data controller will process such data in compliance with the current legislation on the protection of personal data (Reg. EU 679/2016) and within the limits of what is strictly necessary in relation to the requests expressed by the User concerned.

c3. In general, in regard to the data provided voluntarily by the User, we wish to inform Users that the EU Reg. 679/2016 and the Legislative Decree 196/2003, as compatible, provide for the protection of individuals with regard to the processing of personal data. According to this legislation, this treatment will be based on principles of correctness, lawfulness and transparency, protecting your privacy and your rights.

3 – Data processing

3.1 Your personal data will be processed in accordance with principles of correctness, lawfulness and transparency for the management of the contractual and / or pre-contractual relationship and to follow up on your requests.

3.2 The processing of personal data will be carried out through paper and computer media by the owner, the manager / managers and the persons in charge / authorized third parties, with the observance of every precautionary measure, which guarantees its security and confidentiality and in compliance with technical and organizational structures to ensure an adequate level of security.

3.3 Unless otherwise specified, all Data requested by this Website are mandatory in order to guarantee the quality of the Service and comply with legal obligations. If the User refuses to provide them, it may be impossible for this Website to provide the Service. In cases where this Website indicates some Data as optional, Users will be free to refrain from communicating such Data, without this having any consequence on the availability of the Service or on its operation. Users who have doubts about which data are mandatory are encouraged to contact the owner.

3.4 The Data Controller can process, exclusively for the purposes indicated, only common data, such as, for example, personal data, telematic and telephone references, office / responsibility held within the client company / body, together with economic and financial data, the company name, registered offices, bank references of the Client company / entity.

3.5 The User assumes responsibility for the Personal Data of third parties obtained, published or shared through this Website and guarantees to have the right to communicate or share them, freeing the Owner from any liability to third parties.

4 – Purposes and legal basis

4.1 The collection and processing of your common personal data are carried out under one of the following conditions:

              1. The execution of the contractual or pre-contractual relationship (legal basis: execution of a contract or pre-contractual measures – art. 6, par. 1, lett. B GDPR);
              2. The user has given consent for one or more specific purposes (Article 6, paragraph 1, letter a GDPR); Note: in some jurisdictions the Data Controller may be authorized to process Personal Data without the User’s consent or another of the legal bases specified below, as long as the User does not object (“opt-out”) to such treatment. However, this is not applicable if the processing of Personal Data is regulated by European legislation on the protection of Personal Data;
              3. The possible protection of the rights of the Data Controller (legal basis: legitimate interest of the Data Controller – Article 6, paragraph 1, letter f GDPR);
              4. The inclusion of personal data in the company’s IT databases;
              5. The fulfillment of the obligations prescribed by the civil, fiscal, tax laws, regulations, community legislation; the processing is necessary for the execution of a task of public interest or for the exercise of public authority vested in the Data Controller (Article 6, paragraph 1, letter and GDPR).

4.2 Specifically, the purposes pursued on this site are:

              1. Allow the provision of the services requested by you, including collection. The storage and processing of data for the establishment and subsequent operational, technical and administrative management of the relationship connected to the provision of the Services and the making of communications relating to the performance of the established relationship;
              2. Allow navigation and consultation of the website of www.ultraai.eu;
              3. Respond to requests for assistance or information;
              4. The fulfillment of legal, accounting and tax obligations;
              5. To send updates on our products and services by e-mail, and carry out market research or commercial communication (by fax, telephone, e-mail);
              6. For the sole purpose of security and prevention of fraudulent conduct, the Data Controller puts in place an automatic control system that involves the detection and analysis of user behavior on the site associated with the processing of Personal Data including the IP address;
              7. To initiate and, if necessary, complete the recruitment and selection process of personnel, or to establish a collaboration.

5 – Possible recipients and categories of recipients of personal data

5.1 Your common personal data may be disclosed to the following subjects:

              • Suppliers of products or services for the execution of the contractual relationship or for related obligations;
              • Public administrations or public bodies for obligations related to legal obligations;
              • Insurance companies and credit institutions;
              • Internal resources of the Data Controller, who have received specific instructions;
              • External subjects appointed as Data Processors;
              • Professionals and administration and business management companies (autonomous owners).

5.2 The Data Controller has no intention of transferring your personal data to a third country outside the European Union. The Data Controller may process, with your consent, images and / or videos relating to your works, to be published on its website. The consent can be revoked at any time.

5.3 The transfer of Personal Data from the EU to third countries is carried out according to an adequacy decision of the European Commission. The European Commission takes adequacy decisions for specific countries whenever it considers that that country possesses and provides personal data protection standards comparable to those set by EU data protection legislation. Users can find an updated list of all adequacy decisions issued on the European Commission’s website. Personal data collected: various types of data.

5.4 In any case, without prejudice to the above, the Data Controller is authorized to transfer Personal Data collected within the EU to third countries (or any country outside the EU) only with the presence of a specific legal basis. Any Data transfer of this kind is based on one of the legal bases described above. In these cases the User has the right to obtain information on the legal basis of the transfer, as well as on the security measures adopted by the Data Controller to protect the Data. To this end, the User can request information from the Data Controller by contacting him at the details indicated in opening.

6 – Place of treatment

6.1 The Data is processed at the Data Controller’s operating offices and in any other places where the parties involved in the processing are located. Depending on your location, data transfers may involve transferring your data to a country other than your own. To find out more about the place where such transferred Data is processed, Users can consult the section containing the details on the processing of Personal Data (articles 5.2, 5.3, 5.4).

6.2 Users also have the right to know the legal basis of data transfers to a country outside the European Union or to any international organization governed by public international law or established by two or more countries, such as the UN, and on the measures security adopted by the Data Controller to safeguard their Data.

6.3 In this kind of transfer, Users can find out more by checking the related sections of this document or inquire with the Data Controller using the information provided in the contact section.

7 – Duration of storage of personal data

The data will be kept for the time necessary to achieve the purposes for which the data were provided. The data will be stored in a form that allows the identification of the interested party for a period of time not exceeding the one necessary in order to achieve the purposes for which they were collected or subsequently processed, after that, if not expressly confirmed by the interested party, they will be deleted, unless their transformation into anonymous form.

8 – Details on Data treatment Services used

Your personal data on this website will be collected with the Services and for the following purposes:

Tag Management: This type of service is functional to the centralized management of the tags or scripts used on this Website. The use of these services involves the flow of User Data through them and, where appropriate, their retention.

            • Google Tag Manager (Google Ireland Limited)

Google Tag Manager is a tag management service provided by Google Ireland Limited.

Personal Data processed: Cookies and Usage Data.

Place of processing: Ireland – Privacy Policy – Privacy & Terms – Google. Subject adhering to the Privacy Shield.

Interaction with external social networks and platforms: This type of service allows interaction with social networks or other external platforms directly from the pages of UltraAI.eu. The interaction and information obtained through UltraAI.eu are always subjected to the User’s privacy settings for each social network. This type of service might still collect traffic data for the pages where the service is installed, even when Users do not use it.

            • AddThis (Oracle Corporation)

AddThis is a service provided by Oracle Corporation that displays a widget which allows interaction with social networks and external platforms and the sharing of the contents of this Website.

Depending on the configuration, this service can show widgets belonging to third parties, for example managers of social networks on which to share interactions. In this case, also third parties that provide the widget will be aware of the interaction made and the Usage Data relating to the pages where this service is installed.

Personal Data processed: Cookies and Usage Data.

Place of processing: United States – AddThis Privacy Policy.

            • Access to Facebook account (UltraAI)

This service allowsUltraAI to connect with the User’s account on the Facebook social network, provided by Facebook, Inc.

Permissions asked: access to private data.

Place of processing: United States –Data Policy. Participant in the Privacy Shield.

            • Like button and Facebook social widgets (Facebook, Inc.)

The Like button and Facebook social widgets are interaction services with the Facebook social network provided by Facebook, Inc.

Personal data collected: Cookies and Usage data.

Place of processing: United States – Data Policy. Participant in the Privacy Shield.

            • Twitter Tweet and Twitter social widgets (Twitter, Inc.)

The Twitter Tweet button and Twitter social widgets are interaction services with the Twitter social network provided by Twitter, Inc.

Personal data collected: Cookies and Usage data.

Place of processing: United States – Twitter Privacy Policy. Participant in the Privacy Shield.

Statistics: the services contained in this section allow the Data Controller to monitor and analyze traffic data with the purpose to be used to keep track of User behavior.

            • Google Analytics (Google Ireland Limited)

Google Analytics is a web analysis service provided by Google Ireland Limited (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Website, compiling reports and sharing them with other services developed by Google.

Google may use the Personal Data to contextualize and personalize the advertisements of its own advertising network.

Personal Data processed: Cookies and Usage Data.

Place of processing: Ireland – Privacy Policy – Privacy & Terms – Google. Subject adhering to the Privacy Shield.

          • Google Analytics with anonymized IP (Google Ireland Limited)

Google Analytics is a web analytics service provided by Google Ireland Limited (“Google”). Google uses the Personal Data collected for the purpose of tracking and examining the use of this Website, compiling reports and sharing them with other services developed by Google.

Google may use the Personal Data to contextualize and personalize the advertisements of its own advertising network.

This Google Analytics integration makes your IP address anonymous. Anonymization works by shortening the IP address of Users within the borders of the member states of the European Union or in other countries adhering to the agreement on the European Economic Area. Only in exceptional cases, the IP address will be sent to Google’s servers and shortened within the United States.

Personal Data processed: Cookies and Usage Data.

Place of processing: Ireland – Privacy Policy – Privacy & Terms – Google. Subject adhering to the Privacy Shield.

          • Google Ads conversion tracking (Google Ireland Limited)

Google Ads Conversion Tracking is a statistics service provided by Google Ireland Limited that links data from the Google Ads network with actions performed on this Website.

Personal Data processed: Cookies and Usage Data.

Place of processing: Ireland – Privacy Policy – Privacy & Terms – Google. Subject adhering to the Privacy Shield.

9 – Rights of Users

At any time, the User may exercise his rights towards the data controller pursuant to art. 15 of the EU Reg. 679/2016, which we briefly indicate below:

              1. a) Withdraw their consent at any time. Users have the right to withdraw consent where they have previously given their consent to the processing of their Personal Data.
              2. b) Object to processing of their Data. Users have the right to object to the processing of their Data if the processing is carried out on a legal basis other than consent. Further details are provided in the dedicated section below.
              3. c) Access their Data. Users have the right to learn if Data is being processed by the Owner, obtain disclosure regarding certain aspects of the processing and obtain a copy of the Data undergoing processing.
              4. d) Verify and seek rectification. Users have the right to verify the accuracy of their Data and ask for it to be updated or corrected.
              5. e) Restrict the processing of their Data. Users have the right, under certain circumstances, to restrict the processing of their Data. In this case, the Owner will not process their Data for any purpose other than storing it.
              6. f) Have their Personal Data deleted or otherwise removed. Users have the right, under certain circumstances, to obtain the erasure of their Data from the Owner.
              7. g) Receive their Data and have it transferred to another controller. Users have the right to receive their Data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another controller without any hindrance. This provision is applicable provided that the Data is processed by automated means and that the processing is based on the User’s consent, on a contract which the User is part of or on pre-contractual obligations thereof.
              8. h) Lodge a complaint. Users have the right to bring a claim before their competent data protection authority.

10 – Termination of the assignment and duration of treatment

In case of termination of the processing for any reason, pursuant to art. 17 of the EU Reg. 679/20016, your data will be: a) destroyed, after the deadline about the conservation obligations imposed by art. 2220 of the Italian Civil Code, and by articles 19 and 22 of the D.P.R. n. 600/1973 (10 years) or by other specific legislation; b) transferred to another owner, provided that they are intended for processing in terms compatible with the purposes for which the data are collected; c) kept exclusively for personal purposes and not intended for systematic communication or dissemination; d) stored or transferred to another owner, for historical, statistical purposes, in accordance with the law, regulations, community legislation and codes of ethics and good conduct signed pursuant to art. 40 EU Reg. 679/2016.

11 – Responsible for data treatment

The list of external Responsible for the data processing can be requested directly from the Data Controller.

12 – Cookie policy

This website uses cookies. To learn more and consult the detailed information on this subject, the User is invited to consult the dedicated page.

 

13 – Further information on the treatment

13.1 The User’s Personal Data may be used by the Owner in court or in the preparatory stages for its eventual establishment for the defense against abuse in the use of this Website or related Services by the User. The latter declares to be aware that the Data Controller may be obliged to disclose the Data by order of the public authorities.

13.2 For needs related to operation and maintenance, this Website and any third party services used by it may collect system logs, which are files that record the interactions and which may also contain Personal Data, such as the User IP address.

13.3 The user is free to provide their information by sending it to the data controller through the contact details on the website www.ultraai.eu and / or by filling in the  specific information collection form on the site; in the latter case, failure to provide some data could, depending on the case, make it impossible to carry out the activities requested by the User (for example, see “mandatory fields” marked with << * >> at internal information collection forms).

13.4 The User’s personal data will be processed by persons specifically appointed by the data controller as data processors and / or by anyone acting under his authority and who has access to personal data; these subjects will process the User’s data only if necessary in relation to the purposes of the provision and only in the context of carrying out the tasks assigned to them by the data controller, undertaking to process only the data necessary for the performance of these tasks and to fulfill the only operations necessary to carry out the same ones. Furthermore, personal data may be disclosed to any third parties only if this is strictly necessary to provide specific services or information requested by the User.

13.5 In the hypothesis that the personal data provided must be processed for purposes other than those indicated above, the Data Controller will provide you with information regarding this different purpose and any other relevant information.

13.6 The data will be processed using methods and tools suitable for guaranteeing security (art. 24, 25 and 32 EU Reg. 679/2016) and will be carried out through an automated process and through non-automated means (paper archives). To all of them will be applied the technical and organizational measures aimed at guaranteeing a level of security adequate to the risk, so as to ensure on a permanent basis their confidentiality, integrity, availability and resilience of the processing systems and services (by way of example, but not only: controls on both assignment of tasks to the subjects in charge of data processing and on the classification of the data; procedures, if sustainable, of pseudonymisation and encryption, disaster recovery mechanisms, etc.).

13.7 The Data Controller, taking into account the state of the art and the implementation costs as well as the nature, scope, context and purposes of the processing, both when determining the means of processing and at the time of processing itself (so-called risk analysis – accountability), has implemented adequate technical and organizational measures, aimed at effectively implementing the principles of data protection and integrating the necessary guarantees into the processing in order to meet the requirements of EU Reg. 679 / 2016 and protect the rights of the interested party.

13.8 At the request of the User, in addition to the information contained in this privacy policy, this Website may provide the User with additional and contextual information regarding specific Services, or the collection and processing of Personal Data.

13.9 Changes – The Data Controller reserves the right to make changes to this privacy policy at any time by informing Users on this page and, if possible, on this Website, as well as (if technically and legally feasible) by sending a notification to Users through one of the contact details held by the Owner. Please therefore consult this page regularly, referring to the date of the last modification indicated at the bottom. If the changes affect treatments whose legal basis is consent, the Data Controller will collect the User’s consent again, if necessary.

For a more in-depth examination of the subject, please refer to the EU Reg. 679/2016, to the GDPR, as well as to the Italian legislation in force.