Privacy Notice relating to Oltre.app by Zucchetti Axess
given pursuant to art. 13 of Italian Legislative Decree 196/2003 (hereinafter also referred to as “Privacy Code”)
This Privacy Notice is given solely and exclusively for the “Zucchetti Axess” Oltre.app application and not for any websites through which, for example, the User accesses/uses the application.
The Data Controller, pursuant to art. 28 of the Privacy Code and art. 4 para. 7 of the GDPR, is Zucchetti S.p.A., with registered office in Lodi, Via Solferino, no. 1, 26900 Italy – e-mail firstname.lastname@example.org
Personal data collected
The services provided by the App, as well as the App’s features and functions, do not require any form of user registration. However, please be informed that the IT systems and software procedures required for the App to work [such as Apple Store, Google Play and Windows Phone Store] acquire some data referring to the User during their normal operation, the transmission of which is implicit in the use of the Internet communication protocols, smartphones and devices used. This category of data includes, but is not limited to, geographical location, identity of the phone, the User’s contacts, emails and credit card data.
The User can consult the Privacy information available on the following websites:
Google Play https://www.google.it/intl/en-GB/policies/privacy/
Windows Store: https://privacy.microsoft.com/en-gb/privacystatement
Oltre.app collects the following personal data:
- Location data for attendance detection. The location data is not saved in the app after it is sent to the server.
- Therefore, location tracking is sporadic rather than continuous (and can also be disabled by the user).
- The geolocation data on the servers is not saved, it only serves as a reference for geofencing.
- Camera to take pictures of QR codes for scanning the entities associated with timestamps. No image is saved, since only the QR code is scanned.
- Microphone, contacts and telephone: no data is collected for these functions.
- User name, password and URL links needed to access the app’s features. It also collects and manages the following personal data:
- anomalies relating to worker’s attendance and requests list
- list of timestamps
Mandatory or optional nature of data provision and consequences of any refusal
The provision of data is optional but is necessary for the provision of the service. The refusal to provide data will prevent the provision of the service and the use of the app.
Processing takes place in electronic format and during the use of the app, personal data is redirected via secure connections to the Cloud Access Control, Cloud Attendance Detection, Cloud Production Data Detection, Cloud Shift Management and Communication web software products developed by Zucchetti Axess.
The above-mentioned data is never saved permanently on the device. The user can delete it at any time using the functions on the app.
Purpose of the processing that the personal data is intended for
The app is used to detect worker attendance and manage attendance/absence records.
Downloading the app is voluntary and the user can uninstall it or modify the permissions and authorisations at any time so that personal data such as geolocation data is no longer recorded.
The data processed by the app is transmitted to the Cloud Access Control, Cloud Presence Detection, Cloud Production Data Detection and Cloud Shift Management web software products. The data can be viewed by the Employer according to the authorisation profiles assigned to the Employer within its organisation on the above-mentioned applications. The service provider is not authorised to view recorded personal data, but only to perform application maintenance and system maintenance activities on the service offered. If there is a need to access your personal data, the supplier will request prior authorisation from the customer/Data Controller, who must promptly inform you of the need and the security measures taken to protect your data.
Rights referred to in Article 7 and art. 12 et seq. of the GDPR
You can exercise your rights by sending an email to email@example.com