1. Data Controller

MailUp S.p.A. with registered office in Viale F. Restelli 1, 20124 Milan (Italy) (the “Company”, “MailUp” or the “Controller”) is ensuring compliance with the rules on personal data processing by providing the following information on the processing of data that is received or in any case collected while browsing this site.

2. Processed data, purpose and legal grounds for processing

Browsing data

During their normal operation, the computer systems and software procedures used to operate on this website acquire some personal data for communication that is implicit in the use of internet communication protocols. This data (such as domain names, IP addresses and browser types) are not accompanied by any further personal information and are used to: i) obtain anonymous statistical information on how the website is used; ii) monitor the website’s modes of use; iii) ascertain liability in the event of cybercrimes.

The legal ground for processing data is to render the site’s features functional following the user’s access.

Data provided voluntarily by the user

Personal data requested via forms is collected and processed for the following purposes:

  1. where explicit consent is given, for periodically sending newsletters and information by email;
  2. where explicit consent is given, to receive updates on the MailUp Group’s activities and news about the publication of press releases not related to the activities of the MailUp Group.

The legal ground for processing data is the consent freely given by the data subject.

Data collected through the MailUp Platform

In order to provide complete information, we would like to specify that in sending communications, MailUp uses its own MailUp Platform, which uses statistical tracking systems (e.g. Beacons) that can track: if a message is opened; clicks on hyperlinks within the email; which IP address or type of browser is used to open the email, and other similar data. The collection of such data is fundamentally connected to the use of the platform and is an integral part of the functionality of the message sending system.

The legal ground for processing data is the consent freely given by the data subject

3. Nature of data provision

Apart from the data specified for browsing purposes and data collected through the MailUp Platform, the provision of data for the purposes referred to in points a) and b) is optional, and its use is conditional upon explicit consent being provided. Where consent is not provided, this will prevent MailUp S.p.A. from sending newsletters or information relating to press releases that are unassociated with the MailUp Group’s activities including advertising or invitations to MailUp events and initiatives.

4. Processing methods

The data collected is processed using electronic, automated, computerized, telematic or manual means, with procedures strictly related to the purposes for which the data was collected and to otherwise ensure its security. The data shall be stored for a term that is strictly necessary for the management of the purposes for which the data was collected, in compliance with the law in force and the legal obligations.

In any case, MailUp has enacted practices that prohibit the storage of data for an indeterminate term and therefore limits the storage term in compliance with the principle of minimising data processing.

5. Persons authorised to process data, data processors and disclosing of data

Data processing of the data collected is carried out by persons working within MailUp that are appointed for this end and authorised to process data according to specific rules provided under the law in force.

The data collected, if necessary or fundamental to execute the indicated purposes, may be used by external third-party Processors, or depending on the case, disclosed to the same independent controllers and more specifically companies, organizations and associations that provide services relating to and necessary for the execution of the above-mentioned purposes (market research and analysis services, maintenance of IT systems).

The data collected may also be transferred abroad, to companies both belonging and not belonging to our corporate group, including countries outside the European Union, in the form and manner envisaged in the current law, guaranteeing, in any case, an adequate level of protection.

In any case, personal data shall never be disseminated.

6. Data Subject’s Rights

It is possible to access, object to the processing or request the erasure, the modification or the updating of all the personal data collected by MailUp, at any time, by exercising the right to limit the data processing and the movement of data, by sending an email to: privacy@mailup.com

7. Data Protection Officer

The controller has appointed the Data Protection Officer, who may be contacted via the following email: dpo@mailup.com

Last updated: 21/05/2018