Privacy policy

Privacy Policy

  1. Treatment

In the sense and for the effects referred to in Articles 13 and 14 of the European Regulation No 679/2016 and in accordance withI Dec Lgs. 30.6.2003, 196, as amended by Dec. Lgs. 10-August 2018, n. 101we wish to inform you that the data of the Users collected within the site Otisopse Web S.r.l., located in Via Guglielmo Melisurgo, 15 to 80133 Naples (hereinafter the "Company"), will be treated by Otisopse Web S.r.l., as the owner of the processing, in manual, computer or telematic form. In its capacity as owner of the processing, the Company proceeds to save the personal data of the Users in a dedicated server located in Italy and to carry out all other processing operations through the personnel assigned to the purpose, or, in the case of maintenance operations, through any external commissioners. The database shall be accessible only by authorised persons through means that ensure its protection and confidentiality, through the adoption of security measures designed to prevent data loss, illicit or incorrect use and unauthorised access. The data are stored for the time necessary to carry out those processing operations carried out in relation to the data of each User, depending on its choices, preferences and indications, as well as in relation to the purposes listed below.

2. Purpose of treatment

The provision of the User's personal data is necessary for the provision of the services by the Company. Therefore, the non-provision, even partially, of the same services will determine the impossibility for the Company to proceed to the provision of the same services requested. It is further specified that the data processing will serve to: and products of the Company through "automated" contact systems (e.g. SMS and/or e-mail); ii) Collect data and information in general and in particular on consumer orientations and preferences in order to obtain a detailed profile of them, to offer an increasingly efficient and personalized service. (iii) To allow consumers to execute orders correctly, to ensure, at the same time, that they can be properly and in full compliance with the expected processing times; (iv) Administrative purposes; (v) to follow up the reporting and/or request made by the User to the Customer Service.

Three. Release of consent

The Company shall use the data of the User in accordance with the choices freely made by the User by his consent, at the time of their collection or thereafter, as well as to comply with obligations laid down by law, regulation or Community Directive. In some cases, the data may also be processed without the express consent of the User, such as to fulfil a specific request made by the User, to fulfil contractual obligations or, again, in cases where the treatment proves necessary to protect the rights of the company in the course of legal proceedings or to comply with any requests made by the competent authorities.

Four. Confirmation of data and consent

The provision of data: (i i) for the purpose referred to in points (i) and (ii) of this Directive, it is optional. Failure to supply does not compromise the proper use of the website; for the purpose referred to in point (iii) it is optional, but necessary to complete the purchase procedure. Therefore, the failure to provide data compromises the full use of the website; for the purpose referred to in point (v) it is necessary to allow the Customer Service to properly follow the request made by the User. Failure to provide data makes it impossible for the Customer Service to take charge of the User's request but does not compromise the correct use of the site. The granting of consent to treatment: For the purposes referred to in points (iii), (iv) and (v), no form of consent is required; therefore, the relevant use of the services will be made following the simple provision of data; For the purposes referred to in points (i) and (ii) consent is always optional and the User is given the opportunity to exercise the choice during registration.

Five. Treatment holder and Treatment Manager

The personal data controller is Otisopse Web S.r.l., headquartered in Via Guglielmo Melisurgo No 15 to 80133 Naples.

The person responsible for processing personal data is Francesco Esposito, optionally domiciled for the function at Otisopse Web S.r.l., based in Via Guglielmo Melisurgo no. 15 to 80133 Naples, under the Act of Appointment of May 2018.

The data may also be communicated by the Company to the companies responsible for sending the products purchased by the User. These companies will only process the data to the extent necessary for the performance of the tasks assigned to them and will subsequently delete them once they have completed their tasks.

Six. Rights of the person

The User may, in respect of personal data provided, exercise, as a person interested in the processing of personal data, the following rights provided for by the GDPR and subsequent regulatory changes, upon request to the Data Processer without formality, by writing to

  1. You will have the right to obtain:

confirmation of the existence or otherwise of personal data concerning him, even if not yet recorded, and their communication in a structured format for common and readable use by automatic device and an indication of:

  1. (a) the origin of personal data;
  2. (b) the purposes and modalities of the treatment;
  3. (c) the logic applied in the case of processing by electronic means;
  4. (d) the identification details of the holder and any controller and of the Data Protection Officer (DPO) designated in accordance with Article 37 of the GDPR;
  5. (e) the persons or categories of persons to whom personal data may be communicated or who may become aware of them as designated representatives in the territory of the State, as responsible persons or as authorised persons;
  6. (f) as far as possible, the period of retention of personal data envisaged or, if not possible, the criteria used to determine that period.

  1. You will also have the following specific rights:
  • right of access (Article 15.GDPR). the right of the data subject to gain access to his data and to lodge a complaint with the supervisory authority;
  • Right of rectification 16.GDPR). the right of the data subject to obtain from the controller the correction of inaccurate personal data concerning him;
  • Right to cancellation: right to oblivion (Article 17.GDPR). The data subject shall have the right to obtain from the Data Controller the deletion of personal data concerning him or her without undue delay;
  • the right to limitation of treatment (Article 18.DG PR). Right of the data subject to obtain a limitation of the processing of the data;
  • obligation to notify (Article 19.GDPR). The controller shall communicate to each of the addressees to whom the personal data have been transmitted any corrections or deletions or limitations to the processing carried out pursuant to the said Articles. 16, 17 and 18;
  • the right to portability of data (Article 20.GDPR). The data subject shall have the right to receive the personal data relating to him supplied to the holder and shall have the right to transmit such data to another Data Controller without hindrance by the previous Data Controller and in a direct form, where technically feasible;
  • Right of opposition 21.GDPR). the right of the person concerned to oppose the processing of his personal data;
  • profiling (art. 22.GDPR). The person concerned shall have the right not to be subject to a decision based solely on automated treatment, including profiling, or having a significant impact on his person.

  1. You will also have the express right to oppose, in whole or in part, and at any time:
  1. (a) for legitimate reasons, the processing of personal data concerning you, even if relevant for the purpose of the collection;
  2. (b) the processing of personal data concerning you for the sole purpose of sending advertising material or for carrying out market research.

  1. The User will finally have the right to revoke the consent to the processing of the data already given, except that this may result in the impossibility of concluding the relevant contract for the requested purchase.

Seven. Minor users

The Company is aware that the Website and the services offered by the same website may also be of interest to a minor public. For the above reason, the Company also encourages the registration of parents of registered minors: in this way, parents have the possibility to use the same services and to always be aware of the initiatives that the company makes available to their children.

Privacy Policy

Otisopse Web s.r.l., owner of the treatment, informs you, in accordance with European Regulation No 679/2016 and according to Dec. Lgs. 30.6.2003, 196, as amended by Dec. Lgs. 10-August 2018, n. 101on the purposes and methods of processing your personal and sensitive data.

For us privacy is very important and we want you to always feel protected. We therefore invite you to read the information carefully.

By using our services, you provide or share with us some information that allows us in some cases to provide the service, in other cases to satisfy your needs and to improve us. In this document we wish to explain: which data we use; 2. why and on what legal basis we collect your data; 3. how your data is used; 4. which data are mandatory and which are optional; 5. how long your data is stored; 6. who can access your data; 7. to whom your data may be communicated; 8. where your data can be transferred; 9. What are your rights; 10. who is the Data Protection Officer and who is the Data Protection Officer.

  1. What data are we using?

In Otisopse Web s.r.l., we use several of your personal data (hereinafter "personal data" or even "data"), i.e.:

the data you provide, identifying and non-sensitive such as: name and surname or social reason, identity document, tax code, game iva, address, email, telephone number, bank details and data related to the Otisopse services you have received. These are the data you provided to us when requesting services or products, or even afterwards: data related to your preferences and commercial interests, in particular: content, use of services, functionalities used.

  1. Why and on what legal basis do we collect your data?

The data you provide allows us, on the one hand, to carry out all the administrative activities related to your contract and to satisfy your requests, on the other hand, help us to verify any anomalies arising from the use of the products and services we provide.

In the specification your personal data are processed for the following purposes and legal bases:

(a) without your prior consent for the purposes of the service and in particular for:

  • the performance of the contract or the fulfilment of pre-contractual commitments: activate, supply, suspend and manage your contract and the related services, providing the related invoicing, sending service communications and assistance; provide you with the services of the commercial offer Otisopse: these services include: additional and optional services; improving technical assistance, customer care activity, our services, content and products through aggregated statistical analysis on an anonymous basis;
  • pursuing a legitimate interest of the Owner: managing claims and disputes, recovering claims, preventing fraud and illegal activities; exercising the rights and protecting the legitimate interests of the Owner or of third parties, such as the right of defence in court; send commercial communications to the email address provided by you, if you are already our client, regarding services and products of Otisopse similar to those you have already used. Each email sent will allow you to refuse further communications by clicking on the appropriate link.
  • the fulfilment of legal obligations: respect and fulfil the obligations laid down by laws, regulations, Community legislation, orders and requirements of the competent authorities. For example, we are required by law to provide a copy of your identity document and tax code to the Archive of the Ministry of Economy and Finance and managed by Consap S.p.A. to compare them with the data presented at the databases of the Agency of Revenue, the Ministry of the Interior, the Ministry of Transport, Inps and Inail, thus verifying their authenticity and thus preventing identity theft in the areas of consumer credit, deferred and deferred payments, electronic and interactive communication services (SCIPAFI).

(b) only after you have given your consent, for other non-service purposes, and specifically for:

  • marketing purposes, i.e. to inform you with ordinary letters, telephone calls, emails, messages on the television, SMS, MMS, notifications and newsletters of initiatives and offers of Otisopse and to propose questionnaires and market research Otisopse;
  • purpose of profiling, i.e.: to analyze, even in an automated way, your preferences and interests (e.g. use of content and services, including those purchased, functionalities used, connection times, traffic data, etc.) and to propose to you (with ordinary letters, telephone calls, emails, messages on television, SMS, MMS, notifications and newsletters) services, content, initiatives and personalised offers for you; to analyze, even by automated means, your preferences and interests related to the use of products and offers Otisopse and offer you (in ordinary letters, telephone calls,

e-mails, messages on television, SMS, MMS, notifications and newsletters) personalized services, content, initiatives and offers for you; for analysis, including automated, data relating to the use of the Otisopse services, subject to the consent given during the activation of the service itself, to analyse your preferences and interests and to propose (with ordinary letters, telephone calls, emails, messages on television, SMS, MMS, notifications and newsletters) services, content, personalized initiatives and offers for you.

  1. How are your data used?

Your personal data is used for collection, registration, organisation, storage, consultation, analysis, matching, processing, modification, selection, extraction, comparison of databases (e.g. for checking the marketability of the offer), use, interconnection, intersection, block, communication, deletion and destruction of data. Your personal data is processed on paper, electronically and automated and stored on databases.

  1. What data are mandatory and what are optional?

Among the information we collect some are essential to the conclusion and administration of your contract, others help us to offer you a better service, day after day. In particular:

  • The provision of your personal data, processed for service purposes, is necessary to subscribe to and use the services of Otisopse; the provision of your personal data, processed for other purposes, is optional. Their non-delivery does not prevent you from using the services of Otisopse, but you will not be able to receive our commercial communications and personalized offers.
  1. How long are your data stored?

Otisopse Web stores and uses your personal data for no more than ten years from the end of the report for the purposes of service and, however, for the prescribed time provided by law, for no more than 13 months from the end of the report for the purposes of marketing; for the time of your consent and, however, for not more than 36 months after harvest, for profiling purposes. Subsequently, your data are rendered anonymous and processed for aggregate and anonymous statistical analysis.

  1. Who can access your data?

We care deeply about your privacy and do everything we can to protect you. For this reason we share your data only when strictly necessary and only with those who help us to offer you a better service every day. Your data are in fact accessible to: employees and/or employees of Otisopse or companies of the Otisopse Group, who contribute to the creation, maintenance and improvement of all Otisopse services in their capacity as internal controllers and/or system administrators; business partners and service providers that outsource activities on behalf of Otisopse, in their capacity as external controllers of the treatment, performing activities related, instrumental or supporting to those of Otisopse, for example: management and maintenance of the content of websites and apps, customer assistance, customer care and call center services, information technology systems management, publishing services, credit recovery, billing data processing services, filing of customer relations documentation, etc.

  1. Who can your data be communicated to?

Otisopse may communicate your data without your express consent for the purposes of the service: to the judicial authorities, upon their request; to the companies of the Otisopse Group and to all other persons to whom it is necessary to communicate them, by law or by contract, to enable the objectives described above to be achieved (such as credit institutions, professional studies, business partners). Otisopse can communicate the data to the companies of the Otisopse Group or its partners in order to allow the realization of the autonomous marketing goals described above: for this purpose Otisopse will ask you for a specific consent before the communication. These subjects will retain your data in their capacity as independent controllers. In any case, we want to reassure you that your data will not be disseminated.

  1. Where can your data be transferred?

Your data may also be transferred outside the European Union to the entities specified in paragraphs 6 and 7 (including, in particular, to entities established in the USA and Albania). In order to protect your data in the context of these transfers, Otisopse adopts appropriate safeguards, including the adequacy decisions and standard contractual clauses approved by the European Commission, in accordance with Chapter V, Art. 45, 46 and 47 of the European Regulation No 679/2016.

  1. What are your rights?

Up to now we have talked about how we treat your data and how we behave; now we show you what your rights are, so that you can always have control of your privacy and information. If they do not invoke the limitations laid down by law, you have the right, in accordance with Article 15 of the European Regulation No 679/2016, to: to have confirmation of the existence or otherwise of your personal data, even if not yet registered, and to request that such data be made available to you in a clear and understandable manner; to ask for information and, where appropriate, copy: (a) the origin and category of your personal data; (b) the logic of use, in case your information is processed by electronic means; (c) the purposes and modalities of the processing; (d) the identification details of the holder and the persons responsible; (e) the subjects or categories of persons to whom your data are processed; (f) the period during which your data are stored or the criteri a used to determine that period, where possible; (g) the existence of an automated decision-making process, including profiling. (h) the existence of adequate safeguards in the event of the transfer of your data to a non-EU country or to an international organisation; obtain, without there being a reasonable delay, the updating, modification, rectification of your data; incorrect data or the integration of your incomplete data, if you are interested. 16 of the European Regulation No 679/2016); (obtain the deletion, blocking of your data or, where possible, transformation in anonymous form, ex 17 a n d 18 of the European Regulation No 679/2016: (a) if treated illegally; (b) if n o longer necessary i n relation to the purposes for which they were collected or subsequently treated; (c) in c a se of withdrawal of the consent on which the treatment is based and in case there is no other legal basis; (d) if you oppose the treatment; and there are no further legitimate reasons for continuing to use your data; e) in case it is imposed on us by law; f) in case it is related to minors. The holder, i.e. Otisopse Web s.r.l., may refuse to delete your data in the event of: (a) exercising the right to freedom of expression and information;

  1. (b) fulfilment of a legal obligation, performance of a task carried out in the public interest or exercise of public powers; (c) reasons of public health; (d) public interest storage, scientific or historical research or for statistical purposes; (e) the discovery, exercise or defence of a right in a judicial context; (d) obtaining: limitation of processing in the event of: (a) contesting the accuracy of personal data, if you did not prefer to request the modification, updating, modification o r rectification of your data; (b) unlawful processing of the Owner, i.e. Otisopse Web s.r.l., in order to prevent its cancellation; (c) exercising your right in court; (d) verification of the possible prevalence of the rightful reasons of the Owner over those of the person concerned; (d) to receive, where the processing is carried out by automatic means, without hindrance and in a structured format, of common and readable use, the personal data concerning you which you have provided us with prior consent or under contract for: transmit them to another Owner or, if technically feasible, to obtain the direct transmission from the Owner to another Owner (Art. The Commission's proposal for a Council Regulation (EC) 21 of the European Regulation No 679/2016, at any time, in whole or in part: (a) for legitimate and overriding reasons linked to your particular situation, to the processing of personal data concerning you; (b) to the processing of personal data concerning you for marketing and/or profiling purposes where performed (e.g. you can oppose the sending of advertising material or direct sales or the completion of market research or commercial communication, using automated call systems without the intervention of an operator, with e-mails and traditional marketing methods, with telephone and paper mail).

For all the above mentioned cases, if necessary, Otisopse will inform third parties to whom your personal data are communicated of any exercise of rights by you, except in specific cases (e.g. where such compliance proves impossible or involves the use of means manifestly disproportionate to the protected right).

You may at any time modify and revoke the consent granted and exercise your rights, in accordance with and for the purposes of Article 7 of the European Regulation No 679/2016, by sending a request to Otisopse Web s.r.l. Legal Affairs, Via Guglielmo Melisurgo No 15 to 80133 Naples, or by sending a n email to the following email address privacy@otisopse 

Finally, you have the right to submit a complaint to the Personal Data Protection Supervisor ( for the processing referred to in this information document.

  1. Who is the owner of your data processing? Who is the Treatment Manager? Who's the DPO?

Remember, for any need, that the owner of your personal data processing is Otisopse Web s.r.l. based in Via Guglielmo Melisurgo No 15-80133-Naples.

The Data Processing Officer is Francesco Esposito, who is an elective resident of Otisopse Web s.r.l., based in Via Guglielmo Melisurgo no. 15-80133-Naples, under the Act of Appointment of May 2018.

The DPO (Data Protection Officer) of the company did not consider it appropriate to appoint him, pending the regulatory content on point of European Regulation No 679/2016.

You can contact the Data Processor at email

This information sheet may be amended, in particular in the case of future legislative measures in this field.