The General Data Protection Regulation (GDPR)
The information here in is given in compliance with article 13 of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation or GDPR) to individuals interested in receiving news, information, invitations, publications, announcements and newsletters relating to the activities conducted by Mintlayer.
Personal data” (article 4, paragraph 1 of the GDPR) means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Special categories of personal data” (article 9, paragraph 1 of the GDPR) means personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.
“Processing" (article 4, paragraph 2 of the GDPR) means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
For the purposes of the GDPR (article 24) the Data Controller is:
RBB S.r.l., Piazza Enriquez, 22/C, 47891 Dogana, Repubblica di San Marino
Type of data processed
As part of our activities, we collect and use personal data provided by you, the data subject, e.g. your personal email, to the extent that is needed and helpful to attain the purposes set out below.
Purpose of processing and profiling
We may collect and use personal data for the following purposes:
Communication and promotion of the activities of our company e.g. news, information, invitations, publications, announcements and newsletters via e-mail.
You can change your preferences at any time.
Legal basis for processing personal data
For the purposes set out above, the legal basis of processing is the consent you, the data subject, give to the processing of your personal data by submitting to our newsletter, as per art. 6, let. a) GDPR.
Data Subject Rights
In relation to your personal data you can exercise your rights as data subject under the GDPR https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679, namely:
- Right of access [article 15 of the GDPR];
- Right to rectification [article 16 of the GDPR];
- Right to erasure (‘right to be forgotten’) [article 17 of the GDPR];
- Right to restriction of processing [article 18 of the GDPR];
- Right to data portability [article 20 of the GDPR];
- Right to object [article 21 of the GDPR].
You have the right to withdraw your consent at any time.
The rights set out above can be exercised in writing by sending an email to firstname.lastname@example.org
Pursuant to article 19 of the GDPR, we shall communicate any rectification or erasure of personal data or restriction of processing requested by you, the data subject, to each recipient to whom your personal data has been disclosed, unless this proves impossible. You as data subject have also the right to lodge a complaint with the San Marino Data Protection Authority, Via Scala Bonetti, 2 - 47890 San Marino - Repubblica di San Marino.
For further information about data subjects rights visit our website.
We will keep your personal data for 24 months after your consent
Consent to data processing
You are free to give or withhold your consent to processing of your personal data for the purposes above. We need your freely given consent to send you news, information, invitations, publications, announcements and newsletters regarding our company. Should you deny your consent, we will be unable to send you said communications.
Disclosure of data outside of the company
We may disclose your personal data outside of our company for various reasons. In particular, your personal data may be made available to entities providing IT system management on behalf of our company, competent authorities and/or public bodies and supervisory authorities to comply with statutory requirements and other third parties collaborating with our company for the attainment of our commercial purposes. Where appropriate, we shall formally appoint said third parties Data Processors pursuant to article 28 of the GDPR. Upon your request you can access the detailed list of third parties to whom your personal data has been disclosed.
How data is processed
We process your personal data on paper or electronic form and enter your data into relevant databases that may be accessed – hence your data be disclosed to – our Company’s employees, contractors/consultants interns and other authorised individuals. Said employees, contractors/consultants interns and other authorised individuals may consult, use, process, compare the data as well as carry out any other appropriate action, including using automated means, always in compliance with statutory requirements that ensure, inter alia, protection of the confidentiality and security of the personal data, as well as data accuracy, update and appropriateness to the purposes for which the data is collected and used, as stated above.
Transfer of data outside of the EU
Your personal data may be transferred outside of the EU only for the purposes of promoting commercial activities, including via social media. In particular, the Data Controller reserves the right to transmit the data to third parties including those outside of the EU that guarantee an adequate level of personal data protection and apply the EU-US Privacy Shield framework.
Changes and updates
The Data Controller may make changes and/or additions to this privacy notice including as a result of regulatory changes.
CONSENT REQUEST PURSUANT TO ARTICLE 7 OF THE GDPR
By clicking on the "Subscribe" button in the newsletter subscription form you give your consent to our processing of your personal data in accordance with the purposes described above.