Warning: Undefined array key "options" in /srv/www/vhosts/wildwindsardinia.com/httpdocs/wp-content/plugins/elementor-pro/modules/theme-builder/widgets/site-logo.php on line 93

Confidentiality policy

We are very pleased that you have shown interest in our society. Data protection has a particularly high priority for the management of Wild Wind Sardinia. Use of Wild Wind Sardinia Internet pages is possible without any indication of personal data; however, if a data subject wishes to use special services through our Web site, personal data may need to be processed. If the processing of personal data is necessary and there is no legal basis, we usually obtain the consent of the data subject.

The processing of personal data such as a data subject’s name, address, e-mail, or telephone number must always be in line with the General Data Protection Regulation (GDPR) and in accordance with country-specific data protection regulations applicable to Wild Wind Sardinia. Through this data protection statement, our company wishes to inform the general public about the nature, scope, and purpose of the personal data we collect, use, and process. In addition, data subjects are informed through this data protection statement of the rights to which they are entitled.

As the data controller, Wild Wind Sardinia has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this site. However, Internet-based data transmissions may, in principle, have security gaps, so absolute protection may not be guaranteed. For this reason, any data subject is free to transfer his or her personal data by alternative means, e.g., by telephone.

1. Definitions

Wild Wind Sardinia’s data protection statement is based on the terms used by the European legislature for the adoption of the General Data Protection Regulation (GDPR). Our data protection statement should be readable and understandable to the general public as well as to our customers and business partners. To ensure this, we would first like to explain the terminology used.

In this data protection statement, we use, among other things, the following terms:

  • (a) Personal data

    Personal data: any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, particularly by reference to an identifier such as a name, identification number, location data, online identifier, or one or more factors specific to that natural person’s physical, physiological, genetic, mental, economic, cultural, or social appearance.

  • (b) Subject of the data

    A data subject is an identified or identifiable natural person whose personal data are processed by the data controller for processing.

  • (c) Processing

    Processing is any operation or set of operations performed on personal data or personal data sets, including by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

  • (d) Limitation of treatment

    Restriction of processing is the marking of stored personal data with the aim of limiting its processing in the future.

  • (e) Behavior monitoring

    Behavior monitoring: any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects about an individual, particularly to analyze or predict aspects regarding the individual’s performance at work, economic situation, health, personal preferences , interests, reliability, behavior, location, or movements.

  • (f) Pseudonymization

    Pseudonymization is the processing of personal data in such a way that personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is stored separately and is subject to technical and organizational measures to ensure that personal data is not attributed to an identified or identifiable natural person.

  • (g) Supervisory authority or supervisory authority responsible for the processing of personal data

    The personal data controller is the natural or legal person, public authority, agency or other body which, alone or in cooperation with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for his or her appointment may be provided for by Union or Member State law.

  • (h) Processor

    Processor is a natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.

  • (i) Recipient

    The beneficiary is a natural or legal person, public authority, agency or other entity, to whom personal data are disclosed, whether a third party or not. However, public authorities that may receive personal data as part of a particular investigation in accordance with Union or Member State law are not considered recipients; the processing of such data by such public authorities must comply with applicable data protection rules according to the purpose of the processing.

  • (j) Third part

    Third party is a natural or legal person, public authority, agency or entity other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

  • (k) Consent

    The data subject’s consent is a free, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or clear affirmative action, signifies consent to the processing of personal data concerning him or her .

2. Name and address of the personal data controller

Data controller of personal data for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in the member states of the European Union, and other data protection provisions is:

Wild Wind Sardinia

At Jamaican Beach Kiosk

09010 Masainas

Italy

Phone: 3245842551

Email: wildwindsardinia@gmail.com

Website: wildwindsardinia.com

3. Cookies

Wild Wind Sardinia Internet pages use cookies. Cookies are text files that are stored in a computer system via an Internet browser.

Many Internet sites and servers use cookies. Many cookies contain a so-called ID cookie. A cookie ID is a unique identifier of the cookie. It consists of a string of characters through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This allows Internet sites and servers visited to differentiate the individual browser of test subjects from other Internet browsers that contain other cookies. A specific Internet browser can be recognized and identified using the unique cookie ID.

Through the use of cookies, Wild Wind Sardinia can provide users of this Web site with more user-friendly services that would not be possible without the cookie setting.

By means of a cookie, information and offers on our website can be optimized with the user in mind. Cookies allow us, as mentioned earlier, to recognize users of our site. The purpose of this recognition is to make it easier for users to use our website. The user of the Web site using cookies, e.g., does not need to enter login information each time the Web site is accessed, as this is taken over by the Web site and the cookie is then stored on the user’s computer system. Another example is a shopping cart cookie in an online store. The online store stores the items that a customer has placed in the virtual shopping cart via a cookie.

The data subject may, at any time, prevent the setting of cookies through our website by means of the corresponding setting of the Internet browser used, and may then permanently deny the setting of cookies. In addition, cookies already set can be deleted at any time using an Internet browser or other software programs. This is possible in all popular Internet browsers. If the person concerned disables the cookie setting in the Internet browser used, not all functions of our Web site may be fully usable.

4. Data collection and general information

The Wild Wind Sardinia Web site collects a variety of data and general information when a data subject or automated system calls up the Web site. This data and general information is stored in the server’s log files. The following may be collected: (1) the types of browsers and versions used, (2) the operating system used by the access system, (3) the Web site from which an access system reaches our Web site (so-called referrers), (4) the sub -websites, (5) the date and time of access to the Internet site, (6) an Internet protocol address (IP address), (7) the Internet service provider of the access system, and (8) any other similar data and information that may be used in the event of attacks on our computer systems.

When using these general data and information, Wild Wind Sardinia does not draw conclusions about the data subject. Rather, this information is necessary to (1) properly deliver the content of our website, (2) optimize the content of our website and its advertising, (3) ensure the long-term viability of our computer systems and website technology, and (4) provide law enforcement authorities with the information needed for prosecution in the event of a cyber attack. Therefore, Wild Wind Sardinia statistically analyzes anonymously collected data and information in order to increase our company’s data protection and data security and to ensure an optimal level of protection for processed personal data. Anonymous data from server log files are stored separately from any personal data provided by a data subject.

5. Registration on our website

The data subject has the opportunity to register on the data controller’s website with the indication of personal data. What personal data is transmitted to the controller is determined by the respective input mask used for registration. Personal data entered by the data subject are collected and stored exclusively for internal use by the data controller and for its own purposes. The controller may request transfer to one or more processors (such as a parcel service) that also uses personal data for an internal purpose attributable to the controller.

By registering on the data controller’s website, the IP address assigned by the Internet service provider (ISP) and used by the data subject – date and time of registration – are also stored. Storage of this data takes place in the background, which this is the only way to prevent misuse of our services and, if necessary, to make it possible to investigate crimes committed. Therefore, the retention of this data is necessary to protect the. These data are not transmitted to third parties unless there is a legal obligation to transmit the data, or if the transfer serves the purpose of a criminal prosecution.

The registration of the data subject, with the voluntary indication of personal data, is intended to enable the data controller to offer data subjects content or services that can be offered to registered users only because of the nature of the matter. Registered persons are free to change the personal data specified during registration at any time or have them completely deleted from the data stock of the data controller.

The data controller shall, at any time, provide information upon request to each data subject as to what personal data are stored on the data subject. In addition, the data controller will correct or delete personal data at the request or indication of the data subject, to the extent that there are no custodial obligations required by law. All employees of the controller are available to data subjects in this area as contact persons.

6. Subscription to our newsletters

On the Wild Wind Sardinia website, users have the opportunity to subscribe to our newsletter. The input mask used for this purpose determines what personal data is transmitted, as well as when the newsletter is ordered by the data controller.

Wild Wind Sardinia regularly informs its customers and business partners through a newsletter about commercial offers. The newsletter can be received by the data subject only if (1) the data subject has a valid e-mail address and (2) the data subject’s records for sending the newsletter. A confirmation e-mail will be sent to the e-mail address registered by a data subject for the first time to send the newsletter, for legal reasons, in the double acceptance procedure. This confirmation e-mail is used to prove whether the owner of the e-mail address as the data subject is authorized to receive the newsletter.

During newsletter registration, we also store the IP address of the computer system assigned by the Internet service provider (ISP) and used by the data subject at the time of registration, as well as the date and time of registration. The collection of this data is necessary to understand the (possible) misuse of a data subject’s e-mail address at a later date, and therefore serves the legal protection objective of the data controller.

Personal information collected as part of a newsletter registration will be used only to send our newsletter. In addition, newsletter subscribers may be notified by e-mail, provided that this is necessary for the operation of the newsletter service or a registration in question, as this could occur in case of changes in the newsletter offer, or in case of a change in technical circumstances. There will be no transfer of personal data collected by the newsletter service to third parties. Subscription to our newsletter can be terminated by the person concerned at any time. Consent to the storage of personal data, which the data subject has provided for sending the newsletter, can be revoked at any time. For the purpose of withdrawing consent, a corresponding link is found in each newsletter. You can also subscribe from the newsletter at any time directly on the data controller’s website or notify the data controller in a different way.

7. Newsletter-Tracking

The Wild Wind Sardinia newsletter contains so-called tracking pixels. A tracking pixel is a thumbnail graphic embedded in such e-mails, which are sent in HTML format to enable logging and log file analysis. This allows statistical analysis of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, Wild Wind Sardinia can see if and when an e-mail was opened by a data subject and which links in the e-mail were retrieved by data subjects.

Such personal data collected in the tracking pixels contained in the newsletters are stored and analyzed by the data controller in order to optimize newsletter delivery, as well as to tailor the content of future newsletters even better to the interests of the data subject. These personal data will not be passed on to third parties. Interested persons have the right at any time to revoke the respective separate declaration of consent issued through the dual acceptance procedure. After a revocation, these personal data will be deleted by the controller. Wild Wind Sardinia automatically considers a withdrawal from receiving the newsletter as a revocation.

8. Possibility of contact through the website

Wild Wind Sardinia’s website contains information that allows quick electronic contact with our company, as well as direct communication with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the data controller by e-mail or through a contact form, the personal data transmitted by the data subject are automatically stored. Such personal data voluntarily transmitted by a data subject to the controller are retained for the purpose of processing or contacting the data subject. There is no transfer of this personal data to third parties.

9. Comment function in the blog on the site

Wild Wind Sardinia offers users the opportunity to leave individual comments on individual blog contributions on a blog, which is located on the data controller’s Web site. A blog is a web-based, publicly accessible portal through which one or more people called bloggers or web bloggers can publish articles or write thoughts in so-called blogposts. Blog posts can usually be commented on by third parties.

If a data subject leaves a blog comment posted on this site, the comments made by the data subject are also stored and published, as well as information about the date of the comment and the user (pseudonym) chosen by the data subject . In addition, the IP address assigned by the Internet service provider (ISP) to the data subject is also recorded. This storage of the IP address is done for security reasons and in case the data subject violates the rights of third parties or publishes illegal content through a particular comment. The storage of this personal data is therefore in the interest of the data controller, so that it can exonerate itself in case of a breach. These collected personal data will not be transferred to third parties unless such transfer is required by law or serves the purpose of the controller’s defense.

10. Routine deletion and blocking of personal data

The controller processes and stores the personal data of the data subject only for the period necessary to achieve the purpose of storage, or to the extent that this is permitted by the European legislator or other legislators in laws or regulations to which the controller is subject.

If the storage purpose is not applicable or if a retention period prescribed by the European or other relevant legislature expires, personal data are routinely blocked or deleted in accordance with legal requirements.

11. Rights of the data subject

  • (a) Right of confirmation

    Every data subject has the right conferred by the European legislator to obtain from the controller confirmation of the existence or non-existence of personal data concerning him or her. If a data subject wishes to make use of this right of confirmation, he or she may, at any time, contact any employee of the controller.

  • (b) Right of access

    Every data subject has the right conferred by the European legislature to obtain from the controller free information about his or her stored personal data at any time and a copy of that information. In addition, European directives and regulations grant the data subject access to the following information:

    • the purposes of processing;
    • The categories of personal data affected;
    • The recipients or categories of recipients to whom personal data have been or will be disclosed, particularly recipients in third countries or international organizations;
    • where possible, the expected period for which personal data will be retained or, if not possible, the criteria used to determine this period;
    • the existence of the right to request from the controller the rectification or erasure of personal data, or the restriction of processing of personal data relating to the data subject, or to object to such processing;
    • The existence of the right to file a complaint with the supervisory authority;
    • if personal data are not collected from the data subject, any available information about their origin;
    • the existence of automated decision-making processes, including profiling, as referred to in Article 22(1) and (4) of the GDPR, and, at least in such cases, meaningful information about the logic involved, as well as the significance and expected consequences of such processing for the data subject.

    In addition, the data subject has the right to obtain information about the transfer of personal data to a third country or international organization. In such a case, the data subject has the right to be informed of appropriate safeguards regarding the transfer.

    If a data subject wishes to make use of this right of access, he or she may, at any time, contact any employee of the controller.

  • (c) Right of rectification

    Every data subject has the right conferred by the European legislator to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of processing, the data subject has the right to complete incomplete personal data, including by submitting a supplementary declaration.

    If a data subject wishes to exercise this right of rectification, he or she may, at any time, contact any employee of the controller.

  • (d) Right to erasure (right to be forgotten).

    Every data subject has the right conferred by the European legislator to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller has the obligation to erase personal data without undue delay if one of the following grounds applies, provided that the processing is not necessary:

    • Personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
    • The data subject withdraws the consent on which the processing is based in accordance with Article 6(1)(a) of the GDPR, or Article 9(2)(a) of the GDPR, and where there is no other legal basis for processing.
    • The data subject objects to processing under Article 21(1) of the GDPR and there is no legitimate ground for processing or the data subject objects to processing under Article 21(2) of the GDPR.
    • Personal data have been processed unlawfully.
    • Personal data must be deleted in order to comply with a legal obligation in Union or Member State law to which the controller is subject.
    • Personal data were collected in connection with the provision of information society services referred to in Article 8(1) of the GDPR.

    If any of the above reasons apply and the data subject wishes to request the deletion of personal data stored by Wild Wind Sardinia, the data subject may, at any time, contact any employee of the data controller. An employee of Wild Wind Sardinia must promptly ensure that the cancellation request is complied with immediately.

    Where a controller has made personal data public and is required under Article 17(1) to erase personal data, the controller, taking into account available technology and implementation costs, shall take reasonable measures, including technical measures, to inform other controllers of personal data that the data subject has requested the erasure by such controllers of any links, copies or replications of such personal data, to the extent that processing is not required. An employee of Wild Wind Sardinia will arrange the necessary measures in individual cases.

  • (e) Right to restrict treatment

    Every data subject has the right, granted by the European legislator, to obtain from the controller the restriction of processing if one of the following conditions applies:

    • The accuracy of personal data is contested by the data subject, for a period that allows the data controller to verify the accuracy of the personal data.
    • The processing is unlawful and the data subject objects to the deletion of personal data and instead requests the restriction of their use.
    • The controller no longer needs the personal data for the purpose of processing, but is required by the data subject for the establishment, exercise or defense of legal claims.
    • The data subject objected to the processing under Article 21(1) of the GDPR pending verification that the legitimate grounds of the controller outweighed those of the data subject.

    If any of the above conditions are met and the data subject wishes to request the restriction of the processing of personal data stored by Wild Wind Sardinia, he or she may at any time contact any employee of the controller. Wild Wind Sardinia employee will arrange the restriction of processing.

  • (f) Right to data portability

    Every data subject has the right, recognized by the European legislature, to receive personal data concerning him or her, provided to a data controller, in a structured, commonly used and machine-readable format. He or she has the right to transmit such data to another controller without hindrance to the controller to whom the personal data were provided, provided that the processing is based on the consent referred to in Article 6(1)(b) (a), of the GDPR or the point (a) of Article 9 (2) of the GDPR, or a contract within the meaning of Article 6 (1) (1) of the (b), of the GDPR, and the processing is carried out by automated means, provided that the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

    Furthermore, in exercising his or her right to data portability under Article 20(1) of the GDPR, the data subject has the right to transmit personal data directly from one controller to another, where technically feasible and in doing so not adversely affect the rights and freedoms of others.

    To assert the right to data portability, the data subject may at any time contact any employee of Wild Wind Sardinia.

  • (g) Right to object

    Every data subject has the right, recognized by the European legislator, to object, on grounds relating to his or her particular situation, at any time, to the processing of personal data concerning him or her, which is based on the point (e) or (f) ) of Article 6(1) of the GDPR. This also applies to profiling based on these provisions.

    Wild Wind Sardinia will no longer process personal data in case of objection, unless we can demonstrate compelling legitimate grounds for processing that override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defense of legal claims .

    If Wild Wind Sardinia processes personal data for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data concerning him or her for such marketing. This applies to profiling insofar as it is related to such direct marketing. If the data subject objects to Wild Wind Sardinia processing for direct marketing purposes, Wild Wind Sardinia will no longer process personal data for such purposes.

    In addition, the data subject has the right, on grounds relating to his or her particular situation, to object to the processing of personal data concerning him or her by Wild Wind Sardinia for scientific or historical research or statistical purposes pursuant to Article 89 ( 1) of the GDPR, unless the processing is necessary for the performance of an activity carried out for reasons of public interest.

    To exercise the right to object, the data subject may contact any employee of Wild Wind Sardinia. In addition, the data subject is free in the context of the use of information society services and, by way of derogation from Directive 2002/58 / EC, to make use of their right to object by automated means using specific techniques.

  • (h) automated individual decision making, including profiling

    Every data subject has the right, granted by the European legislature, not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects on him or her, or significantly affects him or her, provided that the decision (1) is not necessary for entering into or performing a contract between the data subject and a data controller or (2) is not authorized by the legislation of the Union or the Member State to which the controller is subject and which also establishes appropriate measures to safeguard the data subject’s rights and freedoms and legitimate interests, or (3) is not based on the data subject’s explicit consent.

    If the decision (1) is necessary to enter into, or perform, a contract between the data subject and a data controller, or (2) is based on the data subject’s explicit consent, Wild Wind Sardinia shall implement appropriate measures to safeguard the data subject’s rights and freedoms and the data subject’s legitimate interests, at least the right to obtain human intervention by the data controller, to express his or her views, and to challenge the decision.

    If the data subject wishes to exercise his/her rights regarding automated individual decision-making, he/she may, at any time, contact any employee of Wild Wind Sardinia.

  • (i) Right to revoke data protection consent

    Every data subject has the right, granted by the European legislature, to withdraw their consent to the processing of their personal data at any time.

    If the data subject wishes to exercise the right to withdraw consent, he or she may, at any time, contact any employee of Wild Wind Sardinia.

12. Data protection for applications and application procedures.

The data controller collects and processes applicants’ personal data for the purpose of processing the application procedure. Processing may also be done electronically. This is particularly the case if an applicant sends the corresponding application documents by e-mail or via a web form on the website to the controller. If the data controller concludes an employment contract with an applicant, the data submitted will be stored for the purpose of processing the employment relationship in accordance with legal requirements. If the controller does not conclude an employment contract with the applicant, the application documents shall be automatically deleted two months after the notification of the rejection decision, provided that no other legitimate interest of the controller is against the deletion.

13. Data protection provisions regarding the application and use of AddThis.

On this website, the data controller has integrated components of AddThis. AddThis is a so-called bookmarking provider. The service makes it easy to bookmark Internet pages using buttons. Clicking on the AddThis component with the mouse, or clicking on it, displays a list of bookmarking and sharing services. AddThis is used on more than 15 million Web sites, and the buttons are viewed more than 20 billion times a year, according to information from the operating company.

The operating company for AddThis is AddThis, Inc. 1595 Spring Hill Road, Suite 300, Vienna, VA 22182, United States.

By calling up one of the individual pages of the Web site, which is managed by the data controller and on which an AddThis component has been integrated, the data subject’s Internet browser is automatically prompted by the AddThis component to download data from the Web site. www.addthis.com. As part of this technical procedure, AddThis is informed of the visit and the specific individual page of this Web site that was used by the data subject with the help of computer technology. In addition, AddThis is informed about the IP address of the computer system assigned by the Internet service provider (ISP) and used by the data subject, the browser type and language, the web page accessed before our website, and the date and time of the visit to our website. AddThis uses this data to create anonymous user profiles. The data and information transmitted to AddThis in this way will allow the AddThis companyle, as well as affiliates or their partner companies, to contact visitors to the controller’s Web pages with personalized, interest-based advertising.

AddThis displays personalized, interest-based advertising based on a cookie set by the company. This cookie analyzes the individual browsing behavior of the computer system used by the data subject. The cookie saves outgoing computer visits to Internet pages.

The data subject may, at any time, prevent the setting of cookies through our website by means of the corresponding setting of the Internet browser used, and thus permanently deny the setting of cookies. Such an Internet browser setting used would also prevent AddThis from setting a cookie on the data subject’s computer system. Cookies can also be deleted from AddThis at any time via an Internet browser or other software program.

The data subject also has the option of permanently objecting to the processing of personal data by AddThis. To do so, the data subject must click the opt-out button under the http://www.addthis.com/privacy/opt-out link, which sets an opt-out cookie. The opt-out cookie used for this purpose is placed in the computer system used by the data subject. If the data subject discontinues cookies from their system, the data subject must call up the link again and set a new opt-out cookie.

By setting the opt-out cookie, however, there is a possibility that the data controller’s Web sites may no longer be fully usable by the data subject.

The applicable data protection provisions of AddThis can be accessed at http://www.addthis.com/privacy/privacy-policy.

14. Data protection provisions regarding the application and use of Facebook

On this website, the data controller has integrated components of the company Facebook. Facebook is a social network.

A social network is a place for social gatherings on the Internet, an online community, which usually allows users to communicate with each other and interact in a virtual space. A social network can serve as a platform for the exchange of opinions and experiences or allow the Internet community to provide personal or business-related information. Facebook allows social network users to include the creation of private profiles, upload photos and network through friend requests.

Facebook’s operating company is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States. If a person lives outside the United States or Canada, the data controller is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland.

With each call to one of the individual pages of this website, which is operated by the data controller and in which a Facebook component (Facebook plug-in) is integrated, the Web browser on the computer system of the data subject is automatically prompted to download the display of the corresponding Facebook component from Facebook via the Facebook component. An overview of all Facebook plug-ins can be accessed under https://developers.facebook.com/docs/plugins/. During the course of this technical procedure, Facebook is aware of which specific subsite of our Web site was visited by the data subject.

If the data subject is logged in at the same time on Facebook, Facebook detects each call to our website by the data subject – and for the entire duration of the data subject’s stay on our Internet site – which specific secondary site on our Internet the page was visited by the data subject. This information is collected through the Facebook component and associated with the data subject’s respective Facebook account. If the data subject clicks on one of the Facebook buttons embedded in our website, e.g., the “Like” button, or if the data subject submits a comment, Facebook matches this information with the user’s personal Facebook account and stores the personal data.

Facebook always receives, through the Facebook component, information about a data subject’s visit to our website, whenever the data subject connects to Facebook at the same time during the period of the call to our website. This occurs regardless of whether the data subject has clicked on the Facebook component or not. If such transmission of information to Facebook is undesirable for the data subject, then it may prevent them from logging out of their Facebook account before a call is made to our Web site.

Facebook’s published data protection guideline, available at https://facebook.com/about/privacy/, provides information on Facebook’s collection, processing and use of personal data. In addition, it is explained what setting options Facebook offers to protect the privacy of the data subject. In addition, several configuration options are available to enable the elimination of data transmission to Facebook. These applications can be used by the data subject to eliminate a Facebook data transmission.

15. Data protection provisions related to the application and use of Google AdSense

On this website, the data controller has integrated Google AdSense. Google AdSense is an online service that enables the placement of advertisements on third-party sites. Google AdSense relies on an algorithm that selects advertisements displayed on third-party sites to match the content of the respective third-party site. Google AdSense allows targeting based on Internet user interests, which is implemented by generating individual user profiles.

The operating company for Google’s AdSense component is Alphabet Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.

The purpose of Google’s AdSense component is the integration of advertisements on our website. Google AdSense places a cookie on the data subject’s computer system. The definition of a cookie is explained above. By setting the cookie, Alphabet Inc. is enabled to analyze the use of our website. With each call to one of the individual pages of this website, which is operated by the controller and in which a Google AdSense Component is integrated, the Internet browser on the information technology system of the data subject will automatically send data via the Google AdSense Component for the purpose of online advertising and commission settlement to Alphabet Inc. In the course of this technical procedure, the company Alphabet Inc. acquires knowledge of personal data, such as the data subject’s IP address, which serves Alphabet Inc., among others, to understand the origin of visitors and clicks and subsequently create commission settlements.

The data subject may, as stated above, prevent the setting of cookies through our Web site at any time by a corresponding change in the Web browser used and then permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Alphabet Inc. Of setting a cookie on the data subject’s computer system. In addition, the cookies already in use by Alphabet Inc. can be deleted at any time using a Web browser or other software programs.

In addition, Google AdSense also uses so-called tracking pixels. A tracking pixel is a thumbnail graphic embedded in Web pages to allow logging and an analysis of log files through which statistical analysis can be performed. Based on the embedded tracking pixels, Alphabet Inc. is able to determine if and when a Web site was opened by a data subject and which links were clicked by the data subject. Tracking pixels are used, among other things, to analyze the flow of visitors to a website.

Through Google AdSense, personal data and information, which includes IP address, and is necessary for the collection and accounting of displayed advertisements, is transmitted to Alphabet Inc. In the United States of America. This personal data will be stored and processed in the United States of America. The Alphabet Inc. may disclose personal data collected through this technical procedure to third parties.

Google AdSense is further explained under the following link https://www.google.com/intl/en/adsense/start/.

16. Data protection provisions related to the application and use of Google Analytics (with anonymization function)

On this website, the data controller has integrated the Google Analytics component (with the anonymizer function). Google Analytics is a web analytics service. Web data analysis is the collection, collation, and analysis of data on the behavior of Web site visitors. A Web analytics service collects, among other things, data on the Web site from which a person arrived (the so-called referrer), which sub pages were visited, or how often and for what duration a sub page was viewed. Web data analysis is mainly used to optimize a Web site and to perform cost-benefit analysis of Internet advertising.

The operator of the Google Analytics component is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.

For web analysis using Google Analytics, the data controller uses the application “_gat. _anonymizeIp”. Through this application, the IP address of the data subject’s Internet connection is abbreviated by Google and anonymized when accessing our websites from a member state of the European Union or another state party to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyze traffic on our website. Google uses the data and information collected, among other things, to evaluate the use of our Web site and to provide online reports, which show activity on our Web sites and to provide other services related to the use of our Internet site for us.

Google Analytics places a cookie on the data subject’s computer system. The definition of cookies is explained above. By setting the cookie, Google is enabled to analyze the usage of our website. With each call to one of the individual pages of this Internet site, which is operated by the controller and in which a Google Analytics Component has been integrated, the Internet browser on the data subject’s computer system will automatically send data via the Google Analytics Component for the purpose of online advertising and commission settlement to Google. In the course of this technical procedure, the Google company acquires knowledge of personal information, such as the IP address of the data subject, which provides Google with, among other things, an understanding of the origin of visitors and clicks and subsequently the creation of commission agreements.

The cookie is used to store personal information, such as the time of access, the location from which access was made, and the frequency of visits to our website by the data subject. With each visit to our website, such personal data, including the IP address of the Internet access used by the data subject, will be transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may transfer this personal data collected through the technical procedure to third parties.

The data subject may, as stated above, prevent the setting of cookies through our Web site at any time by a corresponding change in the Web browser used and then permanently deny the setting of cookies. Such an adjustment to the Internet browser used would prevent Google Analytics from setting a cookie on the data subject’s computer system. In addition, cookies already in use by Google Analytics can be deleted at any time via a Web browser or other software program.

In addition, the data subject has the ability to object to a collection of data that are generated by Google Analytics, which is related to the use of this website, as well as the processing of these data by Google and the ability to preclude such . To do so, the person must download a browser add-on under the link https://tools.google.com/dlpage/gaoptout and install it. This browser add-on tells Google Analytics via a JavaScript that data and information about Internet page visits may not be transmitted to Google Analytics. The installation of browser add-ons is considered an objection by Google. If the data subject’s computer system is subsequently deleted, formatted, or newly installed, the data subject must reinstall browser add-ons to disable Google Analytics. If the browser add-on has been uninstalled by the data subject or any other person who is attributable to their sphere of responsibility or is disabled, reinstallation or reactivation of browser add-ons can be performed.

More information and applicable Google data protection provisions can be found at https://www.google.com/intl/it/policies/privacy/ and at http://www.google.com/analytics/terms/us. html. Google Analytics is further explained under the following link https://www.google.com/analytics/.

17. Data protection provisions regarding the application and use of Google remarketing

On this website, the data controller has integrated Google remarketing services. Google Remarketing is a feature of Google AdWords, which allows a company to display advertisements to Internet users who previously resided on the Internet site. Google Remarketing integration thus enables a company to create user-based advertising and thus show relevant ads to interested Internet users.

The operating company for Google remarketing services is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.

The purpose of Google remarketing is the placement of interest-relevant advertising. Google remarketing allows us to display ads on the Google network or other websites, which are based on individual needs and match the interests of Internet users.

Google Remarketing sets a cookie on the data subject’s computer system. The definition of cookies is explained above. By setting the cookie, Google allows recognition of the visitor to our Web site if it calls up consecutive Web pages, which are also members of Google’s advertising network. With each call to an Internet site on which the service has been integrated by Google Remarketing, the affected person’s Web browser automatically identifies with Google. In the course of this technical procedure, Google receives personal information, such as the user’s IP address or browsing behavior, which Google uses, among other things, for the insertion of interest-relevant advertising.

The cookie is used to store personal information, e.g., the Internet pages visited by the data subject. Whenever we visit our Internet pages, personal data, including the IP address of the Internet access used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may transfer this personal data collected through the technical procedure to third parties.

The data subject may, as stated above, prevent the setting of cookies through our Web site at any time by a corresponding change in the Web browser used and then permanently deny the setting of cookies. Such an adjustment to the Internet browser used would also prevent Google from setting a cookie on the data subject’s computer system. In addition, cookies already in use by Google can be deleted at any time via a Web browser or other software program.

In addition, the data subject has the option to object to Google’s interest-based advertising. To do so, the data subject must retrieve the link to www.google.de/settings/ads and make the desired settings on each Internet browser used by the data subject.

More information and Google’s current data protection regulations can be retrieved at https://www.google.com/intl/en/policies/privacy/.

18. Data protection provisions regarding the application and use of Google-AdWords

On this website, the data controller has integrated Google AdWords. Google AdWords is an Internet advertising service that allows the advertiser to place ads in Google’s search engine results and Google’s advertising network. Google AdWords allows an advertiser to predefine specific keywords with the help of which an ad on Google search results is displayed only when the user uses the search engine to retrieve a search result relevant to the keyword. In Google’s advertising network, ads are distributed to relevant Web pages using an automatic algorithm, taking into account previously defined keywords.

The operating company for Google AdWords is Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, UNITED STATES.

The purpose of Google AdWords is the promotion of our website by including relevant advertising on third-party websites and in the search engine results of the Google search engine and a placement of third-party advertising on our website.

If a data subject reaches our website via a Google ad, a conversion cookie is stored on the data subject’s computer system via Google. The definition of cookies is explained above. A conversion cookie loses its validity after 30 days and is not used to identify the data subject. If the cookie has not expired, the conversion cookie is used to check whether certain sub pages, such as the shopping cart from an online store system, have been retrieved on our Web site. Through the conversion cookie, both Google and the data controller can understand whether a person who reached an AdWords ad on our Web site generated sales, i.e., made or cancelled a sale of goods.

The data and information collected through the use of the conversion cookie is used by Google to create visit statistics for our website. These visit statistics are used in order to determine the total number of users who were served through AdWords ads to ascertain the success or failure of each AdWords ad and optimize our AdWords ads in the future. Neither our company nor other Google AdWords advertisers receive information from Google that could identify the data subject.

The conversion cookie stores personal information, e.g., the Internet pages visited by the data subject. Whenever we visit our Internet pages, personal data, including the IP address of the Internet access used by the data subject, is transmitted to Google in the United States of America. This personal data is stored by Google in the United States of America. Google may transfer this personal data collected through the technical procedure to third parties.

The data subject may, at any time, prevent the setting of cookies from our website, as indicated above, by means of a corresponding setting of the Internet browser used and thus permanently deny the setting of cookies. Such an Internet browser setting used would also prevent Google from placing a conversion cookie on the data subject’s computer system. In addition, a cookie set by Google AdWords can be deleted at any time via the Internet browser or other software programs.

The data subject has the opportunity to object to Google’s interest-based advertising. Therefore, the data subject must access from each of the browsers in use the link www.google.de/settings/ads and set the desired settings.

More information and the applicable Google data protection provisions can be retrieved at https://www.google.com/intl/en/policies/privacy/.

19. Data protection provisions related to the application and use of Instagram

On this website, the controller has integrated components of the Instagram service. Instagram is a service that can be qualified as an audiovisual platform, which allows users to share photos and videos, as well as disseminate such data to other social networks.

The operating company for the services offered by Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, UNITED STATES.

With each call to one of the individual pages of this website, operated by the data controller and on which an Instagram component (Insta button) has been integrated, the Internet browser on the data subject’s computer system is automatically prompted. To downloading a display of the corresponding Instagram component of Instagram. During the course of this technical procedure, Instagram learns which specific subpage of our Web site was visited by the data subject.

If the data subject logged in simultaneously on Instagram, Instagram detects each call to our website by the data subject – and for the entire duration of the stay on our website – which specific Internet subpage the page was visited by the data subject. This information is collected through the Instagram component and is associated with the data subject’s respective Instagram account. If the data subject clicks on one of the embedded Instagram buttons on our website, then Instagram matches this information with the data subject’s personal Instagram user account and stores the personal data.

Instagram receives information via the Instagram component that the data subject has visited our website provided that the data subject is registered on Instagram at the time of the call to our website. This occurs regardless of whether the person clicks the Instagram button or not. If such transmission of information to Instagram is undesirable for the data subject, then he or she may prevent it by logging out of his or her Instagram account before a call is made to our website.

More information and the applicable data protection provisions of Instagram can be retrieved at https://help.instagram.com/155833707900388 and https://www.instagram.com/about/legal/privacy/.

20. Data protection provisions related to the application and use of Jetpack for WordPress.

On this website, the data controller has integrated Jetpack. Jetpack is a WordPress plug-in that provides additional functionality to the operator of a WordPress-based Web site. Jetpack allows the Internet site operator, among other things, an overview of site visitors. By displaying related posts and publications or the ability to share content on the page, you can also increase the number of visitors. In addition, security features are built into Jetpack, so a site using Jetpack is better protected from attacks. Jetpack also optimizes and speeds up the loading of images on the website.

The operating company for Jetpack Plug-Ins for WordPress is Automattic Inc, 132 Hawthorne Street, San Francisco, CA 94107, UNITED STATES. The operating company uses tracking technology created by Quantcast Inc., 201 Third Street, San Francisco, CA 94103, UNITED STATES.

Jetpack sets a cookie on the computer system used by the data subject. The definition of cookies is explained above. Each time a call is made to one of the individual pages of this Internet site, which is operated by the controller and on which a Jetpack component has been integrated, the Internet browser on the data subject’s computer system is automatically prompted to send data via the Jetpack component for analysis purposes on Automattic. During this technical procedure, Automattic receives data that are used to create an overview of website visits. The data obtained in this way are used for the analysis of the behavior of the data subject, who has access to the data controller’s Internet page and is analyzed with the aim of optimizing the website. Data collected through the Jetpack component are not used to identify the data subject without separate express consent of the data subject. The data also come to Quantcast’s notice Quantcast uses the data for the same purposes as Automattic.

The data subject may, as stated above, prevent the setting of cookies via our Web site at any time by a corresponding change in the Web browser used and then permanently deny the setting of cookies. Such adjustment to the Internet browser used would also prevent Automattic / Quantcast from setting a cookie on the data subject’s computer system. In addition, cookies already in use in Automattic / Quantcast can be deleted at any time via a Web browser or other software program.

In addition, the data subject has the possibility to object to a collection of data related to the use of this Internet site that are generated by the Jetpack cookie as well as the processing of these data by Automattic / Quantcast and the possibility to preclude such . To do so, the data subject must press the ‘opt-out’ button under the https://www.quantcast.com/opt-out/ link that sets an opt-out cookie. The opt-out cookie set for this purpose is placed in the computer system used by the data subject. If cookies are deleted on the affected user’s system, the affected user must call up the link again and set a new opt-out cookie.

By setting the opt-out cookie, however, there is a possibility that the data controller’s Web sites may no longer be fully usable by the data subject.

Automattic’s applicable data protection provisions can be accessed at https://automattic.com/privacy/. Quantcast’s applicable data protection provisions can be accessed at https://www.quantcast.com/privacy/.

21. Legal basis for processing

Art. 6 (1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is a party, such as when the processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6(1) lit. b GDPR. The same applies to processing operations necessary for the execution of pre-contractual measures, for example, in the case of requests related to our products or services. Our company is subject to the legal obligation to process personal data, for example, to fulfill tax obligations, the processing is based on Art. 6 (1) lit. c GDPR.
In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor was injured in our society and his or her name, age, health insurance information, or other vital information had to be transmitted to a doctor, hospital, or other third party. So the elaboration would be based on Art. 6 (1) lit. d GDPR.
Finally, processing operations could be based on Article 6(1) lit. f GDPR. This legal basis is used for processing operations that are not covered by any of the above-mentioned legal grounds, if the processing is necessary for the purposes of the legitimate interests pursued by our company or a third party, except where such interests are outweighed by the interests or fundamental rights and freedoms of the data subject that require the protection of personal data. Such processing operations are particularly permissible because they were expressly mentioned by the European legislature. He held that a legitimate interest could be assumed if the data subject is a customer of the controller (recital 47, sentence 2, GDPR).

22. Legitimate interests pursued by the controller or a third party

Where the processing of personal data is based on Article 6.1 lit. For GDPR, our legitimate interest is to carry out our business for the benefit of the welfare of all our employees and shareholders.

23. Period of retention of personal data

The criteria used to determine the retention period of personal data are the respective statutory retention periods. After the expiration of this period, the corresponding data are routinely deleted, provided that they are no longer necessary for the fulfillment of the contract or the initiation of a contract.

24. Provision of personal data as a legal or contractual requirement; Requirement necessary to enter into a contract; Obligation of the data subject to provide personal data; Possible consequences of not providing such data

We clarify that the provision of personal data is in part required by law (e.g., Tax Regulations) or may also result from contractual provisions (e.g., information about the contractual partner).

Sometimes it may be necessary to contract for the data subject to provide personal data, which must subsequently be processed by us. The data subject is, for example, obliged to provide us with personal data when our company enters into a contract with him or her. Failure to provide personal data would result in the contract with the person concerned not being able to be concluded.

Before personal data is provided by the data subject, the data subject must contact any employee. The employee shall clarify to the data subject whether the provision of personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide personal data, and the consequences of not providing personal data.

25. Existence of automated decision-making processes

As a responsible company, we do not use automated decision making or profiling.

Developed by the specialists for LegalTech at Willing & Able that also developed the system for time tracker app. The legal texts contained in our privacy policy generator have been provided and published by Prof. Dr. h.c. Heiko Jonny Maniero from the German Association for Data Protection and Christian Solmecke from WBS law.

Contact

+39 3245842551
wildwindsardinia@gmail.com

Address

Wild Wind Sardinia
Loc. Is Solinas
Parking the Dunes
Masainas (SU) 33053

Social Media
Facebook Instagram

Confidentiality policy