We would like to thank you for your interest in our social media networking application and, with this policy, we would like to provide you with information about the nature, scope and purpose of the processing of your personal data through OzApp app and website (hereafter OzApp).
The processing of your personal data (e.g. first name, last name and e-mail address) will take place exclusively in accordance with the provisions of the General Data Protection Regulation, EU Regulation 2016/679 (hereinafter referred to as ‘GDPR’) and the current legislation.
Any processing of personal data for which there is no existing legal provision will only take place with your consent.
1. Personal data controller
The controller of the processing of your personal data pursuant to the GDPR and other legal provisions on the protection of personal data is:
Rosifer S.r.l., (hereinafter ‘Rosifer’ or the ‘Controller’),
with registered office in Viale Trastevere, 141
00153 – Rome,
VAT 14367241008,
2. Data Protection Officer (DPO)
If you have any questions and/or suggestions regarding data protection, you can contact our Data Protection Officer (DPO) directly at any time, who can be reached at the following e-mail address: dpo@ozapp.it.
3. Processed data
Whenever a user accesses OzApp, a set of general information and data is collected and stored in log files of the server on which both the website and App are hosted. The data in question are as follows:
Data class | Data Processed | Description |
a) | Contact details, data and identification documents: | When creating your personal profile on OzApp you will be asked to provide some personal data such as: first name, last name, e-mail address, city, date of birth. This data is necessary to successfully complete the registration and to use the services offered by the application. The processing of this personal data is necessary for secure access to the application. If an artist wins a contest, an identity check by means of an appropriate document will also be required. |
b) | Data you transmit to us via social network, web pages or services – Social network login | OzApp also allows you to access the reserved area by using credentials provided by a social network; in particular by using the identities created on Facebook, Google and Apple, in accordance with the authorisations and consent you have given to the social network in question. OzApp advises you to check the settings provided by the relevant social network and to read the relevant privacy policy carefully. Rosifer Srl will retain the identification code associated with your account with the relevant social networking service when you use it to login to OzApp. The retention will take place for as long as it is necessary to provide the requested services. |
c) | Data transmitted during troubleshooting concerning the use of OzApp | Data and feedback you send to us via e-mail/REM/other |
d) | Navigation data | During their normal operation process, the computer and telematic systems and software procedures used to operate OzApp acquire certain data (e.g. date and time of access, pages visited, name of the Internet Service Provider and the Internet Protocol (IP) address through which you access the Internet, type of browser and versions used, operating system used by the accessing system, web page from which the accessing system reached OzApp, etc.), the transmission of which is implicit in the use of web communication protocols or is useful for better management and optimisation of the service |
e) | Security data | Data and information whose purpose is to signal danger in the event of attacks against our computer systems. |
f) | Social media data | Data provided voluntarily when using the App: Videos you upload to participate in the contests,Videos you upload to the Out-of-Contest area,Videos you view,Photographic images,Recorded voice,Any personal data entered in the comments. Please remember that the comments can have public visibility, therefore choose carefully what to publish. |
4. Treatments performed by Rosifer
Rosifer processes your personal data for the achievement of specific purposes and only if there is a specific legal basis provided by the applicable legislation on privacy and personal data protection.
Your personal data will be processed manually and/or by computer or telematic means for purposes directly related to the provision of services.
Below is a list of the processing operations carried out by Rosifer with the purpose of the processing and its legal basis. Where indicated as compulsory, failure to provide this information will preclude registration on the social network.
Treatment | Classes of Data Processed | Purpose of processing | Legal basis | Mandatory conferment |
Contest Management | a) b) d) f) | Managing the contest correctly | Execution of a contract Art. 6 (b) EU 2016/679 | YES |
Contest Management | a) b) d) f) | Awarding the announced prizes | Execution of a contract Art. 6 (b) EU 2016/679 | YES |
Contest Management | a) b) d) f) | Finding new talents | Execution of a contract Art. 6 (b) EU 2016/679 | YES |
Management of the Out-of-Contest Area | a) b) d) f) | Finding new talents | Execution of a contract Article 6(b) EU 2016/679 | YES |
Management of the moderation features of the social media network | a) b) d) f) | Performing checks on content posted by users. Ensuring compliance with the OzApp Official Rules | Execution of a contract Art. 6(b) EU 2016/679 | YES |
Management of the OzApp website and application | a) b) d) e) f) | Allowing registration and/or access to the reserved area via personal profile | Execution of a contract Art. 6(b) EU 2016/679 | YES |
Management of the OzApp website and application | a) b) d) e) f) | Checking the correct functioning of the App and the Website (back office and public site) | Execution of a contract Article 6(b) EU 2016/679 | YES |
Management of the OzApp website and application | a) b) d) e) f) | Allowing the use of all the features of the App and its Backoffice | Execution of a contract Article 6(b) EU 2016/679 | YES |
Security data management | All those mentioned in paragraph 0.3 | Determining liability in case of computer crimes against the Site and/or the App. Detecting, preventing, mitigating and investigating of fraudulent or illegal activities in relation to the services provided on the App. Performing the security checks required by law. | Legal obligation Art. 6(c) EU 2016/679 | YES |
Handling of data protection requests by data subjects | All those mentioned in paragraph 0.3 | Responding to a question or request made by the interested parties | Legal obligation Art. 6(c) EU 2016/679 | YES |
Handling of user enquiries, e.g., for troubleshooting concerning the use of OzApp | All those mentioned in paragraph 0.3 | Providing support for the use of the platform | Execution of a contract Art. 6(b) EU 2016/679 | YES |
Processing of data due to legal obligation | All those mentioned in paragraph 0.3 | Enabling Rosifer to fulfil its obligations under laws and regulations or foreseen by EU legislation. | Legal obligation Article 6(c) EU 2016/679 | YES |
Web Data Analysis | a) b) d) f) | Proposing the content of the site correctly and ensuring the continued functionality of our computer systems and website technology | Legitimate interest Art. 6 (f) EU 2016/679 | YES |
Web Data Analysis | a) b) d) f) | Enabling us to develop our products/services and our business | Legitimate interest Art. 6 (f) EU 2016/679 | YES |
Marketing Activities | a) b) d) f) | Presenting products and services that can improve the experience of social network members | Execution of a contract Article 6(b) EU 2016/679 | YES |
Marketing Activities | a) b) d) f) | Informing the social network members of initiatives and new events related to the activities of the social network | Execution of a contract Article 6(b) EU 2016/679 | YES |
Profiling activities | a) b) d) f) | Improving the services offered | Consent Article 6(a) EU 2016/679 | NO |
5. Protection of minors’ privacy
The services offered by the Social media network are reserved exclusively for persons who are 18 years of age or older at the time of registration; minors are not allowed register on the Social media network.
If you would like to report an account belonging to a person under the age of 18, you can do so by sending a report to dpo@ozapp.it. Rosifer will activate the appropriate checks and remove the account if it cannot verify that it is managed by a person of legal age.
6. Retention period of your personal data
The personal data you have provided to Rosifer will be retained in accordance with the principles of proportionality and necessity, and in any case until the purpose of the processing has been fulfilled.
Videos uploaded by you will be stored on the platform until you request their deletion.
For further information please see also the official OzApp Rules and Regulations at the link www.ozapp.it
7. Cookies
In addition to technical cookies, OzApp also uses third-party performance cookies that allow us to anonymously collect and examine visitor behaviour while using the site and to improve its usability and user experience.
8. Permission to access personal data on the User’s device
Depending on the specific device used by the User, this App may require certain permissions to access the User’s data on that device, as described below. Such permissions must be provided by the User before any information can be processed. Once granted, the permission can be revoked by the User at any time.
9. Disclosure of personal data
Your personal data may be made accessible for the purposes indicated in Section 0.4:
a) to the employees and collaborators of Rosifer Srl, who are specifically authorised to data processing and suitably trained;
b) to third-party companies or other entities that carry out certain activities in outsourcing on behalf of Rosifer Srl, in their capacity as Data Processors.
10. Dissemination of personal data
Videos uploaded within OzApp are visible to all users registered on the social network.
A selection of videos uploaded on the App by the users may also be visible on the OzApp website, as described in the Social Rules (www.ozapp.it).
11. Transfer of personal data
Your personal data will be processed within the European Union and stored on servers located within the European Union. The same data may also be processed in countries outside the European Union, provided that an adequate level of protection is ensured, as recognised by an adequacy decision of the European Commission.
12. Rights of data subjects
Pursuant to Articles 15 – 22 of the GDPR, in relation to the personal data communicated, you have the right to:
a) request confirmation of the existence or otherwise of their personal data;
(b) obtain information on the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be disclosed and, where possible, the period of retention;
c) obtain rectification and deletion of data.
Please note that if you delete your account, we delete items you have posted, such as photos, videos and status updates, and you will no longer be able to retrieve this information. Information that other people have shared about you is not part of your account and will not be deleted.
(d) obtain restriction of processing;
(e) obtain portability of data, i.e. receive them from a data controller in a structured, commonly used and machine-readable format and transmit them to another data controller without hindrance;
f) object to the processing at any time;
If you object to the processing of your personal data, the Controller will refrain from further processing of your personal data, unless the Controller proves the existence of compelling legitimate grounds to proceed with the processing or for establishing, exercising or defending a legal right in Court
(g) object to automated decision-making process concerning natural persons, including profiling;
(h) revoke consent at any time without affecting the lawfulness of the processing based on the consent given before revocation;
(i) file a complaint to a Supervisory Authority.
To exercise your rights under points a) to g), you can send a communication to the following e-mail address: dpo@ozapp.it.