Privacy Policy
 

European data protection rules

General Data Protection Regulation (GDPR)

 

It covers every Sarra Systems Ltd websites, and all of the Apps and services developed by Sarra Systems Ltd.

Sarra Systems Ltd has never sold your information to someone else for advertising, or showing you other companies ads. This has been for 30 years, and we remain committed to it.

We provide the same protection to all users and customers, without distinction on their location or citizenship.

This information does not concern other sites, pages or online services of resources external to the domains sarrasystems.com or sarrasys.app that can be reached via hypertext links that may be published on the Sarra Systems Limited pages.

 

1) DATA PROCESSING HOLDER
 

The Data Controller, for the European users pursuant to articles 4 and 24 of EU Reg. 2016/679 (GDPR), is Sarra Systems Limited, Regency House, 33 Wood Street, Barnet EN5 4BE - Greater London UK Id Number: 8335255.

 

2) PERSONAL DATA SUBJECT TO PROCESSING:


- Navigation data:

The computer systems and software procedures set up for the correct functioning of the Site acquire, during their normal operation, some personal data whose transmission is implicit in the navigation of the websites. This category of data includes the IP addresses or domain names of the computers and terminals used by users , the addresses in URI/URL (Uniform Resource Identifier/Locator) notation of the requested resources, the time of the request , the method used in submit the request to the server, the size of the file obtained in response , the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment.

- Data provided voluntarily:

We only collect data that is essential to the operation of our services and your security. Informations is actively provided when you register an account, request customer support, or make purchases. We store your name and contact information, but not credit card numbers.

- Cookies:

For more information on the cookies used by this website, see the cookies policy at the following link "Cookie Policy"

 

3) PURPOSE AND LEGAL BASIS OF THE TREATMENT. DATA CONSERVATION PERIOD

The collected data will be processed for the following purposes:

a) Website browsing:

allow you to browse our website and other digital platforms. The legal basis of the treatment is the art. 6 par. 1 lit. f) of the GDPR: legitimate interest. Data retention period: up to the duration of the browsing session. For navigation, see the "Cookie Policy".

b) Data collection via contact form:

allow you to obtain information about our services by requesting the "Contact" page. The legal basis of the treatment is the art. 6 par. 1 lit. b) of the GDPR: execution of pre-contractual measures also adopted at the request of the interested party. Data retention period: 1 year for contacts

c) Nature of the Provision:

the provision of data is optional or necessary depending on the specific purpose for which the data is processed. Failure to provide the data marked with the symbol * or wording (required) will make it impossible to obtain what has been requested or to use the services of the data controller.

 

4) PROCESSING METHODS
 

The processing of data, will be carried out in automated and manual form, with logic strictly related to the purposes indicated and in any case in such a way as to ensure the security and confidentiality of the data themselves, by persons specially authorized to do so. Such data will be kept, as specified in the point above, for the time strictly necessary to provide you with the requested services and will in any case be eliminated following your request, without prejudice to further storage obligations provided for by law.

 

5) POSSIBLE RECIPIENTS AND CATEGORIES OF RECIPIENTS OF PERSONAL DATA
 

Sarra Systems Ltd has never sold your information to someone else for advertising, or showing you other companies ads. This has been for 30 years, and we remain committed to it.

Our company is hosted on the Rackspace data centres but we use own servers, platform and database. We store your data on secure servers behind a firewall.

Personal data may be communicated to third parties who carry out activities necessary for the provision of the services offered by the Apps who will process the data as data processors (Article 28 of the GDPR) and /or as natural persons acting under the authority of the Data Controller and the Manager (Article 29 of the GDPR).

 

6) TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES
 

Data may be freely transferred outside the national territory to countries located in the European Union but could also be transferred outside the European Union and in particular to the United Kingdom and United States. With reference to transfers outside the territory of the European Union to countries not considered adequate by the European Commission, the Company adopts suitable and appropriate security measures to protect the Data. Consequently, any transfer of Data to countries located outside of the European Union will take place, in any case, in compliance with the appropriate and timely guarantees for the purposes of the transfer itself, such as the standard contractual data protection clauses, pursuant to the applicable legislation and in particular articles 45 and 46 of the GDPR.

 

7) RIGHTS OF THE INTERESTED PARTY
 

You can assert your rights as expressed by the articles 15, 16, 17, 18, 19, 20, 21 of EU Regulation 2016/679 by contacting the Data Controller. In particular, you have the right, at any time, to request: access to your personal data; the rectification or cancellation of the same or the limitation of the treatment that concern him; the opposition to the treatment; the portability of data in the terms of art. 20 quoted. Furthermore, you have the right to object, at any time, to the processing of your data based on consent and/or legitimate interest. Without prejudice to any other administrative or judicial appeal, the interested party who believes that the processing that concerns him violates the GDPR, has the right to lodge a complaint with the Guarantor for the protection of personal data according to the methods described on the website www.garanteprivacy.it (art. 77 cit.). To exercise the above rights, the interested party may contact the Data Controller at the addresses in this information notice.

 

8) UPDATES
 

This privacy policy may undergo changes and/or additions as a result of any subsequent regulatory changes and/or additions, to the updating or provision of new services or to technological innovations.