Skip to main content

Privacy Policy

1. INTRODUCTION

The services, products, apps and, in general, the offers provided by Bizzdesign may involve the collection of personal data. The purpose of this document is to explain the conditions under which personal data are collected and are likely to be processed so that these actions are carried out with the greatest transparency.

It also aims to specify how data subjects may exercise their rights, with the said collection and processing being carried out in compliance with the legislation in force.

2. DEFINITIONS

“personal data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to his or her physical, physiological, genetic, mental, economic, cultural or social identity.

“processing” means any operation or set of operations, whether or not carried out by automated means, applied to personal data or sets of personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or interconnection, restriction, erasure, or destruction.

“file” means any structured set of personal data accessible according to specified criteria, whether centralized, decentralized, or functionally or geographically distributed.

“controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing.

“processor” means the natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.

“consent” of the data subject means any free, specific, informed and unequivocal expression of will by which the data subject accepts, by a statement or by a clear affirmative action, that personal data concerning him or her may be processed.

3. WHO IS CONCERNED BY THIS POLICY?

This Policy is applicable to all companies of the Bizzdesign Group.

4. HOW DO WE COLLECT YOUR PERSONAL DATA?

We collect personal data either directly or indirectly.

We may collect personal data directly when the data subject provides it to us (e.g., by filling in a form on a website), or when we ask for it on any occasion such as during the performance of a contract, a contact form on the Internet, a trade show, a survey, participation in a discussion forum, participation in a contest, or interaction on professional social networks such as LinkedIn.

We may also collect personal data indirectly through a third party. This may occur, for example, during the performance of a contract in which an employer is a party when the data subject is a user of an app, a product and/or services, or when the data subject is our contact in charge of billing, placing an order, paying a sum of money, or similar activities.

On these occasions, we may collect your first name, last name, business contact details (telephone, title, physical and email address), and IP address.

If a data subject provides us with a third party’s personal data, it is his/her responsibility to ensure compliance with applicable regulations on the protection of personal data and, in particular, the obligation to obtain the prior consent of the data subject whose personal data is provided to us, or to have another valid legal basis. Furthermore, he/she must inform the data subjects how we collect, use, disclose and store their personal data and invite them to read our Privacy Policy.

5. HOW DO WE USE PERSONAL DATA?

Subject to applicable laws, we collect and process your data for the following purposes:

  • to provide any information and services requested and the applications or services ordered;
  • to perform our contractual obligations towards the data subject or his/her employer;
  • to manage our business relationship (for example, customer services and support activities);
  • to detect, prevent or investigate criminal, illegal or prohibited activities, or protect our rights (including liaising with regulatory and law enforcement agencies for these purposes);
  • to ask for participation in a customer survey (for example, feedback on use of our apps, products and services);
  • to provide advertisements, marketing messages (which may include banner message windows) or targeted information that may be useful, based on how our apps, products and services are used;
  • to collect information about how users use the features of our websites, applications and services.

6. TO WHOM MAY WE TRANSFER PERSONAL DATA?

We may transfer personal data to:

  • any company of the Bizzdesign Group and any subcontractor for the proper performance of our contractual obligations. This is particularly the case for our maintenance and support activities (Bizzdesign Group) and Microsoft Ireland Operations Ltd, One Microsoft Place, South County Industrial Park, Leopardstown, Dublin 18, D18 P521 (hosting of our SaaS services);
  • third parties that we use to carry out payment transactions, such as clearing companies, clearing systems, financial institutions and transaction beneficiaries;
  • third parties for marketing purposes;
  • government agencies, regulators and any other third parties if the transfer is necessary to meet our legal and regulatory obligations;
  • police authorities, so that they can detect or prevent crimes or prosecute offenders;
  • any third party, in connection with legal proceedings, existing or imminent, provided that we are legally entitled to do so (e.g., in response to a court order);
  • our own auditors and consultants, as well as those of the Bizzdesign Group, in order to assume our audit responsibilities;
  • any other company to which we may assign the contract; and
  • public bodies that have to be informed according to applicable laws.

7. WHAT ARE DATA SUBJECT RIGHTS?

7.1 Transparency and modalities

We take appropriate measures to provide the data subject with any information relating to the conditions of collecting, processing, modifying and deleting his/her personal data. The information shall be provided in writing or by other means including, where appropriate, electronically. The information may be provided orally, upon request, provided that the data subject’s identity can be demonstrated by other means.

We will provide the data subject with information on the measures taken following a request, as soon as possible and in any event within one month of receipt of the request. If necessary, this period may be extended by two months, taking into account the complexity and number of requests. We will inform the data subject of that extension and of the reasons for the delay within one month of receipt of the request. Whenever the data subject submits his/her request electronically, the information shall be provided electronically, if possible, unless the data subject requests otherwise.

This information is provided free of charge. However, whenever the requests are manifestly unfounded or excessive, in particular because of their repetitive nature, we may: (a) require the payment of a reasonable fee which takes into account the administrative costs incurred in providing the information, organizing the communications or implementing the requested measures; or (b) refuse to comply with such requests.

Whenever we have reasonable doubts as to the identity of the requester, we may ask for the provision of additional information necessary to confirm the requester’s identity.

7.2 Information and access to personal data

The data subject may send his/her requests directly to Bizzdesign and/or to the Data Protection Officer of the Bizzdesign Group at the following addresses: (i) privacy@bizzdesign.com.

Any data subject request will be answered within thirty (30) days of reception, except if the nature and complexity of the request requires a longer delay. In any case, an answer will be provided no later than sixty (60) days after receipt of the data subject request.

Upon expiration of the above-mentioned period, the data subject has the right to lodge a complaint with a Supervisory Authority in the form and manner provided by the legislation in force.

The recipients of the personal data are our employees who intervene in the context of the purpose of the collection of this data and our subcontractors, if necessary. It may also be any entity for commercial prospecting purposes.

Any transfer of personal data outside the territory of its collection is carried out in compliance with the legislation in force. Thus, in the context of the execution of contracts with our customers located in the EU, the personal data collected may be transferred outside the EU, said transfer being governed by the Standard Contractual Clauses of the European Commission.

Personal data are kept for the period of time necessary for their processing, plus the duration required by applicable law.

Data subjects may at any time request access to, rectification or erasure of their personal data, or restriction of processing. Data subjects also have the right to object to the processing, the right to data portability, as well as the right to lodge a complaint with the supervisory authority in their country.

7.3 Right to rectification

The data subject is granted the right to obtain from us, as soon as possible, the rectification of inaccurate data. Taking into account the purposes of the processing, the data subject is granted the right to request the completion of incomplete personal data, by providing a supplementary statement.

7.4 Right to erasure (“right to be forgotten”)

The data subject is granted the right to obtain the erasure, as soon as possible, of his/her personal data and we will erase such personal data as soon as possible, where one of the following grounds applies:

  • the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • the data subject has withdrawn the consent on which the processing is based;
  • the data subject has objected to the processing and there is no compelling legitimate ground for the processing;
  • the personal data have been unlawfully processed;
  • the personal data must be erased in order to comply with a legal obligation.

The above shall not apply to the extent that such processing is necessary: (a) for the exercise of the right to freedom of expression and information; (b) to comply with a legal obligation which requires processing under Union law or the law of the Member State to which we are subject, or to carry out a task in the public interest or in the exercise of official authority vested in Bizzdesign; (c) for the establishment, exercise or defense of legal claims.

7.5 Right to restriction of processing

The data subject is granted the right to obtain from the controller the restriction of processing where one of the following applies:

  • the accuracy of the personal data is contested by the data subject, for a period enabling us to verify the accuracy of the personal data;
  • the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;
  • we no longer need the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defense of legal claims.

If the data subject has obtained the restriction of processing pursuant to the above, we will inform him/her before the restriction of processing is lifted.

7.6 Obligation to notify

We will notify each recipient to whom the personal data have been communicated of any rectification or erasure of personal data or any restriction of processing carried out, unless such communication proves impossible or requires disproportionate effort. We will provide the data subject with information on those recipients if he/she so requests.

7.7 Right to object

Whenever personal data are processed for direct marketing purposes, the data subject has the right to object at any time to processing for such purposes. Where the data subject objects to processing for direct marketing purposes, the personal data shall no longer be processed for those purposes. This right shall be explicitly brought to the data subject’s attention at the latest at the time of the first contact.

7.8 Security and retention of personal data

We ensure the security of your data by taking the necessary technical and organizational measures to prevent unlawful or unauthorized processing or accidental loss, destruction and/or damage. We strive to protect your personal data as best we can. However, we cannot guarantee the security of your data transmitted to our websites, applications or services, or to other websites, applications and services via an Internet connection or any other connection. If we have assigned a password to allow access to certain areas of our websites, applications or services, users shall keep it confidential; we will not share this password with anyone.

If an account has been or seems to be hacked, please contact us at: privacy@bizzdesign.com

8. COOKIES, STATISTICS AND TRAFFIC DATA

8.1 What is a cookie?

A cookie is a small file, usually composed of letters and numbers, downloaded when a user accesses a website. The cookies are then sent back to the originating website on each subsequent visit. Cookies are useful because they allow a website to recognize a user's device (computer, phone, tablet, etc.).

The use of cookies and similar technologies is common and, in particular, cookies are important for the provision of many online services. The use of these technologies is therefore not prohibited by law, but it requires that users be informed of the existence of cookies and that they have the choice to accept them or not.

8.2 Types of cookies

8.2.1 Session cookies

Cookies can expire at the end of a browsing session (between the moment the user opens the browser window and the moment it is closed) or be stored longer. Session cookies allow websites to link a user’s actions during a browsing session (e.g., remembering what a user put in their shopping cart). They can also be used for security purposes (e.g., online banking) or to facilitate the use of email. Session cookies expire after the browsing session ends.

The use of session cookies (which are not stored persistently on the user’s computer and are automatically deleted when the browser is closed) is strictly limited to the transmission of data (composed of random numbers created by the server) identifying the specific session and necessary to allow safe and efficient navigation on the site.

8.2.2 Persistent cookies

Persistent cookies are stored on a user’s device between browsing sessions and allow the user’s preferences or actions to be remembered on a site (or in some cases across different sites). They can be used, for example, to remember user preferences and choices.

8.2.3 First and third-party cookies

Whether a cookie is a “first” or “third” party refers to the website or domain that places the cookie. First-party cookies are placed by the website visited by the user — i.e., cookies placed by the bizzdesign.com website. Third-party cookies are placed by a domain other than the one visited by the user — e.g., cookies placed by external services integrated on bizzdesign.com.

8.3 Consent for cookies

Some cookies are strictly necessary for the proper functioning of the Internet and do not require the user’s consent (e.g., those that ensure content loads quickly and efficiently or provide security).

Other cookies are important but not strictly essential and therefore require the user’s consent. Consent can be managed via browser settings, which allow users to refuse or accept cookies, warn of the presence of cookies, and decide whether or not to accept them. It is also possible to automatically reject all cookies by activating this option in the browser.

Each browser provides instructions on how to manage cookie settings.

8.4 Withdrawal of consent

Your consent to the use of cookies can be withdrawn at any time, although withdrawing consent may impact website functionality.

8.5 Cookies we use

The collection of cookies helps us understand how our website is used and user behavior, and indicates which parts of our website have been visited. It also allows us to tailor messages and display advertisements based on a person’s interests on our website and other platforms. Cookie data facilitates and measures the effectiveness of advertisements and searches on the web. Cookies are stored for up to 13 months, unless the user deletes them earlier.

More specifically, this website uses these categories of cookies:

  • Technical: necessary for site navigation and the use of certain functions.
  • Analytical: for statistical analysis of site access, for marketing and commercial purposes.
  • Pardot: tracking cookies attached to forms on our websites and tracking links. The data collected includes information about visits to and use of all Bizzdesign websites, as well as information provided to register for our events and/or subscribe to our communications and resources. Personal data submitted on forms (such as name, email, company, etc.) may be used to improve browsing experience and send information by email. Storage: 390 days.
  • Google Analytics: uses cookies to collect standard internet log information and visitor behavior in an anonymous form. Information is processed to compile statistical reports on activities on the Bizzdesign website. These cookies help us optimize navigation and improve content and do not allow personal identification. Storage: 50 months.

Last Update: September 12, 2025