Connected-Stories - The NEXT generation of Creative Management Platforms Powered by AI

WHO WE ARE

HyperTV S.r.l. is a tech advertisement provider whose innovative platform is described in the connected-stories website.

HyperTV S.r.l. considers data protection and privacy as part of its corporate objectives, responsibilities and values.

For more information about how the Connected Stories Website works please read the subsections ‘ Buy-side’, ‘ Sell-side’, ‘ Platform’, ‘ Showcase’.

INTRODUCTION

This Privacy Policy applies to the processing of personal data carried out by HyperTV S.r.l. ("we", "our", "us"), as Data Controller according to the Regulation (EU) 2016/679, General Data Protection Regulation ("GDPR") through the Website https://www.connected-stories.com ("Website").

We provide this Privacy Policy pursuant to Article 13 GDPR to anyone who browses the Website ("user/s" or "you") to explain how we collect and process the users’ personal data ("data subjects") through the Website, in compliance with the GDPR and the Italian personal data protection legislation. Please consider that if the user of a device uses several browsers, this Privacy Policy and the related privacy setting configuration apply to all of them and must be set up in respect of each browser.

Below, the user will find the information about the types of personal data we collect, the purposes and related grounds of the processing, the means of processing, the retention of personal data, the security measures adopted to protect them, the persons with which we share such personal data and the rights that the user can exercise to protect their personal data.

As we also collect and process the users’ personal data by means of Cookies and other tracking tools on our Website, please refer to our Cookies Policy and/or send an email to privacy@hypertvx.com.

LINK TO EXTERNAL SITES

This Privacy Policy does not govern nor applies to third-party websites nor to third-party links, contents, cookies, and other tracking tools (collectively “third party resources”) which may be referred to within our website and/or may be accessible through it (e.g. Insertion Order at the bottom of the website).

In particular, once you have used these links to leave our Website, you should note that we do not have any control over those third-party resources. Therefore, we cannot be responsible for the security and protection of your personal data when you access and/or interact with such third-party resources.

TYPES OF PERSONAL DATA COLLECTED

Personal data provided by the user voluntarily

We may collect and process your name and surname, e-mail, company name and role, country, postal code, city, message and requests for the purposes of the ‘talk to us form’, displayed on homepage and in the upper right corner of our Website. We may also collect the users’ personal data, for instance the users’ email, when we receive messages at the address info@hypertv.com and/or the ‘Insertion Order Form’ at the bottom of the Website or for downloading our Sales Deck brochure.

Personal data inferred by us

We may collect and process through Cookies the information about the users’ interaction with the Website (IP address, device type and os) as well as through the requests and messages the users send us.

Personal data about your location

We may process information about your location, by means of the IP address of your device, received from you and/or through the Cookies we use.

PURPOSES AND GROUNDS OF PROCESSING

Provide our services, including the making available of our Website, and reply to the user’s requests and messages

The processing is necessary for the performance of a contract to which the user is party or in order to take steps at the request of the user prior to entering into a contract, pursuant to Article 6(1)(b) GDPR.

The provision of personal data is mandatory and failure to provide it WILL hinder or prevent the provision of our services and the reply to the users’ requests and/or messages.

Customize our services based on the users’ preferences, habits, interaction with the Website.

The processing is based on the user's consent, pursuant to Article 6(1)(a) GDPR, expressed through the Cookies banner and the COOKIES SETTINGS section on the Website.

The provision of personal data is voluntary and failure to provide it DOES NOT hinder or prevent the navigation and / or use of our Website.

Analyze and measure the Website’s efficacy based on the user’ interest in and interaction with it

The processing is based on the user's consent, pursuant to Article 6(1)(a) GDPR, expressed through the Cookies banner and the COOKIES SETTINGS section on our Website.

The provision of personal data is voluntary and failure to provide it DOES NOT hinder or prevent the navigation and/or use of our Website.

Fulfil legal, regulatory or fiscal obligations, etc., to which we are subject.

The processing is necessary, pursuant to Article 6(1)(c) GDPR, to fulfil a legal obligation to which we are subject.

The provision of personal data is mandatory and failure to provide it may hinder or prevent the navigation and/or use of the Website.

Detect anomalies on our Website and our services.

The processing is necessary for the achievement of our legitimate interest pursuant to Article 6(1)(f) GDPR, consisting in the need to ensure continuity of navigation on the web page and the provision of our services.

The provision of personal data is voluntary but failure to provide it may hinder or prevent the navigation and/or use of the Website.

Protect our rights and interests and those of our users

The processing of data, also through technical and necessary cookies, is necessary for the achievement of our legitimate interest pursuant to Article 6(1)(f) GDPR, consisting in the need to detect, prevent and remedy fraudulent, unlawful conducts or which may jeopardize security of our services, our Website and users.

The provision of personal data is voluntary but failure to provide it may hinder or prevent the navigation and/or use of Website.

MEANS OF PROCESSING AND DATA SECURITY

We may process your personal data with automated or non-automated means, according to organizational measures and logic strictly related to the purposes indicated in this Privacy Policy and in compliance with the GDPR and the Italian legislation on the protection of personal data.

The users’ personal data is not subject to automated individual decision-making processes that produce legal effects on the users or that may significantly affect them.

We have adopted and implemented appropriate security practices, using hardware and software provided by best in class manufacturers. All our solutions are installed on Tier 3 or Tier 4 data centers according to the international data center classification.

All the data stored at rest are encrypted by default using one or more encryption mechanisms (by AES256 or AES128 encryption).

Intrusion detection system provides cloud-native network threat detection such as malware, spyware, command-and-control attacks

High-quality network-based threat data are generated daily for threat investigation and correlation.

DATA RETENTION

The personal data collected and processed for the purposes indicated in this Privacy Policy are kept for the time strictly necessary to achieve such purposes – e.g. until necessary to address the users’ requests and messages, analyze and improve our Website and services through the users’ data – or until the user revokes his/her consent, where provided as the legal basis for the processing of the related personal data, or until the exercise of the right of opposition by the same user.

As regards the retention of your personal data through the use of Cookies, please refer to our Cookies Policy while for general information about the data retention periods please contact us at the e-mail address privacy@hypertvx.com.

For the processing of personal data in the fulfilment of legal obligations to which we may be subject, the retention periods of such data may be established by legal provisions. In some circumstances, we may keep personal data as long as necessary for the protection of our interests and rights as well as those of our users before the competent authorities within the terms prescribed by Italian law on ordinary prescription.

Upon expiry of the retention periods, the users' personal data are cancelled or permanently anonymized.

COMMUNICATION OF PERSONAL DATA

Your personal data will be processed by our personnel duly authorized to the processing of personal data, on a need-to-know basis according to their respective work duties. Furthermore, we may communicate your personal data to our technological and organizational service providers in relation to the fulfilment of the purposes referred to in this Privacy Policy(e.g. cloud service providers, etc.), which process your personal data on the basis of and in accordance with a data processing agreement (DPA) as our data processors.

We can also communicate your personal data to third parties acting as autonomous data controllers, using your personal data for their own purposes, such as:

Consultants, lawyers, auditors, etc., providing their professional services in connection with our business activities, to the extent that the latter may involve the processing of your personal data;
Authorities or public bodies and any other legitimate recipient who processes personal data for institutional purposes;
Companies, partnerships, joint-ventures in which we should be involved for the purposes of extraordinary corporate operations of constitution, acquisition, sale, merger, reorganization of companies.

You can request an updated list of recipients of your personal data by contacting us at the e-mail address privacy@hypertvx.com as also indicated at the bottom of this Privacy Statement.

Some of the recipients of your personal data may be located outside the European Economic Area in countries that do not guarantee the same level of data protection as required by the GDPR. In such cases, we may transfer personal data only for the purposes referred to in this Privacy Policy by adopting adequate measures (e.g. adoption of the standard contractual clauses) aimed at guaranteeing a level of protection of personal data equivalent to that provided for by the GDPR together with the supplementary measures that are necessary for such purpose. If you wish to receive a copy of the aforesaid adequate and supplementary measures, please contact us at the e-mail address privacy@hypertvx.com .

YOUR RIGHTS IN RELATION TO THE PROCESSING OF PERSONAL DATA

You can exercise your rights at any time in relation to the processing of personal data, as required by articles. 7, 15-22 of Regulation (EU) 2016/679, General Data Protection Regulation ("GDPR"), by contacting the Data Controller at the e-mail address below, in particular:

Right to withdraw consent: withdraw your consent at any time, if the processing is based on your consent for one or more specific purposes. The withdrawal of consent does not affect the lawfulness of the processing based on consent before the withdrawal.
Right of access: in certain circumstances, you have the right to obtain from the data controller confirmation of the existence or not of personal data concerning you and, in this case, to request access to such personal data. The access information includes, among others, the purposes of the processing, the categories of personal data processed, the recipients or categories of recipients to whom the personal data have been or will be communicated, the sources of the personal data, the duration of storage and the technical security measures adopted to safeguard personal data in case of transfer outside the Single European Area. However, this is not an absolute right and the interests of other people may limit the right of access. You also have the right to request a copy of your personal data. For the additional copies requested, the data controller may charge a reasonable fee, taking into account the administrative costs incurred.
Right of rectification: in certain circumstances, you have the right to obtain the rectification (i.e. correction) of inaccurate personal data concerning you. Depending on the purposes of the processing, you may have the right to obtain the integration of incomplete personal data, also by providing a supplementary statement.
Right to erasure: in certain circumstances, you have the right to obtain the erasure of personal data concerning you. In such cases, the data controller will take steps to delete, or permanently make unintelligible, such personal data.
Right to restriction of processing: in certain circumstances, you have the right to obtain from the data controller the restriction of the processing of your personal data. In this case, the data will be marked and may only be processed by us for certain purposes.
Right to data portability: in certain circumstances, you have the right to receive the personal data concerning you and that you have provided to the Data Controller in a structured format, commonly used and readable by an automatic device, and the right to transmit such data to another entity.
Right to object: in certain circumstances you have, at any time, for reasons related to your particular situation, the right to object to the processing of personal data and you can request that the data controller no longer processes such data. If you have and exercise the right to object, your personal data will no longer be processed unless the data controller demonstrates compelling legitimate grounds for the processing, pursuant to the GDPR.

If personal data are processed for marketing purposes, you always have the right to object to the processing at any time, including to profiling to the extent that it is connected to direct marketing, and your personal data will no longer be processed for these purposes.

Automated processing of personal data: you have the right not be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. The foregoing prohibition does not apply if you have provided your explicit consent to the decision based on the automated processing or this decision is necessary for the conclusion or execution of a contract with the data controller, or if the decision is authorized by the European Union or Italian law.

You can also lodge a complaint before the Italian Supervisory Authority (Garante per la protezione dei dati personali).

For more information on the processing of your personal data by us, please read our Cookie Policy and our Privacy Policy.

CONTACT DETAILS AND DATA CONTROLLER

The Website is managed by HyperTV S.r.l., located in via Panama 86, 00198 Roma, which acts as Data Controller and can be contacted with regard to the present Privacy Policy and any request for assistance in relation to personal data processing at the e-mail address privacy@hypertvx.com. HyperTV S.r.l.’s Data Protection Officer can be contacted at the email address dpo@hypertvx.com.

CHANGES TO THE PRIVACY POLICY

This Privacy Policy may be updated and at each update we will notify users of the changes by posting a banner or a pop-up.