Privacy Policy
Welcome to the BioSud website, your premier provider of medical products and systems. We are committed to delivering advanced solutions while prioritizing the safety and privacy of our customers. Through this Privacy Policy, we aim to inform you about how your personal information is managed, in compliance with current regulations and respecting your rights.
We collect personal data such as your first name, last name, email, and professional information when you interact with our website or use our services. This data helps us personalize our offerings, efficiently manage your orders, and communicate news and updates about our products.
BioSud uses state-of-the-art security systems and follows detailed organizational procedures to protect your personal data from unauthorized access or improper processing, preventing loss or damage. Every piece of information is handled with utmost care and confidentiality.
We understand the importance of your privacy. Therefore, we offer clear options to manage your rights over personal data, including the right to view, modify, delete, or restrict their use.
This Privacy Policy covers all information we collect through our website and is periodically updated to reflect any changes in our operations or relevant regulations. We encourage you to regularly consult this page to stay informed about how we protect your information.
In conclusion, BioSud is dedicated to ensuring that your experience is safe and compliant with the highest standards, treating your personal data with the utmost respect and integrity. Our commitment is to offer you not only quality products but also complete security in interactions and transactions.
---
**1. Information about the Data Controller**
BIO SUD MEDICAL SYSTEMS s.r.l, with VAT number 03225090723, manages the processing of personal data collected through its website. The operational headquarters is located at Via dei Fabbri, 23/25 zona art. ASI70026 - Modugno (BA), Italy.
For all matters related to the management of personal data, including access, modification, or deletion of data, you can contact the administration at the following email address: [info@biosud.it](mailto:info@biosud.it) or call +39 080 535 5669.
Our website, accessible at [https://biosud.it](https://biosud.it), is committed to protecting users' privacy and processing personal data in full compliance with current regulations.
---
**2. Personal Data Collected**
In the context of our website, we collect a range of personal data with the primary aim of providing and improving the services offered to our users. Among the data we collect are information such as first names, last names, email addresses, IP addresses, and browsing history data. This information allows us not only to personalize each user's experience but also to effectively manage contact requests and send targeted marketing communications via email.
Personal data can be provided directly by users or, in the case of Usage Data, collected automatically while the user navigates our site. In addition to the aforementioned data, we also collect information through the use of cookies and other tracking tools, always in compliance with current regulations and the purposes outlined in this policy and our Cookie Policy, if available.
**Methods and Place of Data Processing**
The personal data collected are processed using IT and/or telematic tools, organized according to methods strictly related to the indicated purposes. Data processing takes place at the operational headquarters of the controller and any other place where the parties involved in the processing are located.
Processing may also involve third parties, such as technical service providers, postal couriers, hosting providers, and communication agencies, who may be appointed, if necessary, as Data Processors by the Controller. An updated list of these processors can always be requested from the Data Controller.
**Legal Basis of Processing**
The processing of personal data occurs only if there is an adequate legal basis: it may be the consent provided by the user for one or more specific purposes; the necessity to execute a contract of which the user is a party; the necessity to comply with a legal obligation to which the controller is subject; or other needs related to tasks of public interest or the exercise of public powers. Users can always request the data controller to clarify the specific legal basis of each processing.
**Data Transfer**
Personal data may be transferred to countries outside the European Union. In such cases, the controller commits to ensuring that the transfer complies with applicable legal provisions, guaranteeing an adequate level of data protection.
**Retention Period**
The collected data are retained for the time strictly necessary to achieve the purposes for which they were collected. Different retention periods are applied based on the nature of the data and the purpose of processing. At the end of the retention period, personal data are deleted, and consequently, the rights of access, deletion, rectification, and data portability can no longer be exercised.
We invite users who have doubts about which data are mandatory to contact the controller for further clarification.
---
**3. Purposes of Data Processing**
The processing of personal data collected through our website aims to meet various needs and objectives, both operational and strategic. Below are the main purposes for which personal data are used:
- **Direct Communication**: We use personal data to send updates and newsletters to our registered users. This keeps users informed about news and available offers.
- **Support**: Data are essential to respond to inquiries and manage support requests sent through our site, ensuring effective assistance to users.
- **Marketing**: We conduct marketing activities to promote new products or services. This includes targeted campaigns based on user preferences and behavior.
The user's consent, collected at the time of registration or data provision, represents the legal basis that legitimizes such operations. In addition to these explicit purposes, data may be used for:
- **Legal Compliance**: Responding to legal obligations or enforcement actions to which the controller is subject.
- **Protection of Rights**: Safeguarding the rights and interests of the data controller, users, or third parties, including the prevention of malicious or fraudulent activities.
- **Spam Protection**: Implementing measures to prevent the sending of spam messages to our users.
- **Interaction with Social Networks and External Platforms**: Facilitating user interaction with social networks or other external platforms directly from our site.
- **Statistical Analysis**: Collecting statistical data on site usage to continuously improve our services.
- **Remarketing and Behavioral Targeting**: Customizing advertising based on the user's previous interactions with the site, enhancing the effectiveness of our advertising campaigns.
- **Display of Content from External Platforms**: Integrating content such as videos, images, or other multimedia resources from external platforms.
For a more detailed understanding of how each of these purposes affects the processing of personal data and to know the specific services through which the data are processed, users can consult the section "Details on the Processing of Personal Data" in our documentation. This section explains the collection methods and technical specifics of the services used for each listed purpose.
---
**4. Sharing Data with Third Parties**
We share personal data with third-party providers who assist us in managing email marketing activities. These providers have been carefully selected and are contractually obligated to protect the confidentiality and security of the data, ensuring that your information is managed in compliance with data protection laws.
**Defense in Court**
The personal data of users may be used by the Controller in legal contexts, both during the preparatory stages of potential litigation and as a defense against misuse of the website or related services. In such circumstances, the data may be used to exercise or defend a legal right.
**Requests from Public Authorities**
Users are informed that, in some cases, we may be obliged to disclose personal data upon request from public authorities.
**Specific Information Notices**
Upon the user's request, this website can provide further and detailed information regarding specific services or the collection and processing of personal data through contextual notices.
**System Logs and Maintenance**
For operational and maintenance needs, our website and the third-party services used may collect system logs. These files record interactions and may contain personal data, such as the user's IP address.
**Information Not Contained in This Policy**
For any further information regarding the processing of personal data, users can contact the Data Controller at any time using the contact details provided.
**Response to "Do Not Track" Requests**
This website does not support "Do Not Track" requests. To verify support for this functionality by third-party services used, we invite users to consult their respective privacy policies.
These provisions ensure that the processing of personal data respects users' privacy, with maximum transparency and in compliance with current regulations.
---
**5. Data Security**
We adopt advanced security measures to protect personal data against unauthorized access, loss, or destruction. The measures implemented include data encryption, the use of robust firewalls, and advanced security protocols for online communications, thus ensuring the security and confidentiality of users' information.
**Data Management on Wix**
We use Wix.com to host our online platform that supports the sale of our products and services. The information you enter on our site or provide to us is managed and stored through the data storage, databases, and applications of Wix.com. Your personal data are stored on secure servers managed by Wix.com, protected with advanced security measures like firewalls.
**Data Security and PCI-DSS Compliance**
The Wix.com platform follows the PCI-DSS security standards, managed by the PCI Security Standards Council. This consortium includes companies like Visa, MasterCard, American Express, and Discover. The PCI-DSS standards are designed to ensure the security of credit card information managed by our site and its service providers, guaranteeing that all financial transactions are processed in a highly secure environment.
**Data Processing and Storage**
Your privacy is our top priority. Wix.com does not use our customers' personal data for secondary purposes without explicit consent. Data are stored only for the time necessary to achieve the purposes for which they were collected, in line with our internal policies and legal obligations.
---
**6. Rights of Data Subjects**
Users can exercise certain rights regarding the processing of their personal data, which include:
- **Withdrawal of Consent**: Users can withdraw consent to the processing of their personal data at any time.
- **Objection to Processing**: Users have the right to object to the processing of their data for reasons related to their particular situation. If data are processed for direct marketing, they can object without providing reasons.
- **Access to Data**: Users can access their data and obtain details about the processing.
- **Rectification**: Users can verify and correct their data.
- **Restriction of Processing**: Users can request the restriction of processing of their data under certain conditions.
- **Deletion**: Users can request the deletion of their personal data.
- **Data Portability**: Users have the right to receive their data in a structured format and transfer them to another controller.
- **Complaint**: Users can lodge complaints with supervisory authorities.
**How to Exercise Rights**
To exercise their rights, users can send a request to the Controller's contact details provided in the document. Requests are handled free of charge and as soon as possible, generally within one month.
---
**7. Use of Cookies**
Our website, hosted on the Wix.com platform, uses cookies to enhance and personalize the browsing experience of our visitors and customers. Below, we explain in detail how cookies are used and how you can manage your preferences.
**Purposes of Using Cookies**
Cookies are small text files stored in the visitor's browser and are essential for the effective functioning of the site. The purposes for which we use cookies include:
- **Optimizing User Experience**: We store language and session preferences to facilitate recurring navigation on the site.
- **Identification of Registered Users**: To recognize registered members when they access the site.
- **Performance Analysis**: We measure the operability and effectiveness of the Wix platform, ensuring security and protection.
- **Cookie Banner Management**: We monitor sessions and manage cookie settings to optimize support and functionalities offered by the site.
**Types of Cookies Used**
We use various types of cookies, primarily essential for the site's functioning:
- **XSRF-TOKEN**: Used for security during the session.
- **hs**: Used for security reasons, persists for the duration of the session.
- **SVSession**: Supports login functionalities and persists for 12 months.
- **SSR-caching**: Indicates from which system the site was rendered, lasts 1 minute.
- **WixLanguage**: Saves the user's language preference on multilingual sites for 12 months.
**Cookie Management**
You can manage your cookies through browser settings, choosing to accept or reject cookies. For more detailed management, you can use built-in browser features, such as viewing cookies in incognito mode on Google Chrome.
**Information to Visitors**
We inform our users about the use of cookies through an accessible banner on our site, providing details about the cookies used and how to manage preferences.
**Important**
Our site may include third-party cookies due to the use of specific Wix apps or external integrations like Google Analytics or Facebook Ads. These additional cookies are not listed in detail here and can be managed following the instructions provided in the dedicated section.
**Tracking Tools**
These tools, like cookies, are used for various purposes that may require the user's consent. Such consent, if given, can be revoked at any time. We use both first-party Tracking Tools (managed directly by us) and third-party tools (provided by external entities).
**Duration and Expiry of Cookies**
The duration of cookies varies; some expire at the end of the browsing session, while others may have a longer expiry, detailed in the privacy policies of third-party providers.
**Management of Preferences and Withdrawal of Consent**
Preferences related to Tracking Tools can be managed directly from device settings or through specific functionalities offered by browsers. You can also consult initiatives like YourOnlineChoices or the Digital Advertising Alliance to manage advertising tracking preferences.
By using our site, you agree to understand and accept how we use cookies and other Tracking Tools to enhance your experience.
---
**8. Changes to the Privacy Policy**
This Privacy Policy may be updated periodically to reflect changes in our privacy practices or legal requirements. It is important for users to regularly review this page to stay informed about the latest updates regarding the management of personal data.
**Right to Modify**
The Data Controller reserves the right to make changes to this privacy policy at any time. Changes will be notified to users through this page and, if possible, through other areas of this website. Additionally, where technically and legally feasible, the Controller will attempt to send a notification to users via the contacts available.
**Regular Consultation**
We recommend consulting this page frequently to stay updated on our policies. You can check the date of the last modification indicated at the bottom of the page.
**Consent for Substantial Changes**
Should the changes made to this privacy policy affect data processing for which the legal basis is consent, the Controller will commit to obtaining the user's consent again, if necessary.
**Last Modification**
This Privacy Policy was last updated on 05/05/2024.
It is essential for users to stay informed about the site's privacy practices, as these influence the ways in which their personal information is collected, used, and protected.