top of page
yellow3 Logo 2024

PRIVACY POLICY
Last updated: Marts 14, 2024

Under Art. 13 of the General Data Protection Regulation no. 2016/679 (hereinafter referred to as "GDPR"), yellow3 Informs the user of the following. 

 

This Privacy Policy describes the procedures that yellow3 Inc. adopts regarding collecting, using, and disclosing your Personal Data when you use the yellow3 website, https://www.yellow3.io (hereinafter referred to as the "Website"). This Privacy Policy also informs the user about the user’s rights and how the law protects the user. 

 

Interpretation and Definitions 

Interpretation 

The words of which the initial letter is capitalized have meanings defined under the following conditions and shall have the same meaning regardless of whether they appear singular or plural. 

 

Definitions 

For the purposes of this Privacy Policy: 

Account means a unique account created for the user to access yellow3 Service or parts of yyellow3 Service. 

 

Company/yellow3 Inc. (referred to as either the “Company” or “yellow3”) refers to yellow3 Inc., which has its registered offices at.

 

Consent of the data subject (referred to as “Consent”) means any freely given, specific, informed, clear, and explicit indication of the data subject’s wishes by which he or she, by a statement or by clear affirmative action, signifies agreement to the Processing of Personal Data relating to them. 

 

Data Controller means the natural or legal person, public authority, service, or other body that, alone or jointly with others, determines the purposes and means of Processing Personal Data. 

yellow3 Inc hello@yellow3.io https://www.yellow3.io

 

A Data Processor is a natural or legal person, public authority, agency, or other body that processes Personal Data on behalf of the Data Controller. Device means any device that can access the Service, such as a computer, a cellphone, or a digital tablet. 

 

Personal Data is any information relating to an identified or identifiable natural person (referred to as “Data subject”); an identifiable natural person can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. 

 

Processing means any operation or set of operations that is performed on Personal Data or sets of Personal Data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. 

 

Services refer to the Website, the Platform, and its Tools. Third-party Social Media Service refers to any website or any social network 

website through which a user can log in or create an account to use the Service. 

 

Usage Data refers to Data collected automatically, either generated by the Service or from the Service infrastructure (for example, the duration of a page visit). 

 

Data Controller 

The Data Controller is yellow3 Inc., hereby represented by its legal representative, with registered offices at 

The updated list of Data Processors, where designated, can be provided at the Data subject's request. 

 

Purpose and Legal Basis for Processing 

yellow3 processes the User's Personal Data for purposes strictly related and necessary to the use of the Site and Services and to ensure the network and data security of the Company's information systems. 

yellow3 

 

In particular, yellow3 processes the User's Personal Data for the following purposes:

  1. Registration on the Site and management of the Account

  2. Management of the purchase of products, related payments, and services related to the use of the Site

  3. Assistance service in case of requests of a technical-commercial nature

  4. Sending of promotional and commercial communications related to products and services similar to those purchased by the user

  5. Sending of the Traent Newsletter containing promotional and commercial communications 

The legal basis of the Processing is identified in the following cases, depending on the various purposes set out above, where the Processing: 

  1. Is necessary for the performance of a contract to which the user is a party or the performance of pre-contractual measures taken upon the user's request - art. 6, par. 1, lett. b) GDPR; 

  2. Is necessary to comply with a legal obligation incumbent on the Data Controller - art. 6, par. 1, lett. c) GDPR; 

  3. Is necessary for the purposes of the legitimate interests pursued by the Data Controller - art. 6, par. 1, lett. f) GDPR; 

  4. Is based on clear and explicit consent (for example, to contact the user by email, telephone calls, SMS, or other equivalent forms of electronic communication, such as a mobile application’s push notifications regarding updates or informative communications related to the functionalities, products or contracted services, including the security updates, when necessary or reasonable for their implementation) - art. 6, par. 1, lett. a) GDPR. 

Types of Data Collected 

1. Personal Data 

While using our Service, the Company may ask the user to provide the Company with certain personally identifiable information that can be used to contact or identify the user. Personally identifiable information may include, but is not limited to: 

  1. Name, surname, and place of birth 

  2. Email address 

  3. Phone number 

  4. Address 

2. Browsing Data 

During their normal operation, the computer systems and software procedures used to operate the Site acquire certain data whose transmission is implicit in Internet communication protocols. 

These data, necessary for using web services, are also processed to (I) obtain statistical information on service use (most visited pages, number of visitors per hour or per day, geographical areas of origin) and (II) check the correct functioning of the services offered. 

Processing Methods 

 

The Processing of Personal Data is carried out using electronic or automated tools, in compliance with the rules of confidentiality and security provided for by the regulations in force. 

Consequences of Non-disclosure of Personal Data 

 

Failure to provide Personal Data relating to the performance of the contract to which the user is a party or to the fulfillment of a legal obligation prevents the completion of the contractual relationship itself. 

 

On the other hand, providing data subject to the user's specific consent is optional for the purpose of receiving promotional and commercial information without this preventing the contractual relationship from being carried out. 

 

Recipients of Personal Data 

User's Personal Data may be communicated to the following categories of subjects: 

  1. companies acquired and/or controlled by yellow3, for contract execution and related administrative purposes; 

  2. employees and collaborators designated by the Data Controller as subjects authorized to process Personal Data; 

  3. entities and/or subjects designated as Data Processors; 

  4. employees and collaborators who provide their services to the Data Processor; 

  5. agents, sub-suppliers, sub-contractors, and those involved in and/or forming part of yellow3's sales channel; 

  6. business partners operating in the electronics sector, with whom the Data Controller collaborates for the development of projects of various kinds; 

  7. suppliers of customer care services about user requests; 

  8. external IT service providers that provide IT maintenance and assistance, IT 

  9. solutions (e.g., cloud services) and software solutions for yellow3. 

  10. freelancers or professional firms appointed to take on the defense of yellow3 in litigation and/or administrative proceedings because of the aforementioned relationships;

  11. natural or legal, persons appointed by yellow3 to perform services related to the management of payment systems in use at the Site, as well as debt collection companies; 

  12. public security authorities, judicial authorities, individuals, entities, or authorities to whom the User's Personal Data must be disclosed under provisions of the law or orders of the authorities. 

Profiling 

To pursue the purposes of the Processing described above, no decision is made based solely on automated Processing that produces legal effects concerning the user or significantly affects the user. 

Transfer of Personal Data 

User’s Personal Data are processed at the Company’s operating offices and in any other places where the parties involved in the Processing are located. 

The Data Controller does not transfer Personal Data to third countries or international organizations. However, it reserves the right to use cloud services; in this case, the service providers will be selected from those who provide adequate guarantees, as governed by Article 46 GDPR. 

In any case, yellow3 will take all steps reasonably necessary to ensure that the user’s Data is treated securely and in accordance with this Privacy Policy, and no transfer of the user’s Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of user’s Data and other personal information. 

 

Retention of User’s Personal Data 

To ensure fair and transparent Processing, Personal Data are retained for a period of time not longer than necessary for the purposes for which they were collected or subsequently processed, in accordance with Article 5(1)(e) GDPR. 

 

Personal Data may be retained for longer periods of time where necessary to comply with statutory and/or legal obligations and to ensure the judicial protection of the Data Controller's rights in compliance with ordinary prescription periods. 

 

Security of User's Personal Data 

The Company agrees to utilize physical and technical safeguards to protect user Data from unauthorized access, disclosure, acquisition, destruction, use, or modification. The Company shall adhere to any applicable law relating to Data security. The Company shall implement an adequate cybersecurity framework based on one of the nationally recognized standards. The Company may further detail its security programs and measures in addition to the adopted standards. 

 

Cookies 

Cookies are small text files the Site sends to the user's terminal, where they are stored and transmitted back to the site on the next visit. This Site uses various types of cookies, some third-party cookies. 

Third-party cookies are set by a website other than the user is visiting. 

 

This Site uses the following cookies: 

  1. necessary cookies that contribute to the Site's usability by enabling its basic functionality, such as page navigation and access to protected areas of the Site. The Site cannot function properly without these cookies; 

  2. analytical cookies that allow us to understand how users interact with the Site by collecting and reporting anonymous information for statistical purposes; 

  3. preference cookies, which allow the Site to store information that influences its behavior or appearance, such as your preferred language or location; 

  4. With your consent, marketing cookies will be used to track your visits to the Site. The purpose is to present relevant and engaging advertisements to the individual user and, therefore, of greater value to third-party publishers and advertisers. 

 

Users' Rights 

The user may exercise the following rights: 

  1. Right of access by the data subject (art. 15 GDPR); 

  2. Right to rectification (art. 16 GDPR); 

  3. Right to erasure (art. 17 GDPR); 

  4. Right to restriction of Processing (art. 18 GDPR); 

  5. Right to data portability (art. 20 GDPR); 

  6. Right to object (art. 21 GDPR); 

  7. Right not to be subject to a decision based solely on automated Processing, including profiling, which produces legal effects concerning them or significantly affects them similarly (art. 22 GDPR). 

  8. Right to complain to the International Data Protection Authority if the user believes that the Processing of Personal Data violates the provisions of the legislation in force (art. 77 GDPR) or to take appropriate legal action under Art. 79 GDPR. 

The user may exercise the rights listed above by writing to hello@yellow3.io

 

Links to Other Websites 

Our Service may contain links to other websites the Company does not operate. If a user clicks on a third-party link, the user will be directed to that third-party site. 

 

The Company has no control over and assumes no responsibility for any third-party sites or services' content, privacy policies, or practices. 

 

Changes to this Privacy Policy 

The Company may update its Privacy Policy from time to time. We will notify the user of any changes by posting the new Privacy Policy on this page.

 The Company will notify the user via email and/or a prominent notice on the Service before the change becomes effective and will update the “Last updated” date at the top of this Privacy Policy. 

 

The user is advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when posted on this page. 

 

Contact Us 

If you have any questions about this Privacy Policy, contact the Company • by visiting this page on our website: https://www.yellow3.io

bottom of page