1. Data Controller

The data controller is Technology Sport System S.r.l., Via Giuseppe Capaldo n.30, 80128 Napoli, in the person of his legal representative p.t. Mr. Cristiano Giannotti, contactable at the address


  1. Subject matter

This information is provided pursuant to art. 14 of the EU Regulation 2016/679 (“Regulation”) and concerns the Personal Data of users of the Mobile Application marketed by the Data Controller (later “TSS”) and licensed to the Association or Sports Club to whichusers belong (the “Customer”).


  1. Source of personal data

All personal data present in TSS is provided by the Director of the Company or Sports Association who has signed the contract for the service marketed by TSS. In particular, the subject mentioned above is the “Super User” of a specific environment of the App and creates the profiles of all the other Reference Users by populating their cards and entering the related personal data.


  1. Types of Data processed

(a) Data provided at the time of registration:

– Personal data

– Contact details (email)

– Family status data

– Image

  1. b) App Usage Data (“Log”)

Computer systems acquire, during the use of the platform and for its normal use, data that by their nature do not have an identifying function, but that could assume it in limited cases if processed or associated with data held by third parties. This category includes, for example, “Log” data, i.e. sequential and historical records of operations carried out by a computer system.

Log files are documents that contain messages about the system, services, and applications in operation.

These are pseudonymous data that have the function of monitoring the status of the service and the prevention of prohibited uses and anomalies.

(c) Data provided during the service

By using the service, you may disclose personal data of third parties or share documents containing personal data of third parties.

The User assumes responsibility for the personal data of third parties published or shared through the population of the pages and guarantees that he has the right to communicate or disseminate them, freeing the Data Controller from any responsibility towardsthird parties.

In particular, in the use of the service is identified a “Super User”, i.e. the director of the Company or Sports Association, on which is responsible for the veracity of the Data and information provided in the compilation of the database and in the registration to the service.

During the course of the service the “Super User” could confer particular categories of data pursuant to Article 9 of the Regulation, such as health data relating to the prevention of the spread of viruses or certificates of fitness for the practice of sports activity. The same is responsible for the acquisition of specific consent and the uploaded data will be processed by TSS as made manifestly public within the User’s profile.

Using the TSS App, Users will be able to customize their profile by entering a photo of them. The processing of this data will be understood to have been carried out on the basis of free provision also in relation to copyright legislation (L. 633/1941).


  1. Purpose of processing and legal basis

Below are indicated, pursuant to art. 6 of the Privacy Regulation, the purposes and the legal basis connected with the processing of data:


Legal basis


Registering, authenticating, and usingthe App

Performance of the contract

The processing is made necessary to fulfill the contract signed with the Customer

Customer Support

Performance of the contract

The processing is made necessary to fulfill the contract signed with the Customer

Communication of data to third parties


With your consent, data may be disclosed to third parties and business partners for commercial activities.

Direct and indirectmarketing


With your consent, communications may be sent for promotionalpurposes of goods and/or services marketed by the Data Controller and/or a partner.



Update emails will be sent on the products or services if you are subscribed to the App or have chosen to share your data. This willupdate you on new products or services. E-mails will not be frequent or invasive and the User will have the opportunity at anytime to object to the treatment.

Maintenance and improvement of the service


The possibility of access to personal data in the case of interventions on the App is minimized. If the technical needs dictateit, all the technical and legal precautions necessary to respect the interests of users will be put in place.

Logistics planning, market research, management information


Anonymous and aggregated data are used for any form of logisticaland management planning, but it may also be necessary to use personal data, which in any case will not be communicated to thirdparties.










Improving and customizingyour experience


Anonymous and aggregated data are used to improve the experience as a User but we may also need personal data, whichwill still remain used only by us and with any necessary legal and technical caution.

Detect or preventfraudulent activity

Legal obligationand legitimateinterest

We may need to process personal data in the event of third-partyattacks on our computer systems or site.

Keeping ledger entries

Legal obligation

We store the data for accounting administrative purposes and mayhave to share such data with the state administration in case of investigations.

Compliance with orders of the judicial authority or other public authority

Legal obligation

We may need to provide your Data to judicial authorities or otherpublic authorities under legal obligations or requests made.



TSS also reserves the right to process the data for scientific and/or statistical research purposes, adopting all the guarantees to protect the User provided for by the Regulation, including mechanisms to anonymize or pseudonymize the personal data processed.

The provision of data for the use of the app is necessary for the fulfillment of the contract. In the absence of the requested data we will not be able to provide the service correctly in favor of the Customer.

Consent for further purposes, such as communication to third parties, is optional and does not have any negative consequences for your experience. In the absence of such provision, TSS will not be able to increase and improve the service offered to Users.

The Service offered by TSS is mainly aimed at children under the age of 16 (sixteen), therefore for all purposes for which express consent is required, this will be acquired with the “double opt-in” method with acceptance by the merchants parental authority. In thatregard, it should be recalled that, pursuant to Art. 2-quinquies of the Privacy Code, as renewed by legislative decree. 101/2018, minors over the age of 14 (fourteen) can consent to treatment.


  1. Recipients

In addition to the designated subjects, the Data may be communicated to:

  1. a) suppliers and delivery partners, IT companies, payment processing companies, marketing and analysis companies;

(b) tax consultants;

(c) legal advisers;

(d) competent authorities;

  1. c) subjects who can access your data by virtue of legal provisions or secondary or Community legislation;

These subjects act as Data Controllers or Holders, if they independently determine the methods and purposes of the processing.

The list of subjects can be requested by writing to the address


  1. How to treat

The processing of data will be based on the principles of lawfulness, correctness, transparency, proportionality and minimization and can also be carried out through automated methods to store, manage and transmit them and will take place through suitable tools, as far as reason and the state of the technique, to guarantee security and confidentiality through the use of appropriate procedures that avoid the risk of loss , unauthorized access, unlawful use and dissemination.

The Data Controller in carrying out the processing activity employs administrative staff, employees and/or collaborators, who are trained and duly designated in accordance with current legislation.

The Data will not be disseminated and the processing is not carried out in fully automated ways ex art. 22 GDPR.


  1. Place of treatment

The Processing is carried out at the Owner’s office or on the premises/servers of the subjects acting as Data Controllers.

In any case, the treatment is carried out within the European Economic Area.


  1. Conservation

Personal data will be stored only and only for the needs related to each of the purposes indicated in paragraph 5 and in compliance with the principle of minimization of processing.

In this regard, it should be specified that the Data:

– necessary to execute the contracts concluded with the Customer will be kept for the duration of the contract as well as for the period necessary to guarantee the Owner the defense of his rights in case of disputes;

– necessary for compliance with legal obligations (e.g. accounting and tax legislation) will be kept for the period indicated by the applicable legislation i.e. for 10 (ten) years;

– necessary for carrying out activities


  1. Exercise of rights by Users

The User has the right to ask the Data Controller, pursuant to art.15 and ss of the Regulation:

  • access to data
  • data adjustment
  • the deletion of data
  • the limitation of the processing of data with regard to specific purposes
  • to receive the Data in astructured format, common use and readable by automatic device and to transmit them to another data controller (so-so-so-good portability)
  • to revokeconsent where given (even for a single treatment or purpose)
  • to oppose in whole or in part the use of the Data

to lodge a complaint, pursuant to art. 77 of the GDPR, to the Supervisory Authority for the Protection of Personal Data

The rights listed above may be exercised by sending an e-mail to the address


  1. Changes to this privacy policy

The Data Controller reserves the right to make changes to this Privacy Policy at any time, giving notice to the User through its publication within the site.

The User is required to periodically check this page to take note of any changes that will be binding on the User.

The User who continues to use the Platform after the publication of the changes, accepts the Privacy Policy without reservation.

You must notify the Data Controller that you have not accepted the changes made to this privacy policy and may at the same time request the deletion of your Personal Data. Unless otherwise specified, the previous privacy policy will continue to apply to personal data collected up to that time.