Privacy Policy

Privacy & Cookie Policy

Effective Date: [12/6/2024]

​Privacy Policy

​Introduction

​Welcome to www.cpapeurope-classaction.com (the “Site”). We are committed to protecting your privacy and ensuring that your personal information is handled in a safe and responsible manner. This Privacy Policy outlines how we collect, use, and protect your information when you visit our Site.

​Global Justice Network (GJN), Verein Global Justice Network, at Bruhin Klass AG, Baarerstrasse 12 – 6300 Zug, Switzerland, as the Data Controller of your personal data (hereinafter also “Data Controller”), informs you, pursuant to Articles 12 and 13 of Regulation (EU) 2016/679 (General Data Protection Regulation, hereinafter referred to as “GDPR”), that your personal data will be processed by specifically authorized subjects and limited to the purposes and means specified below.

Information We Collect

​The Data Controller informs you that it will process the following data for the purposes and means specifically defined below:

1. For the use of the services offered by the Data Controller through the Site, particularly with reference to all functions made possible by interaction with the Site through any specific buttons and/or forms.
2. To guarantee the correct functioning of the Site and all the technical functions relating to it, in order to allow the user the best possible browsing experience on the Site.

​We use the information we collect for the following purposes:

• To Provide and Improve Our Services: We use your information to operate, maintain, and improve our Site and services, including responding to your inquiries, understanding your situation related to recalled products, and providing customer support.
• To Communicate with You: We may use your contact information to send you updates, newsletters, and other communications related to our services. You can opt-out of receiving these communications at any time by contacting us through the contact form on our Site.
• To Analyze and Improve Our Site: We use usage data to analyze trends and usage patterns on our Site to improve its functionality and user experience.
• To Comply with Legal Obligations: We may use your information to comply with applicable laws, regulations, and legal processes.

​​This information is effective only with reference to the Site, not with reference to other websites, for which the Data Controller is in no way responsible.

​The data provided by the user will be processed, also following automatic collection during navigation, solely for verifying and/or controlling access to the Site and improving its functionality, to ensure a better browsing experience.

​As regards the processing of IP addresses and domain names, as well as all users’ browsing data, carried out by the Data Controller for the purposes indicated above, please refer to the Cookie Policy

​Personal Data to Be Provided

1. Personal Information: When you visit our Site and use our services, we may collect personal information that you provide voluntarily through forms or other interactive features. This includes, but is not limited to:
   • ID and Contact information, such as your first name/last name, email address, and phone/mobile number.
   • Demographic information, such as your date of birth.
   • Information related to your use of recalled products, including model details, usage periods, and memory card data.
   • Health-related information, such as medical conditions, illnesses, or injuries potentially caused by recalled devices.
   • Details about your experiences with medical devices, including any recall notices received and your relationship to individuals using these devices.
2. Usage Data: We may also collect information about how you use our Site. This includes your IP address, browser type, operating system, referring URLs, and information about your interactions with our Site, such as pages visited and links clicked.
3. Cookies and Tracking Technologies: Our Site may use cookies and similar tracking technologies to enhance your experience. Cookies are small data files placed on your device when you visit a website. You can control the use of cookies through your browser settings. See our Cookie Policy

The legal basis for processing your personal data is:

• Article 6(1)(a), (b); Article 9(2)(a) of the GDPR for the purposes referred to in point 1 above.
• Article 6(1)(f) of the GDPR for the purposes referred to in point 2 above.

​​Providing personal data as stated above is necessary for the complete fulfillment of the purposes referred to in points 1 and 2 above. Refusal to provide personal data may result in the failure to provide the aforementioned services and functions of the Site, preventing all or part of its functionality.

​How We Use Your Information

The processing of personal data is carried out by means of all or some of the operations indicated in Article 4(2) of the GDPR (e.g., collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, alignment, restriction, erasure).

​Personal data are subjected to automated processing by the Data Controller for the time strictly necessary to achieve the purposes for which they were collected, with technical and organizational security measures adopted to prevent data loss, misuse, and unauthorized access.

​These measures ensure a level of safety adequate to the risk pursuant to Article 32 of the GDPR, by specifically authorized subjects in compliance with Article 29 of the GDPR, including employees and/or collaborators of the Data Controller who may carry out consultation, use, processing, comparison, and any other appropriate operation in compliance with the provisions of the law necessary to guarantee the confidentiality and security of the data.

​We take reasonable measures to protect the information we collect from loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction. However, no internet or email transmission is ever fully secure or error-free. Please keep this in mind when sharing any information with us.

​Your personal data will be processed only at the Data Controller’s headquarters, except as specified below.

They will not be disclosed, and they may only be processed by authorized parties and/or by any external data processors pursuant to Article 28 of the GDPR, or by subjects who operate as independent data controllers, such as hosting and/or technical personnel responsible for the management and/or maintenance of the Site.

The Data Controller does not use automated individual decision-making processes or profiling, except as indicated in the Cookie Policy

How We Share Your Information

We do not sell, trade, or otherwise transfer your personal information to outside parties without your consent, except in the following circumstances:

1. Service Providers: We may share your information with trusted service providers who assist us in operating our Site, conducting our business, or providing services to you, provided those parties agree to keep this information confidential.
2. Legal Requirements: We may disclose your information if required by law or in response to valid requests by public authorities (e.g., a court or government agency).
3. Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring company.

Examples include professionals and consultants, IT system and telecommunications network service providers, legal, administrative, and tax consultancy firms, competent authorities, and entities performing control, review, and certification obligations.

For navigation data and IP addresses, the Site may share some data with services located outside Italy and the European Union. In such cases, the Data Controller ensures that data transfer complies with applicable legal provisions, particularly Articles 44–49 of the GDPR.

Data Retention Period

In compliance with the principles of lawfulness, purpose limitation, data minimization, and storage limitation pursuant to Article 5 of the GDPR, your personal data will be retained for a period not exceeding the achievement of the purposes for which they were collected and processed, or for the duration necessary to fulfill those purposes.

Once the purposes are completed, your data will be deleted from all physical and IT media.

​Your Rights

• Right of Access (Article 15 of the GDPR) and Right to Rectification (Article 16 of the GDPR): You have the right to obtain confirmation of the existence of your personal data being processed and to access and receive a copy of the data in a structured, commonly used, machine-readable format. You also have the right to rectify and/or integrate data if it is inaccurate or incomplete.
• Right to Erasure (Article 17 of the GDPR) and Right to Restriction of Processing (Article 18 of the GDPR): You have the right to request the erasure of your data in specific cases and to request the restriction of processing in certain circumstances.
• Right to Data Portability (Article 20 of the GDPR): You have the right to receive your data in a structured, commonly used, and machine-readable format and to transmit it to another data controller.
• Right to Object (Article 21 of the GDPR): You have the right to object to the processing of your personal data for reasons related to your particular situation. You can also object to processing for direct marketing purposes.

To exercise these rights, please send a request via email though our contact form.

The Data Controller will confirm receipt of your request and provide information about the action taken within one month of receipt. If necessary, this period may be extended by two months, considering the complexity and number of requests, with prior notification.

Third-Party Links

Our Site may contain links to third-party websites. We are not responsible for the privacy practices or the content of these third-party sites. We encourage you to read the privacy policies of any third-party sites you visit.

​Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will post any changes on this page, and the updated Privacy Policy will be effective as of the date it is posted.

​Contact Us

If you have any questions or concerns about this Privacy Policy or our privacy practices, please contact us at:

​Email: Contact us
Address:

Verein Global Justice Network
c/o Bruhin Klass AG
Baarerstrasse 12
6300 Zug, Switzerland

Cookie Policy

​What are Cookies?

Cookies are packets of information (small text strings) sent by a web server (the “Site”) to the user’s Internet browser, automatically stored by the user on the computer and automatically sent back to the server at each subsequent access to the Site. Cookies allow the Site to recognize the user’s device and allow him/her to navigate between pages, remembering the preferences expressed and improving the users’ experience. They can also ensure that the advertisements displayed online are more appropriate and relevant to users’ interests and consumption habits.

By default, almost all web browsers are set to automatically accept cookies.

​Typically, cookies can be installed:

• directly from the owner and/or manager of the website (so-called first-party cookies);
• by managers unrelated to the website visited by the user (so-called third-party cookies). Unless otherwise specified, please note that these cookies fall under the direct and exclusive responsibility of the manager himself. Further information on privacy and their use can be found directly on the websites of the respective managers.

​This Site may use, even in combination with each other, the following types of cookies classified according to the indications of the Privacy Authority and the Opinions issued at European level by the Working Group pursuant to art. 29 of the GDPR, and in compliance with the Guidelines published by the Italian Privacy Authority on 10 June 2021:

• Session Cookies, are technical cookies that are not stored permanently on the user’s computer and are deleted when the browser is closed, they are strictly limited to the transmission of session identifiers necessary to allow safe and efficient exploration of the site avoiding the use of other IT techniques potentially prejudicial to the privacy of users’ browsing.
• Persistent Cookies, are technical cookies that remain stored on the computer’s hard drive until they expire or are deleted by users/visitors. Through persistent cookies, visitors who access the site (or any other users who use the same computer) are automatically recognized at each visit. Visitors can set their computer browser to accept/reject all cookies or display a warning every time a cookie is proposed, so they can decide whether to accept it or not. The user can, however, change the default configuration and disable cookies (i.e. block them permanently), setting the highest level of protection.
• Technical Cookies, are the cookies used to authenticate, to use multimedia content such as flash players or to allow the choice of the navigation language. In general it is therefore not necessary to acquire the user’s prior and informed consent. This category also includes cookies used to statistically analyze accesses/visits to the site only if used exclusively for statistical purposes and through the collection of information in aggregate form.
• Non-technical cookies, are all cookies used mainly for statistical analysis, marketing and profiling purposes. Their use on users’ terminals is prohibited if they have not first been adequately informed and, when requested, have not given valid consent in this regard according to the opt-in technique. These types of cookies can, in turn, be grouped based on the functions they perform as follows:
  • Analytics, are cookies used to collect and analyze statistical information on accesses/visits to the website. They can operate on anonymous aggregate/statistical data, or in most cases, with prior consent, associated with other information such as the credentials entered for access to restricted areas (your e-mail address and password), they can be used to profile the user (personal habits, sites visited, contents downloaded, types of interactions carried out, etc.).
  • Widgets, all those graphic components of a program’s user interface, which have the purpose of facilitating the user in interacting with the program itself, fall into this category. By way of example, Facebook, Google+ and Twitter cookies are widgets.
  • Advertising, cookies used to advertise within a site fall into this category. E.g. Google Ads, Tradedoubler fall into this category.
  • Web beacons, code fragments that allow a website to transfer and/or collect information by requesting a graphic image fall into this category. Websites can use them for various purposes, such as analyzing the use of websites, monitoring and reporting on advertising and personalizing advertising and content.
• Profiling cookies, are used to trace back to specific, identified or identifiable subjects, specific actions or recurring behavioral patterns in the use of the functions offered (patterns) for the purpose of grouping the different profiles within homogeneous clusters of different sizes, so that it is possible also modulate the provision of the service in an increasingly personalized way, as well as send targeted advertising messages, i.e. in line with the preferences expressed by the user when browsing the internet. The installation of profiling Cookies and the resulting processing of the user’s personal data are optional, therefore the user’s consent is required for the installation of this type of cookie. Profiling cookies can also be used to obtain geolocation data with reference to the geographical position of a user, or to allow an active scan of the characteristics of the device for the purpose of identifying it through the recognition of specific characteristics and settings, also aimed at guaranteeing security, fraud prevention and possible debugging.

The users can also directly manage cookies through the settings of their browser. For further information and support the user can also visit the specific help page of the web browser in use. The Controller is not responsible for updating any links that can be viewed in this Extended Cookie Policy, therefore whenever a link is not working and/or updated, users acknowledge and accept that they must always refer to the document and/or section of the sites internet accessed from this link.

Technical cookies for which consent is not required

The Site will install on the user’s’ device and, in particular, on the browser or allow third parties to install some cookies which are necessary to acquire or have our partners acquire statistical information in a totally anonymous and aggregate form, and therefore not attributable to any specific natural person, relating to the user’s navigation on the pages of the site, in order to improve usability and functionality.

Cookies for which consent is required

The Site will not install on the user’s device or browser or allow third parties to install cookies for which the user’s optional consent is required.

• First-party profiling cookies – Not used.
• Third party profiling cookies – Not used.

​Rights of the user (data subject)

​The user of the Site – or the data subject:

• has the right to obtain access, updating, rectification or, when interested, integration of the data;
• has the right to obtain the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed;
• has the right to obtain certification that they have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible or involves the use of manifestly disproportionate to the protected right;
• has the right to obtain the right to withdraw the consent at any time, if the processing is based on consent;
• has the right to obtain (where applicable) the right to data portability (the right to receive all personal data concerning you in a structured, commonly used and machine-readable format), the right to limit the processing of personal data and the right to erasure (“right to be forgotten”);
• has the right to:
  • object in whole or in part, for legitimate reasons, to the processing of personal data concerning him/her, even if pertinent to the purpose of the collection;
  • object in whole or in part to the processing of personal data concerning him/her for the purposes of sending advertising material or direct sales or for carrying out market research or commercial communication;
  • lodge a complaint with a Supervisory Authority (in the Member State in which he habitually resides, in the one in which he works or in the one in which the alleged violation occurred). The Italian supervisory authority is the “Garante per la protezione dei dati personali”, with headquarters in Piazza di Monte Citorio n. 121, 00186 – Rome (http://www.garanteprivacy.it/).

To exercise their rights, data subjects can write through the following Contact