Servermx’s privacy policy (GDPR)

In this page all the privacy management in data processing for the services provided by servermx, as regards its users' personal data.
This notice is in compliance with General Data Protection Regulation (GDPR) - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016
Our privacy policy describes what information we gather through the user’s access, the use of our services, the use we make of such information, and the security level we give for protecting this information.
The company is located in Italy and thus it is subject to the laws and regulations of Italy and the EU  (Europe Union).
The data process holder is Antonio Cordeddu, managing director of Coranto Informatica di Antonio Cordeddu, with office in Selargius Via Torricelli, 9 09047 Selargius (CA).

 

What data we collect 

All pieces of information used for the registration of our services are considered personal data as such we give the same level of protection provided by the GDPR.
All mandatory fields required during the registration are used to be comply with fiscal duties.
The optional, explicit and voluntary mail messages sent to the addresses reported on this website implies the sender’s email address acquisition, necessary to reply to his request, together with other personal data reported on the mail.
Specific concise notices will be progressively reported or shown on the web site pages for particular optional services. Users are free, at any given time, to opt-out of those features through the account settings panel.
The user can be free to give his personal data on the request modules to contact the office to ask to be sent information or any other communication.
The non-communication of these data can make impossible to get what has been asked for.

 

Data collection

Our policy is to gather as little user information as possible to ensure a private and anonymous user experience when using our services.
Service's user data collection is limited to the following:

Web site activity - We use Matomo, an open source analytics tool, for statistic purpose. Analytics are anonymized and stored locally (and not on the Cloud).

Cookies - Cookies are text files placed on your computer to collect standard Internet log information and visitor behavior information. When you visit our websites, we may collect information from you automatically through cookies or similar technology.
Provided that the website servermx.com uses only technical cookies for which users' prior consent is not necessary to install these cookies, the only cookie that may be set when you visit servermx.com is:
Servermx Session Cookie (JSESSIONID)
This cookie contains a randomly generated number and is used to manage the user session. This cookie is necessary for registration and payment processes.

Email box activity - Unencrypted messages sent from external providers to servermx or from servermx to external providers are scanned for spam and viruses to protect user’s email boxes. We provide a tool to crypt outgoing messages consequently, in this case, we do not have access to them not event for spam and virus detection.
To check the volume of emails sent we need to have access to the following information: email size, message id and the message’s date.

Communication with servermx - User’s communications with servermx, such as support requests or new feature and others requests are stored by our ticketing system.  These activities are performed in our legitimate interest to troubleshoot more efficiently and improve the quality of the our services.

IP logging -  IP on our logs files may be retained temporarily to manage abuse and fraud activities. IP addresses may be retained permanently if we detect unacceptable activities (spamming, ddos attacks against servermx infrastructure, password hacker attempt, etc).  These actions are performed in our legitimate interest to protect our service against illegal activities.

IP addresses used for sending emails - IP addresses from which users send emails are considered personal data as such we give to them the protection required by GDPR. These IPs will not be exposed by our system to the recipient of the message.

Payment information - Servermx relies on  PayPal Europe (based on Luxembourg) for processing payments; servermx doesn’t store any payment or credit card information.

Emailbox migration tool - When the import tool is used for migration purpose, the credentials of the email account from which the importation is performed are stored for the duration of the migration. Once the importation is performed, any credentials are removed from our migration database.

 

Email data

Servermx doesn’t have any advertising on its email system. Any data that we do have will never be shared except in case of servermx receives a court order from legal Italian authority.
Servermx does not do any analysis on the data we possess.  Emails are scanned automatically by our antispam / antivirus system in order to protect our users.

 

Data Storage

All data storage of our infrastructure is located within the EU (*)  and in other countries which have an adequate level of data protection. The EU determines if a non-EU country has a suitable level of data protection (https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en).
Only employees of servermx have access to the servers.

 

Outgoing message servers

Outgoing message servers might be located outside the EU. Any communication among those servers is always encrypted therefore emails sent cannot be deciphered by third party.

 

Right to access, rectification, editing, removing

Through the service, you can directly access, edit, remove export personal data managed by servermx.
When the user hasn’t the ability to remove some personal information (i.e. account information) a request must be submitted. 

 

Data Retention

Active accounts will have data retained indefinitely. Deleted emails are also permanently deleted from production servers. Others deleted account data may be retained in our backups for up to 7 days.

 

Privacy policies of other websites

The servermx website contains links to other websites. Our privacy policy applies only to servermx website, so if you click on a link to another website, you should read their privacy policy.

 

Changes to our privacy policy

Servermx reserves the right to  modify this policy and we will notify users who have enabled the notification preference about changes to our Privacy Policy. Continued use of the service will be deemed as acceptance of such changes. This privacy policy was last updated on 29 December 2020.

 

How to contact us

If you have any questions about servermx’s privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.
Email us at: info@servermx.com
Call us: +39 070 8607521
Or write to us at: Coranto Informatica, Via Torricelli, 9 - 09047 Selargius (CA), Italy

 

How to contact the appropriate authority

Should you wish to report a complaint or if you feel that servermx has not addressed your concern in a satisfactory manner, you may contact to the competent supervisory authority.

 

(*) List of the EU countries can be found here

https://europa.eu/european-union/about-eu/countries_en

Our contacts