Privacy Policy - Accessly.it

Last Updated: January 13, 2024

Welcome to Accessly.it. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, and share your personal data in compliance with the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679).

1. Data Controller

The Data Controller responsible for the processing of your personal data is:
Accessly.it
Email: privacy@accessly.it
[Insert Company Address Here]

2. Types of Data We Collect

We strictly collect only the data necessary to provide our Single Sign-On (SSO) service:

Identity Data: First name, last name, username, or similar identifier.
Contact Data: Email address.
Technical Data: IP address, time zone setting, browser type and version, and operating system, used for security logs and fraud prevention.
Profile Data: Your username and password (hashed), and login timestamps.

3. Purpose of Processing and Legal Basis

We process your data for the following purposes:

Service Provision: To create and manage your unique Accessly ID account and authenticate your identity. (Legal basis: Performance of a contract).
Single Sign-On (SSO): To enable you to log in to third-party Partner Sites using your Accessly credentials. (Legal basis: Performance of a contract).
Security: To detect and prevent fraud, unauthorized access, and ensure network security. (Legal basis: Legitimate Interest).

4. Data Sharing with Partner Sites

Crucial to our service: When you use your Accessly ID to log in to a third-party Partner Site, we share only the strictly necessary data required for that specific partner to identify you and grant access.

What we share: Typically, this is limited to your unique User ID (UUID), Email Address, and Name. We do not share your password or detailed activity logs with partners.

Each Partner Site acts as an independent Data Controller for the data they receive. We recommend reviewing the privacy policy of any service you connect to via Accessly.it.

5. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. You can request deletion of your account at any time.

6. Your Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

Right to Access: You can request a copy of the personal data we hold about you.
Right to Rectification: You can ask us to correct inaccurate data.
Right to Erasure ("Right to be Forgotten"): You can ask us to delete your data where there is no good reason for us to continue processing it.
Right to Restriction: You can ask us to suspend the processing of your data.
Right to Data Portability: You can request the transfer of your data to you or a third party.

7. Cookies

We use essential cookies to maintain your session and security. We may use analytics cookies only with your explicit consent. You can manage your cookie preferences through your browser settings.

8. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at privacy@accessly.it.