User information, pursuant to Art. 13 of the European Regulation 679/2016
Pursuant to Art. 13 of European Regulation (EU) 2016/679 (hereinafter, GDPR), and in relation to the personal data made available to the Data Controller, following access to the services provided, we inform you that:
Personal data protection holder and controller
Data processing holder: Feel good plus S.r.l., Headquarters: Roma (RM) Via delle alghe 70, 00126, Mail: feelgoodplussrl@legalmail.it, Certified email: feelgoodplussrl@legalmail.it, Tax code and Companies’ Register number: 15741991002 in the person of its legal representative pro tempore, and Data Controller, Mr. Federico Genovesi.
Purposes of Data Processing
Processing is aimed at correctly and efficiently provide the services requested to the Holder and to the different professionals. Data will also be processed to:
- Provide the service requested by the user
- Comply with fiscal and accounting obligations
- Comply with the Owner’s obligations set forth by current regulations
- Update/inform users and professionals on product developments and news
- Process statistics and other IT processes, with complete data anonymization
Personal data may be processed both in paper and digital form (including mobile devices), with methods strictly necessary to meet the purposes above. Apart from the Data Controller, the Data Holder may, from time to time, entrust different subjects to process specific data or data related to a particular data subject or group.
Processed data include: personal and fiscal data, data on physical and digital addresses (e.g. phone numbers and emails), photographic, biometric, and health-related data, diagnostics and therapeutic data, data on the subject’s race and sexuality, as well as the economic and bank data required to pay the different services.
Legal basis of the processing
The Data Holder legally processes personal data if processing:
- Is required to access the software and other services provided by the Data Holder, Controller or their officers
- Is required to perform, consultancy, physical therapy and training services
- Is required to comply with the Holder, Controller or their officers’ legal obligations
- Is based on express consent for specific purposes
Consequences of the failure to provide personal data
Failure to provide personal data prevents the performance of the contractual relationship, making it impossible to access the services, consultancy and performances offered by the Data Holder.
Data retention
Personal data being processed for the purposes above shall be retained for the entire contract duration, and, subsequently, for the period during which the Data Holder is subject to retention obligations, for tax or other purposes, according to the law and regulations.
Data communication
Personal data may be disclosed and transmitted, even abroad and outside the EU, after assessing their safe processing, and with suitable guarantees, to the following recipients:
- Owner and provider of the physical therapy and training analysis and monitoring platform
- Consultants, attorneys, accountants or other professionals providing services functional to the purposes specified above
- Bank, financial and insurance institutions providing services functional to the purposes specified above
- Subjects that process data to comply with specific legal obligations
- Legal or administrative authorities
- Data Holder’s officers
Wearable Device Data (Garmin Connect)
Powerset may collect, through integration with the Garmin Connect API, data from athletes’ wearable devices, including: physical activity data, heart rate, sleep quality
and duration, stress levels, body battery, and other wellness parameters.
Such data is collected exclusively with the user’s explicit consent through OAuth authentication with their Garmin Connect account, and used solely for the purpose of
monitoring athletic performance and wellbeing by the authorized healthcare professional or technical staff.
Data obtained from Garmin Connect is not shared with, nor processed by, any external artificial intelligence services or third-party data processing providers. Such data is
not transferred to unauthorized third parties and is processed exclusively within Powerset’s infrastructure (Feel good plus S.r.l.).
Users may revoke access to their Garmin data at any time directly from their Garmin Connect account settings, or by requesting deletion via email at info@mypowerset.com.
Following revocation, previously synchronized data will be deleted within 30 days.
Data profiling and disclosure
Personal data shall not be disclosed or subjected to any automated process, including profiling. However, they may be processed anonymously for statistical, research or preventative purposes.
Data Deletion
To request deletion of your personal data from our platform, send an email to info@mypowerset.com with subject “Richiesta cancellazione dati – GDPR Art. 17”. The request will be processed within 30 days. You will receive written confirmation once deletion is complete.
Personal data will be permanently deleted from all systems and notified third-party processors, unless retention is required by applicable law (e.g. fiscal obligations up to 10 years).
Data Subject Rights
The data subject has the following rights:
- ask for confirmation of the existence of his personal data;
- obtain indications on the processing purposes, personal data categories, recipients or categories of recipients to whom the personal data have been or will be disclosed, and, whenever possible, retention period;
- obtain data correction and cancellation;
- obtain processing limitations;
- obtain data portability, i.e. receiving the data from a Data Holder, in a structured and commonly used format that can be read by an automatic device, and transmitting them to another Data Holder, without any impediment;
- oppose to the processing at any time, even in case of processing for direct marketing purposes;
- oppose a an automated decision-making process related to natural individuals, including profiling.
- ask the Data Holder access to their personal data and their modification/cancellation, or to limit processing or oppose to it, apart from data portability rights;
- revoke consent at any time, without affecting the legality of processing based on the consent given before the withdrawal;
- lodge a complaint with the Data Protection supervisory authority – garanteprivacy.it
In order to exercise the rights specified in points a) to i) above, send a written request to the Data Holder’s address or email address: info@3.65.180.44
