Privacy Policy

Pursuant to articles 13 and 14 of Regulation (EU) 2016/679 (GDPR), Dental Genesis di Giancarlo Fiolo S.r.l., as Data Controller, provides the following information regarding the personal data collected through the guident.it website.

1. Data Controller

Dental Genesis di Giancarlo Fiolo S.r.l.

Registered office: Via Casarsa 35, 98035 Giardini-Naxos (ME), Italy

VAT / Tax ID: 03130730835

REA: ME-215387

Certified email (PEC): dentalgenesis@arubapec.it

For any request related to personal data protection you can write to the PEC address above.

2. Categories of data processed

Registration data: first name, last name, email address, password (stored encrypted), optional invitation code.
Browsing data: technical cookies and, subject to your specific consent, analytics or marketing cookies (see the Cookie Policy).
Communication data: content of requests sent via email or contact forms.

3. Purposes and legal basis

Account creation and management to access the guided implant surgery services — performance of a contract (art. 6.1.b GDPR).
Compliance with legal, tax and accounting obligations — art. 6.1.c GDPR.
Replying to requests for information or assistance — legitimate interest of the Controller (art. 6.1.f GDPR).
Analytics/marketing cookies and other non-essential activities — consent of the data subject (art. 6.1.a GDPR), which can be withdrawn at any time.

4. Processing methods

Data are processed with electronic tools, by authorised personnel and with technical and organisational measures suitable to guarantee confidentiality, integrity and availability, in accordance with art. 32 GDPR.

5. Recipients of the data

Data may be communicated to:

authorised personnel of the Controller and specialist tutors involved in delivering the service;
third-party providers acting as Data Processors pursuant to art. 28 GDPR (hosting, email, cloud infrastructure, payment processor, support services);
competent authorities, in compliance with legal obligations.

Data are not disclosed nor transferred to third parties for marketing purposes without explicit consent.

6. Transfers outside the EU

Some providers may process data on servers located outside the European Economic Area. In such cases the transfer takes place on the basis of adequate safeguards pursuant to articles 44 et seq. GDPR (e.g. Standard Contractual Clauses approved by the European Commission).

7. Retention period

Account data: for the duration of the contractual relationship and for the 10 following years, for tax and accounting purposes.
Contact data: for the time needed to handle the request and up to 24 months after.
Cookies: according to the durations indicated in the Cookie Policy.

8. Rights of the data subject

At any time you can exercise the rights granted by arts. 15-22 GDPR:

access to personal data;
rectification and erasure;
restriction of processing;
data portability;
objection to processing;
withdrawal of consent, without affecting the lawfulness of processing based on consent given before the withdrawal.

To exercise your rights write to: dentalgenesis@arubapec.it

You also have the right to lodge a complaint with the Italian Data Protection Authority: www.garanteprivacy.it

9. Provision of data

Providing the data requested in the forms (registration, contact) is optional; however, refusing makes it impossible to deliver the requested service.

10. Automated decision-making

The Controller does not carry out fully automated decision-making, including profiling, that produces legal effects on the data subject.

11. Changes to this policy

This policy may be updated to reflect regulatory changes or service evolution. Changes will be published on this page together with the date of the last update.

Last updated: 25 May 2026.