Mobile REVEO Privacy Policy Back to top

Mobile REVEO Privacy Policy

PRIVACY POLICY

This Privacy Policy (hereinafter referred to as the “Policy”) was elaborated by SICPA SA, having its registered office at: Avenue de Florissant 41, 1008 Prilly, Switzerland (“PROVIDER” or “we”), to provide a detailed description of our approaches to processing of personal data that we collect and process when you use our mobile application (“App”).

We take your privacy very seriously. Please read this privacy policy carefully as it contains important information on [who we are and] how and why we collect, store, use and share any information relating to you (your information). 

While processing your personal data in connection with the App use, being a personal data controller PROVIDER acts in accordance with the laws and regulations of the European Union and Switzerland.

Please note that in some cases PROVIDER may perform processing of your personal data with the usage of the App under assignment of the third party. Such third party shall ensure legal grounds for transfer and further processing of your personal data by PROVIDER.

All terms used in this Policy shall have meaning defined by the applicable data processing laws. 

When providing personal data, you agree to their processing in accordance with the provisions determined by this Policy.

 

  1. WHAT CATEGORIES OF PERSONAL DATA DO WE PROCESS AND FOR WHAT PURPOSES?

 

The purpose of this App ("Purpose") is to enable you the verification of labels provided by operators for branded products (e.g., cosmetics & chemicals, wine & spirits, lubricants & automotive spare parts, consumer goods, electrical & electronic equipment) ("Products"). The labels (“Labels”) serve to confirm the origin of the Products from these operators. This app is limited to that Purpose. This App is not deemed to provide any information on the use or distribution of the Products nor on the consequences of such act. This App is not deemed to provide any additional information on PROVIDER’s or its clients’ products. We will process only those information about you which is compatible with this purpose, including: geolocation, first name, last name and email address if you decide to contact us. Geolocation is collected when you scan a label and can be disabled at any time. To disable geolocation on your mobile device, you can go to your device's settings, find the location or privacy section, and look for the option to manage location services. If a fake label is scanned, you have the option to contact us. You can choose to remain anonymous or provide contact details such as your first name, last name, and email address.

When using the App, you do not have to provide us with any information about yourself, and we will not process your personal data, with the exception of information collected automatically (as described in the Section 4 of this Policy).

You can also contact us directly using the appropriate functionality of the App. By contacting us, you confirm that you agree to the processing of your personal data in accordance with the conditions defined in this Privacy Policy. To process your request, we can only collect and process personal data that is strictly necessary to prepare an appropriate response.  

 

  1. USE OF CAMERA ON YOUR DEVICE FOR SCANNING LABEL

 

Permission will be requested to use the camera on your device in order to enable the scanning features in the app.

You may disable the app’s access to the camera on your device at any time. To disable access to the camera on your device, you can go to your device's settings, find the privacy or permissions section, and look for the camera settings. From there, you can manage apps’ access to your camera and disable it. Although that will mean that the scanning feature on the app is no longer available.

Data gathered by the camera for such purposes remains under your control on the device and we do not have access to it.

 

  1. LEGAL GROUNDS FOR PROCESSING YOUR PERSONAL DATA

 

PROVIDER processes personal data only if the relevant legal grounds for such processing exist. In addition to legal grounds described in Section 1 of this Policy above, PROVIDER processes your personal data in the following cases:

(A) To perform the functions, authorities and duties imposed on PROVIDER by the applicable legislation.

(B) To perform a contract to which you are a party, beneficiary or guarantor and (or) to enter into a contract at your initiative, or the contract to which you will be a beneficiary or guarantor.

(C)To exercise rights and preserve legitimate interests of PROVIDER or any third parties.

(D) Any other legal grounds as per the applicable legislation. 

 

  1. HOW DO WE PROCESS YOUR PERSONAL DATA?

 

We perform the processing of your personal data both with and without the use of automated means (mixed processing). When processing your personal data, we perform the following actions (operations) on such personal data: collection, recording, systematization, accumulation, storage, specifications (updating, modification), retrieval, use, transfer (provision, access), including depersonalization, blockage, deletion or destruction of personal data. 

 

  1. INFORMATION ABOUT YOU THAT IS COLLECTED AUTOMATICALLY. USE OF COOKIES 

 

To improve the App functioning and to make it easier to use, PROVIDER may use the special cookies technology, as well as other similar tools.

Cookies are small files that the App stores on your device and use them to record certain actions on the App by way of storing data that may be updated and restored. Those files are stored on your device and contain data harmless to your equipment. They are used to record your preferences, such as the selected language and access details, as well as to personalize the App for you.

Since cookies may include your personal data, we will request your separate consent to processing of cookies, as well as the use of other similar tools. If you fail to give such consent, we will process only technical cookies that are necessary for the proper functioning of our App. You may withdraw your consent to processing cookies and delete cookies stored on your device. 

 

  1. HOW LONG DO WE PROCESS YOUR PERSONAL DATA?

 

We process your personal data no longer than it is necessary to achieve the purposes of processing established by the Policy. 

Once the purposes of personal data processing have been achieved, Provider will delete personal data (and cause such deletion by third parties involved in processing). We will also cease processing of your personal data (and cause deletion of such data by third parties involved in processing), if you withdraw your consent to data processing (where such consent is the only legal ground for processing of your personal data). 

Please bear in mind that in certain cases we may continue processing your data after you have withdrawn your consent, where such processing is necessary to perform our duties arising from applicable laws or where such processing is required to exercise rights and legitimate interest of PROVIDER and/or any third parties.

If you want to withdraw your consent to processing personal data, please contact us as described in Section 11 of this Policy.   

 

  1. ARE ANY THIRD PARTIES INVOLVED IN PROCESSING YOUR PERSONAL DATA?

 

For achievement of purposes defined in this Policy PROVIDER may transfer your personal data, including to the following third parties:

  1. Trustsoft GmbH 

By engaging such third parties where required by laws and by instructing them to perform personal data processing on our behalf, being a personal data controller PROVIDER ensures that third parties maintain confidentiality of your data and take the relevant organizational, legal and technical measures to protect such data. Third parties that we involve process your personal data solely for the purposes defined in this Policy and perform the operations on your personal data that we assign to them. Under no circumstances such third parties shall perform the processing of your personal data for the purposes that are contradictory to the purposes specified in this Policy.

When prescribed by laws, PROVIDER may also transfer your personal data for fulfilment of its legal obligations.

If you need more information about third parties involved in processing of your personal data and/or with which we share your personal data, please contact us, and we will deliver the required information to you.  

 

  1. THIRD-PARTY WEB-RESOURCES 

 

The App may contain hyperlinks to any third-party web-resources, while any third-party websites and/or mobile applications may contain hyperlinks to our App.

PROVIDER is not responsible for processing of your personal data on such third-party websites and/or mobile applications, as well as for any policies and practices applied by their owners, administrators or other persons in respect of processing personal data of users. 

In light of this, we strongly recommend you to review the terms of use and privacy policy of each such third-party website and/or mobile application that you visit. 

 

  1. WHAT MEASURES ARE IMPLEMENTED BY PROVIDER TO PROTECT YOUR PERSONAL DATA?

 

PROVIDER tries to maintain the confidentiality and security of your personal data and to prevent their unauthorized disclosure. To do so, PROVIDER implements and will implement adequate technical, legal and organizational security measures to protect personal data from illegal or accidental access, destruction, modification, blockage, copying, transfer, dissemination, as well as any other unlawful actions in respect of personal data, in particular, measures covered by the local legislation. PROVIDER is certified to ISO 9001:2015, ISO 27001:2022, ISO 37001:2016, ISO 45001:2018 and ISO 17025:2017 under a unique integrated management system following a global roll-out program.

In the event of a suspected data security breach, we have established procedures to address the situation promptly. Where legally required, we will notify you and any relevant regulatory authorities of any such breach. 

 

  1. YOUR RIGHTS IN CONNECTION WITH PERSONAL DATA PROCESSING

 

You have the following rights in respect of personal data processing performed by PROVIDER:

  1. To withdraw your consent to the processing of your personal data.

  2. To require the specifications, exclusion or editing, as well as blockage and destruction of incomplete, inaccurate, outdated, inadequate, illegally obtained or unnecessary personal data.

  3. To access to your personal data and, in particular, to obtain the following details:

  4. categories of personal data being processed; 

  5. purposes of processing personal data;

  6. details of the persons who have access to personal data or who may be granted with such access (except for PROVIDER’s employees);

  7. list of your personal data processed and the source of obtaining such data;

  8. terms of personal data processing, including retention term; and

  9. other details pursuant to the applicable legislation.

  10. To require the notification of all persons to whom inaccurate or incomplete personal data was provided of all deletions, modifications or additions thereto.

  11. To exercise any other rights related to personal data protection provided for by the applicable legislation.

To withdraw your consent to personal data processing, you are required to send the relevant request to:  [email protected] . Once your consent has been withdrawn, we will cease processing your data, destruct personal data and ensure destruction of such data by third parties involved in processing (except where further processing is required by applicable laws or may be performed on any other legal ground). 

 

  1. AMENDMENTS TO THE PRIVACY POLICY

 

PROVIDER reserves the right to make amendments and updates to this Privacy Policy. 

If we decide to introduce any amendments or updates to this Privacy Policy, we will publish such amendments or updates here so that you are always aware of our personal data processing practices. In case of any changes to our Privacy Policy, you will be notified thereof by e-mail. 

If, pursuant to effective laws, any changes to this Privacy Policy require your consent to further processing of personal data in accordance with any amended provisions of this Privacy Policy, we will request such consent and enable you to refuse from accepting such amendments and further processing of your personal data by way of sending a relevant notice. 

 

  1. WHOM MAY I CONTACT ON ISSUES OF PERSONAL DATA PROCESSING AND THE EXERCISE OF MY RIGHTS?

 

For exercising your rights and on any issues related to personal data processing, you may send us a request:

  1. By e-mail:  <span lang="EN-US"> [email protected] ; and/or

  2. By regular post: Att. Data Protection Officer, Avenue de Florissant 41, 1008 Prilly, Switzerland. 

Please note that we will not examine anonymous requests. Upon obtaining any such request from you, we may also require that you verify your identity prior to sending a response to you.