Moleskine Journey - Privacy Policy

30 December 2020

Hello and welcome to the privacy policy (the "Policy" of Edo.io Srl ("Edo" or "We" or "Us"), a company under Italian law that developed and owns Moleskine Journey (former Edo Agenda), a cloud service that combines calendar, note-taking and task management functions and makes them available as a web application and for mobile devices published on the website https://moleskinejourney.com (the "Platform").

In particular, the Platform allows you to:
  1. (i) manage personal and business activities;
  2. (ii) plan events, activities and reminders;
  3. (iii) organise ideas and notes;
  4. (iv) manage projects and objectives;
  5. (v) create to-do lists and reminders.

Through the Platform we collect certain information about you, as a User ("you" or the "User"), that qualifies as "Personal Data". Personal Data is generally defined as any information about identified individuals or individuals that can also be identified through other information – for example, through a number or identification number – such as: name and surname or company name; address; tax code; an image; the registration of a person's voice; fingerprint; bank details; etc.

The purpose of this Policy is to provide you with all the information you need so that you, as a User, can understand our policy with regard to the collection, disclosure and use of your Personal Data.

If you intend to activate the Platform's services through services offered by third parties (by way of example only and not limited to: login with Google), Personal Data about you may be shared by such third parties with Edo, as better explained below. We recommend that you read carefully the relevant privacy policy on any such third-party websites on how your Data will be processed by them and possibly shared with Edo: https://policies.google.com/privacy?hl=it (with regard to login with Google).

This Policy does not apply to the services offered by third parties in the event of syncing between the Platform and such services and to their methods of processing Personal Data. We recommend that you read carefully the relevant privacy policy on any such third-party websites on how any Personal Data will be processed by them:
https://policies.google.com/privacy?hl=it (with regard to syncing events with Google Calendar).

This Policy does not apply to technical services offered by third parties in the event of external integration between the Platform and such services and their methods of processing of Personal Data. We recommend that you read carefully the relevant privacy policies on any such third-party websites:

If you are under the age of 18 (eighteen), or you lack legal capacity, this Policy is addressed to the person in charge of such undertaking under current Italian law, and who is the only person authorised to give the relevant express consent.

This Policy may be subject to additions or amendments in order to update it with respect to regulations and/or to adapt it to any technical changes made to the Platform and/or to any changes in the purposes or methods of processing your Data.

We will inform you of any changes with specific and appropriate individual notifications, but we recommend that you check this document periodically so as to stay up to date. Any updated versions, which will bear the date on which the update was made, will be published promptly on the Platform and will become effective immediately after publication. In particular, such updates will be fully binding on you from the date of publication on the Platform if you do not decide to unsubscribe from the Platform after 7 days from individual notification.

***

1. Data Controller, Data Processors and Data Protection Officer The data controller is Edo.io Srl, with registered office in Terni (TR), Via Federico Fratini, 6, e-mail team@edo.io, hereinafter also referred to as the "Controller".

Appointed as System Administrator is:
Marco Muratore
A detailed list of Data Processors can always be requested by sending a simple written request to the Data Controller at the addresses indicated above.

2. Types of data processed and purpose of the processing
2.1 Browsing data and activity
The IT systems and procedures used to operate the Platform may automatically acquire, during their normal operation, certain Personal Data relating to your browsing activity, such as, by way of example, your IP address, the number of times you have accessed the site, the duration of the visit, the browser or device used, the pages viewed, and the date and time of access. Personal data relating to your browsing is collected primarily in order to obtain non-identifying statistical information about the use of the Platform and to check its proper functioning.

To carry out these operations, the Platform currently uses:
  1. (i) Firebase, a mobile analytics service provided by Google that sends anonymised information from your device via API calls.
  2. (ii) Google Analytics, a web analytics service provided by Google that sends cookies to your device.

2.1.1 Cookies
Cookies ("Cookies") are small pieces of text that are stored on your device and which record data related to your browsing activity. If cookies are not disabled, this data is communicated to the website, or the application that installed them, each time you return to the website.

Types of Cookies:
Technical cookies: allow you to browse through the website or application and use options or services. For example, they identify the session, restrict access to web parts, remember the elements of an order, make a request for registration or participation in an event, use the security features while browsing, and store content for audio or video broadcast. In other words, these are all of the cookies that are required to satisfy the specific request that you have made at that time and are not used for any other purpose.
Profiling cookies: allow for a more effective management of the website or application's advertising space and enable the customisation of the advertisement so that it may be relevant to the user and prevent the user from viewing advertisements which have already been seen. These cookies therefore perform true profiling of the users' behaviour.
Third-party cookies: third-party cookies are cookies used by the operator of the website or application, but are installed on the user's device by third parties other than the operator of the website or application. Third-party cookies are, for example, the statistical services of Google Analytics or the advertising service of Google Adsense.

The Platform uses the following in particular:
  1. (i) Technical cookies (which store your login credentials in order to make it possible to login) and for which your specific consent is not required;
  2. (ii) Third-party analytical cookies:
    1. (ii)(a) fully implemented with measures that make it possible to remove any identifying data and which are not cross-referenced by the third party, for which your specific consent is not required;
    2. (ii)(b) used without measures to remove identifying data, for which your specific consent is required.

If you would like more information about these cookies, or to find out how to refuse or delete them, please take a look at the privacy policies below, using the addresses provided.

Below is a list of the Cookies used.

Cookie name Domain Description Duration
_ga edo.io Used to distinguish users. 2 years
_gid edo.io Used to distinguish users. 24 hours
_gat edo.io Used to throttle request rate. 1 minute
__utma edo.io Used to distinguish users and sessions. The cookie is created by the javascript library, it is updated every time data is sent to Google Analytics. 2 years from set/update
__utmt edo.io Used to throttle request rate. 10 minutes
__utmb edo.io Used to determine new sessions/visits. The cookie is created by the javascript library, it is updated every time data is sent to Google Analytics. 30 minutes from set/update
__utmc edo.io Not used in ga.js. Set for interoperability with urchin.js. Historically used to determine if the user had started a new session. Until end of browser session
__utmz edo.io Stores the traffic source or campaign that explains how the user reached your site. The cookie is created by the javascript library, it is updated every time data is sent to Google Analytics. 6 months from set/update
__utmv edo.io Used to store personalised visitor data. The cookie is updated each time data is sent to Google Analytics. 2 years from set/update
_fbp edo.io Used to track the results of Facebook campaigns that lead to your site. 90 days from set/update
cookie_permission agenda.edo.io Used to store consent to the use of cookies 1 year
refresh_token agenda.edo.io Used to keep the user session active and update the access_token 30 days after set
access_token agenda.edo.io Used to authenticate requests to the server 1 day
cookie_permission moleskinejourney.com Used to store consent to the use of cookies 1 year
refresh_token moleskinejourney.com Used to keep the user session active and update the access_token 30 days after set
access_token moleskinejourney.com Used to authenticate requests to the server 1 day
  1. (i) Google Analytics (Google Inc.) → Third-party cookie identifier. Google Analytics uses cookies to collect and analyse information on Platform usage patterns. The information collected and processed by Google Analytics allows us to prepare reports regarding the activities carried out on the Platform. We use Google's analysis tool to monitor or collect information.

    For more information, please refer to the links below:
    http://www.google.com/policies/privacy/partners/

    You can selectively disable Google Analytics by installing the opt-out component provided by Google on your browser. If you would therefore like to disable Google Analytics, please access the link below:
    https://tools.google.com/dlpage/gaoptout
  2. (ii) Facebook Pixel (Facebook Inc.): third-party cookies. This is a statistical data collection tool that allows you to measure the effectiveness of your advertising by understanding the actions that people perform on your website.
    More information:
    https://www.facebook.com/business/help/742478679120153
  3. (iii) Moleskine Journey session cookies. These make it possible to identify the user and perform operations on the data. They allow the user to keep an active session and not have to log in at each new browser session.

The installation of Cookies, which normally takes place automatically with most browsers, can be prevented by simply deactivating the ability to receive Cookies in your browser settings.

For further, more specific information about Cookies, please click on the link of the browser you usually use:

  1. (i) Chrome: https://support.google.com/chrome
  2. (ii) Firefox: https://support.mozilla.org/
  3. (iii) Internet Explorer: http://windows.microsoft.com/
  4. (iv) Opera: http://help.opera.com/
  5. (v) Safari: http://support.apple.com/

For more information or clarifications, you can contact us by email at: journeyapp@moleskine.com.

If you decide not to enable Cookies, your experience on the Platform may be limited.

You can find more information about cookies and how to manage them by consulting the site www.aboutcookies.org or by consulting the provision identification of the simplified procedures for the information and the acquisition of consent for the use of cookies.

2.2 Data processed in relation to the use of services accessible through the use of credentials
The services of the Platform are reserved for registered Users. To complete the registration process you must provide the following Personal Data:

The provision of any other Personal Data that may be required as part of the registration procedure, where not expressly indicated as required, is optional and entirely left up to you.

How may we use your Personal Data for this purpose? In general, we may need to use your Personal Data, such as your e-mail address, to set up and manage your account (for example, to send you password reminders or notify you of changes to your account details). We may also need to use your Personal Data to fulfil our contractual obligations to you, for example specifically to provide the Platform's services.

What is the legal basis for us to process your Personal Data in this way? Processing your Personal Data is required to set up and manage your account. The performance of the Platform's services also makes it necessary to process your Personal Data in order to fulfil our contractual obligations to you.

The Personal Data provided may also be processed for:

2.3 Personal Data that you provide voluntarily to us
The Personal Data that you provide voluntarily and freely on the basis of your own free will (for example the sending of e-mails to the addresses indicated on the Platform in order to obtain information or the chosen inclusion of content on the Platform), may be acquired by us and in this case processed in our capacity as Data Controller. In any case, we will ask for your consent to the processing before processing your Personal Data.

Such Personal Data, where different from that already in our possession as per Article 2.2, will not in any way be disclosed or communicated to third parties outside the company of the Data Controller, nor will it be used to define the profiles or personality of the person concerned or for direct or indirect commercial or advertising purposes and, in any case, will be processed and possibly stored solely for the purposes of providing the service.

2.4 Data relating to advanced sharing and collaboration features
The Platform has advanced sharing and collaboration features that allow you, as User, to create a diary that can be sent, by third party means of transmission (for example via email or messaging applications), to third parties who are not currently users of the Platform. In making use of these sharing and collaboration features, as User of the Platform you undertake to avoid the use of Personal Data of third parties in relation to which you have not previously received an authorization from the respective owners. Such Personal Data will not be visible to us during transmission, and will not be acquired by us and processed as Data Controller, unless, after the specific acceptance of this Policy and the related processing, such Personal Data coincide with those subjects of processing in accordance with this Policy regarding third parties who have become Users.

2.5 Logging in with third-party services
We allow you or we will allow you to register and/or use our services using the account of some of the major social networks (including but not limited to Google). By choosing to use these services to register with the Platform, you authorise us to collect your Personal Data for authentication to these social networks (e.g. your username, your login credentials – in encrypted form).

The Personal Data we have access to will vary depending on how you set your privacy settings and consent on these social networks. If you decide to link the account managed by one of the above social networks to your account on the Platform – by authorising access to your Personal Data – you authorise us to acquire, process and possibly communicate the Personal Data present on these social networks, in accordance with current information and for all the specific related purposes.

Please note that we do not retain and will not retain the password to your Google account.

2.6 Protection of Personal Data
The Platform provides for the use of particularly advanced encryption technologies to protect the integrity and confidentiality of Personal Data.

The data is saved on an architecture that allows for daily backups and in case of transfer, where subject to consent, sensitive data is encrypted with AES, bcrypt or SHA2 algorithms.

However, take note that the use of an open and public computer system, such as the Internet for the transmission of information, increases the standard risks of any remote service

3. Categories of subjects to whom the Personal Data may be communicated and scope of data dissemination
Unless otherwise specified in relation to the individual purposes of the processing as specified above, the Personal Data collected may be disclosed to – or otherwise become known to – persons in charge of and/or responsible (including external) for the processing, in relation to the skills and functions of each, in order to meet the above purposes or to implement specific regulatory and/or contractual obligations.

In particular, your Personal Data may also be brought to the attention of the following subjects or categories of subjects, to the extent that this is required for the fulfilment of regulatory and/or contractual obligations:
  1. (i) internal and/or external consultants or collaborators, in order to comply with current legislation and/or to perform contractual services in their dealings with the individuals concerned (by way of example only and not limited to: labour consultants, legal consultants, accountants, tax experts, auditors, and so on);
  2. (ii) judicial authorities or other public authorities, in compliance with the purposes specified above or for legal obligations.
  3. (iii) associated companies.

Your Personal Data may then be communicated to companies, which Edo may contact for the implementation of operations necessary for the performance of the provisions you have received and for the provision of the services requested.
None of your Personal Data will be voluntarily disclosed unless you have expressly authorised it.

4. Processing method
The Personal Data held for the purposes set out above is processed by us, in a lawful and correct manner, by the prevalent use of automated or semi-automated tools.

5. Optional provision of data, consent and consequences of refusal
Except in the cases in which the acquisition of Personal Data is deemed necessary for the purposes of using the services you have requested; the provision of any other Personal Data is entirely optional.

Failure to provide optional data will not have any detrimental consequences for the user. Failure to provide required data may, however, make it impossible to use the services for which it is necessary to provide such data.

6. Duration of the retention of your personal data
In accordance with applicable data protection legislation, your Personal Data is stored for the period of time strictly necessary to provide the service, fulfil our obligations and achieve the purposes for which such data was collected. We may also retain data until the expiration of the applicable statutory limitation period if this is necessary to protect our legitimate interests. Thereafter, we will remove the data from our systems and records and/or take appropriate steps to make it anonymous so that you cannot be identified (unless we need to retain the data for the purpose of complying with our regulatory obligations).

7. Rights of the data subject
You have the right to request details about the Personal Data we process, and to revoke your consent to its processing, to correct or delete it and not to be contacted if you have not requested this.

(i) The right to access your Personal Data
You can request access to your Personal Data by contacting us through the contact details found at the bottom of the page. The file containing your Personal Data is usually made available within 10 days. It will however be made available no later than 30 days. On some occasions, we may be in a position to refuse access to your Personal Data (for example, if access unreasonably harms someone else's privacy or endangers someone's security). In this case we will provide you with a formal and explicit explanation of the reason for this impossibility. In some cases, we may also charge you an administrative fee to provide access to your Personal Data. Any fees will be reasonable and before we provide access to your Personal Data we will notify you to obtain your consent. If you request a copy of your Personal Data using electronic means, such as email, we will provide you with a copy of your data in electronic format, unless you request otherwise.

(ii) The right to modification or cancellation/deletion of your Personal Data
If you have created an account, you can access this account to edit or delete your Personal Data. Otherwise, you can send your request to journeyapp@moleskine.com or use the feedback form on the web or mobile application. If you have problems updating or deleting your data, you can still send an email with your request to journeyapp@moleskine.com or use the feedback form on the web or mobile application and we will solve the problem as soon as possible.

In the case of exercising the right to be forgotten, we will inform the Company and any other subjects to whom the Personal Data has been communicated of your request.

(iii) The right to object to the processing of your Personal Data
You have the right to ask us to stop processing your Personal Data, even if such processing is necessary for our legitimate interests. If you have given your consent to the transfer of your Personal Data to the Company, the Company is responsible in the relationship between you and the Company for your rights.

(iv) The right to have your Personal Data transmitted to another organisation ( Personal Data Portability)
In the event that your Personal Data is processed for the purpose of your consent or for the performance of a contract, you have the right to ask us to provide you with the data relating to you and held by us in a structured, commonly used and readable format, and, where technically possible, to transmit such data directly to another organisation.

(v) Complaints
If you believe that applicable data protection laws have been violated, you have the right to file a complaint with the Local Authority for the Protection of Personal Data in the European Economic Area ("EEA").
The local Data Protection Authority will be different depending on the country you are in. In the annex to the Privacy Policy, you can find a list of the Local Data Protection Authorities in the EEA countries in which we operate.

The above-mentioned rights can be exercised by you at any time by sending us a simple request by email.

Physical location of Personal Data
Your Personal Data is stored within the European Economic Area ("EEA"). Your Personal Data, in particular, is stored on Microsoft Azure servers, located in the Netherlands.

8. How to contact us?
If you have any questions or concerns about how we process your Personal Data, or would like to stop processing or would like to request a copy of your Personal Data, contact us via the feedback form on the web or mobile application  or write to us on:  journeyapp@moleskine.com Include your reply address when you write to us.

Annex
List of personal data protection authorities (EEA countries)
If you believe that applicable data protection laws have been violated, you have the right to file a complaint with the European Economic Area (EEA) Local Data Protection Authority.
The local authority is different depending on the country. Below you can find details of the local data protection authorities of the countries of the European Economic Area.

Country

Personal data protection authority

Austria

Österreichische Datenschutzbehörde 
Hohenstaufengasse 3
1010 Wien
Tel. +43 1 531 15 202525 
Fax +43 1 531 15 202690
e-mail: 
dsb@dsb.gv.at 
Website: 
http://www.dsb.gv.at/

Belgium

Commission de la protection de la vie privée 
Rue de la Presse 35
1000 Bruxelles
Tel. +32 2 274 48 00 
Fax +32 2 274 48 10
e-mail: 
commission@privacycommission.be 
Website: 
http://www.privacycommission.be/

Bulgaria

Commission for Personal Data Protection 
2, Prof. Tsvetan Lazarov blvd.
Sofia 1592
Tel. +359 2 915 3523
Fax +359 2 915 3525
e-mail: 
kzld@cpdp.bg 
Website: 
http://www.cpdp.bg/

Croatia

Croatian Personal Data Protection Agency 
Marticeva 14
10000 Zagreb
Tel. +385 1 4609 000 
Fax +385 1 4609 099
e-mail: 
azop@azop.hr or info@azop.hr 
Website: 
http://www.azop.hr/

Cyprus

Commissioner for Personal Data Protection 
1 Iasonos Street,
1082 Nicosia
P.O. Box 23378, CY-1682 Nicosia
Tel. +357 22 818 456 
Fax +357 22 304 565
e-mail: 
commissioner@dataprotection.gov.cy 
Website: 
http://www.dataprotection.gov.cy/

Czech Republic

The Office for Personal Data Protection 
Urad pro ochranu osobnich udaju
Pplk. Sochora 27
170 00 Prague 7
Tel. +420 234 665 111 
Fax +420 234 665 444
e-mail: 
posta@uoou.cz 
Website: 
http://www.uoou.cz/

Denmark

Datatilsynet 
Borgergade 28, 5
1300 Copenhagen K
Tel. +45 33 1932 00 
Fax +45 33 19 32 18
e-mail: 
dt@datatilsynet.dk 
Website: 
http://www.datatilsynet.dk/

Estonia

Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) 
Väike-Ameerika 19
10129 Tallinn
Tel. +372 6274 135 
Fax +372 6274 137
e-mail: 
info@aki.ee 
Website: 
http://www.aki.ee/en

Finland

Office of the Data Protection Ombudsman 
P.O. Box 315
FIN-00181 Helsinki
Tel. +358 10 3666 700 
Fax +358 10 3666 735
e-mail: 
tietosuoja@om.fi 
Website: 
http://www.tietosuoja.fi/en/

France

Commission Nationale de l’Informatique et des Libertés - CNIL 
8 rue Vivienne, CS 30223
F-75002 Paris, Cedex 02
Tel. +33 1 53 73 22 22 
Fax +33 1 53 73 22 00
e-mail: 
Website: 
http://www.cnil.fr/

Germany

Die Bundesbeauftragte für den Datenschutz und die Informationsfreiheit 
Husarenstraße 30
53117 Bonn
Tel. +49 228 997799 0; +49 228 81995 0
Fax +49 228 997799 550; +49 228 81995 550
e-mail: 
poststelle@bfdi.bund.de 
Website: 
http://www.bfdi.bund.de/

In Germania, la competenza per i reclami è divisa fra diverse Autorità di vigilanza per la protezione dei dati personali.
Le autorità competenti possono essere identificate con la lista prevista al link seguente: 
https://www.bfdi.bund.de/bfdi_wiki/index.php/Aufsichtsbeh%C3%B6rden_und_Landesdatenschutzbeauftragte

Greece

Hellenic Data Protection Authority 
Kifisias Av. 1-3, PC 11523
Ampelokipi Athens
Tel. +30 210 6475 600
Fax +30 210 6475 628
e-mail: 
contact@dpa.gr 
Website: 
http://www.dpa.gr/

Hungary

Data Protection Commissioner of Hungary 
Szilágyi Erzsébet fasor 22/C
H-1125 Budapest
Tel. +36 1 3911 400
e-mail: 
peterfalvi.attila@naih.hu 
Website: 
http://www.naih.hu/

Iceland

The Icelandic Data Protection Authority

Rauðarárstígur 10, 105 Reykjavík, Iceland

Tel. +354-510-9600

e-mail: postur@personuvernd.is

Websitehttps://www.personuvernd.is/

Ireland

Data Protection Commissioner 
Canal House
Station Road
Portarlington
Co. Laois
Lo-Call: 1890 25 22 31
Tel. +353 57 868 4800 
Fax +353 57 868 4757
e-mail: 
info@dataprotection.ie 
Website: 
http://www.dataprotection.ie/

Italy

Garante per la protezione dei dati personali 
Piazza di Monte Citorio, 121
00186 Roma
Tel. +39 06 69677 1
Fax +39 06 69677 785
e-mail: 
garante@garanteprivacy.it 
Website: 
http://www.garanteprivacy.it/

Latvia

Data State Inspectorate 
Direttore: Sig. Signe Plumina
Blaumana str. 11/13-15
1011 Riga
Tel. +371 6722 3131
Fax +371 6722 3556
e-mail: 
info@dvi.gov.lv 
Website: 
http://www.dvi.gov.lv/

Liechtenstein

Datenschutzstelle

Kirchstrasse 8
Postfach 684
9490 Vaduz

Tel: +423 236 60 90

e-mail: info.dss@llv.li

Website: http://www.llv.li/#/1758/datenschutzstelle

Lithuania

State Data Protection 
Žygimanty str. 11-6a
011042 Vilnius
Tel. + 370 5 279 14 45 
Fax +370 5 261 94 94
e-mail: 
ada@ada.lt 
Website: 
http://www.ada.lt/

Luxembourg

Commission Nationale pour la Protection des Données 
1, avenue du Rock’n’Roll
L-4361 Esch-sur-Alzette
Tel. +352 2610 60 1
Fax +352 2610 60 29
e-mail: 
info@cnpd.lu 
Website: 
http://www.cnpd.lu/

Malta

Office of the Data Protection Commissioner 
Commissario per la protezione dei dati personali: Sig. Joseph Ebejer
2, Airways House
High Street, Sliema SLM 1549
Tel. +356 2328 7100 
Fax +356 2328 7198
e-mail: 
commissioner.dataprotection@gov.mt 
Website: 
http://www.dataprotection.gov.mt/

Holland

Autoriteit Persoonsgegevens 
Prins Clauslaan 60
P.O. Box 93374
2509 AJ Den Haag/The Hague
Tel. +31 70 888 8500
Fax +31 70 888 8501
e-mail: 
info@autoriteitpersoonsgegevens.nl 
Website: 
https://autoriteitpersoonsgegevens.nl/nl

Norway

Datatilsynet

Postboks 8177 Dep.
0034 Oslo

Tel: +47 22 39 69 00

e-mail: postkasse@datatilsynet.no

Website: https://www.datatilsynet.no/English/

Poland

The Bureau of the Inspector General for the Protection of Personal Data - GIODO 
ul. Stawki 2
00-193 Warsaw
Tel. +48 22 53 10 440
Fax +48 22 53 10 441
e-mail: 
kancelaria@giodo.gov.pldesiwm@giodo.gov.pl 
Website: 
http://www.giodo.gov.pl/

Portugal

Comissão Nacional de Protecção de Dados - CNPD 
R. de São. Bento, 148-3°
1200-821 Lisboa
Tel. +351 21 392 84 00 
Fax +351 21 397 68 32
e-mail: 
geral@cnpd.pt 
Website: 
http://www.cnpd.pt/

Romania

The National Supervisory Authority for Personal Data Processing 
Presidente: Sig.ra Ancuta Gianina Opre
B-dul Magheru 28-30
Sector 1, BUCURESTI
Tel. +40 21 252 5599 
Fax +40 21 252 5757
e-mail: 
anspdcp@dataprotection.ro 
Website: 
http://www.dataprotection.ro/

Slovakia

Office for Personal Data Protection of the Slovak Republic 
Hranicná 12
820 07 Bratislava 27
Tel.: + 421 2 32 31 32 14
Fax: + 421 2 32 31 32 34
e-mail: 
statny.dozor@pdp.gov.sk 
Website: 
http://www.dataprotection.gov.sk/

Slovenia

Information Commissioner 
Sig.ra Mojca Prelesnik
Zaloška 59
1000 Ljubljana
Tel. +386 1 230 9730
Fax +386 1 230 9778
e-mail: gp.ip@ip-rs.si
Website: 
https://www.ip-rs.si/

Spain

Agencia de Protección de Datos 
C/Jorge Juan, 6
28001 Madrid
Tel. +34 91399 6200 
Fax +34 91455 5699
e-mail: 
internacional@agpd.es 
Website: 
https://www.agpd.es/

Sweden

Datainspektionen 
Drottninggatan 29
5th Floor
Box 8114
104 20 Stockholm
Tel. +46 8 657 6100 
Fax +46 8 652 8652
e-mail: 
datainspektionen@datainspektionen.se 
Website: 
http://www.datainspektionen.se/

United Kingdom

The Information Commissioner’s Office 
Water Lane, Wycliffe House 
Wilmslow - Cheshire SK9 5AF 
Tel. +44 1625 545 745 
e-mail: 
international.team@ico.org.uk 
Website: 
https://ico.org.uk