Dear User, thank you for visiting our site.
In the rest of the page we describe how the site is managed with reference to the processing of the personal data of users who consult it.
WHY THIS NOTICE
This is an information notice pursuant to art. 13 of the 2016/679 European Regulation (hereinafter also “GDPR”) to those who interact with the web services directly provided by the Foundation.
The data controller is the Company, whose references are available on the site in the “Contacts” section.
The Foundation assumes no responsibility for:
the rules and methods of managing personal data of other websites, which can be reached from our pages through links and references;the contents of any e-mail services, web spaces, chat forums provided to users.
The treatments connected to the web services offered by this site take place at the Foundation, and possibly at the offices of the external Data Processors and are handled by data processors in charge of managing the services requested, marketing activities – if requested by the user. – data retention activities and occasional maintenance operations.
SCOPE OF DATA COMMUNICATION
The personal data provided may be disclosed to third parties to fulfill legal obligations, in execution of orders from public authorities entitled to do so or to assert or defend a right in court. If necessary in relation to particular services or products requested, personal data may be disclosed to third parties who perform, as independent data controllers, functions strictly connected and instrumental to the provision of services or supply of products. Without communication, these services and products could not be provided. Personal data will not be disclosed, unless the requested service requires it.
DATA PROVIDED VOLUNTARILY BY THE USER
The types of personal data collected and processed on this site are those necessary for the provision of the various services provided. The data collected are processed using paper, automated and telematic methods and with logic strictly related to the purposes of the processing. To offer the services, your telephone number and e-mail address may also be used. It is therefore clear that, if such data were not provided, those services that require the use of these tools cannot be provided. The legal basis for this treatment is your consent.
Any voluntary sending of e-mails to the addresses indicated on the site involves the acquisition of the sender’s address as well as any other information contained in the message; such personal data will be used for the sole purpose of performing the service or provision requested. The legal basis for this processing is our legitimate interest in replying to your email.
It is useful to know that the software procedures of the site acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols. Although information is not intended to be associated with identified users, by their nature, if associated with other data held by third parties (e.g. its internet service provider), it could allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URL (Uniform Resource Locator) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment. These data are used for the sole purpose of anonymous statistics on the use of the site and to check its correct functioning. The Data Controller and, depending on the service requested, the designated Managers keep, for a limited period in accordance with the law, the track (LOG) of the connections / navigations carried out to respond to any requests from the judicial authority or other public body entitled to request this path to ascertain any responsibility in the event of computer crimes. The legal basis for this processing is our legitimate interest in web presence.
The data collected will be kept for a period of time not exceeding the achievement of the purposes for which they are processed (“conservation limitation principle”, Article 5, GDPR) or on the basis of the deadlines set by law. The verification of the obsolescence of the data stored in relation to the purposes for which they were collected is carried out periodically.
Apart from what is specified for navigation data, the user is free to provide or not the personal data requested in the service registration form. On this form, however, some data can be marked as mandatory; it must be understood that such data are necessary for the provision of the requested service. If these data are not provided, the requested service cannot be provided.
At the time of any provision of data, in accordance with the provisions of art. 13 of the GDPR, a brief but complete information is made available to the interested party on the purposes and methods of processing, on the mandatory or optional nature of the provision of data, on the consequences of failure to provide it, on the subjects or categories of subjects to whom the personal data can be communicated and the scope of dissemination of the data, on the criteria used for the cancellation of the data, on the legal basis of the treatments, on the rights referred to in art. 15 and following of the GDPR (access, integration, updating, correction, cancellation for violation of the law, opposition to processing, withdrawal of consent, complaint to the supervisory authority.), On the identity and location of the Data Controller and Data Processors. The interested party is therefore called upon to express his informed, free consent, expressed in a specific and documented form in the form required by law, where required by the same. If the provision of personal data takes place in subsequent stages, additions to the information previously provided may be provided and new consents may be requested for the treatment arranged.
SECURITY MEASURES ADOPTED FOR THE PROTECTION OF COLLECTED DATA
The foundation uses “secure” architectures and technologies to protect personal data against undue disclosure, alteration or improper use. The protections activated against personal data are aimed, in particular, at minimizing the risks of destruction or loss, even accidental, of data, unauthorized access or processing that is not permitted or does not comply with the purposes of the collection. The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence or otherwise of such data and to know its content and origin, verify its accuracy or request its integration or updating, or rectification. The interested party also has the right to have their data deleted, to limit the processing, to data portability as well as to oppose their processing.
He also has the right to withdraw consent, should it be given, in the same ease with which he granted it, without affecting the lawfulness of the consent given before its revocation.