How does it work
The project
For companies
Please subscribe
Log in
ITA

Website Privacy Policy

INFORMATION ON THE PROCESSING OF PERSONAL DATA

Pursuant to Article 13 of the EU Regulation No. 2016/679 (“GDPR”), PRIVACY FEDERATION S.R.L. SB provides users of the website www.privacyfed.eu (“Website”) with the following information in relation to the processing of personal data concerning them.

1) DATA CONTROLLER

The data controller is PRIVACY FEDERATION S.R.L. SB, with registered office at Viale Gran Sasso 11, 20131 Milan (MI), E-mail: info@privacyfed.eu (“Data Controller” or “Privacy Fed”).

2) TYPE OF PERSONAL DATA COLLECTED

While browsing the Web Site, Privacy Fed may acquire the following data/information:

  1. Browsing data: this is data whose transmission is implicit in the use of the Internet and includes data such as, for example: the IP address of the device connected to the Website, the type of browser used, the name of the internet service provider (ISP), the date and time of the visit and other parameters related to the user’s operating system and computer environment.
  2. Data collected through cookies: for more information, see the Cookie policy.
  3. Data provided voluntarily by the user: this is identifying and contact data and/or additional personal information provided by the user through the dedicated form or contact channels on the Website.

(hereinafter jointly referred to as “Personal Data”)

3) PURPOSE OF PROCESSING AND LEGAL BASIS

In compliance with the conditions of lawfulness under Article 6 of the GDPR, Personal Data will be used for:

  1. enable navigation and detect the user experience of the Web Site

Legal basis: the legitimate interest of the Owner (Art. 6(f) of the GDPR);

  1. respond to user requests that may have been received through the use of the contact details/form, which can be found in the dedicated sections of the Web Site

Legal basis: the fulfillment of pre-contractual and/or contractual obligations (Art. 6(b) GDPR);

the legitimate interest of the Owner (art. 6(f) of the GDPR) to be more efficient, give information about the services offered;

  1. soft spam, to propose via e-mail products and/or services similar to those already purchased, unless an objection is requested to be expressed through the appropriate link contained in the communications received.

Legal basis: the legitimate interest of the Owner (Art. 6(f) of the GDPR);

  1. fulfill legal obligations, comply with orders from Public Authorities, ascertain possible liability in case of hypothetical computer crimes to the detriment of the site or its users.

Legal basis: the fulfillment of legal obligations (Art. 6(c) of the GDPR).

4) NATURE OF CONTRIBUTION

The provision of data is optional. However, failure to provide the data indicated as mandatory may result in the Owner being unable to deliver its services and/or provide the requested information.

5) TREATMENT MODE

The Data Controller carries out the processing of Personal Data in accordance with the principles of lawfulness, fairness and transparency. The processing of Personal Data is carried out by specially authorized personnel, including through the use of computer and telematic tools suitable for ensuring data security.

6) RETENTION PERIOD

In compliance with the provisions of Article 5 of the GDPR, Personal Data will be kept for the period of time strictly necessary for the purpose for which it was acquired. In particular, the retention period of data collected through contact requests is strictly limited to the time necessary to fulfill the user’s request. Thereafter, once the need for their retention ceases to exist, the Personal Data will be permanently deleted or anonymized.

7) DISCLOSURE OF DATA

Personal Data will not be disclosed but may be communicated to:

  • Third parties who carry out certain processing activities and/or activities related and instrumental to the same on behalf of the Controller, such as activities of a technical and/or organizational nature, including management activities of the computer system, telecommunications networks (including e-mail), advertising and communication services;
  • firms or companies as part of service and consulting relationships;
  • competent authorities for fulfillment of legal obligations and/or provisions of public bodies, upon request.

These entities process and will process Personal Data as autonomous Data Controllers or duly appointed Data Processors. The updated list of Processors is available upon request.

8) DATA TRANSFER TO THIRD COUNTRIES

Personal data will not be transferred to non-EU countries. In any case, in the event of transfer of Personal Data to third parties located abroad and, in particular, outside the European Union, the transfer to such third countries will take place only after the conclusion of specific agreements in accordance with Articles 44 et seq. of the GDPR and, specifically, on the basis of: (a) European Commission adequacy decisions issued in favor of third countries; (b) adequate guarantees expressed by the third party recipient under Article 46 of the GDPR; (c) binding business rules.

9) USER RIGHTS

At any time, pursuant to Articles 15 et seq. of EU Regulation 2016/679, you – as a data subject – may exercise the following rights:

  1. access the data processed by the Controller, obtain information about certain aspects of the processing, and receive a copy of the processed data (Art. 15 GDPR, Right of Access);
  2. verify the correctness of their data and request that it be updated or rectified (Art. 16 GDPR, Right to Rectification);
  3. Obtain the deletion or removal of their personal data by the Data Controller (Art. 17 GDPR, Right to Deletion);
  4. Obtain the restriction of the processing of one’s own data when certain conditions are met (Article 18 GDPR, Right to restriction of processing);
  5. receive their data in a structured, commonly used, machine-readable format, where technically feasible (Art. 20 GDPR, Right to portability);
  6. object to the processing of their data when it is done on a legal basis other than consent (Article 21 GDPR, Right to object).

Exercise of the rights listed above may be done by sending a request via e-mail, to privacy@privacyfed.eu

Finally, the user has the right, at any time, to lodge a complaint with the competent supervisory authority, for Italy the Garante per la Protezione dei Dati Personali: www.garanteprivacy.it.

10) THIRD-PARTY LINKS AND PLUG-INS

This policy is provided only for this Website and not also for other websites and social platforms that can be reached by the User through linking links and social buttons, particular buttons on the Website depicting the icons of the main social networks. For more information on the data processing operated by these external parties, please refer to their respective privacy policies.

11) UPDATES AND CHANGES

This policy may change over time. Changes will apply from the time of publication on the Web Site. Therefore, we invite users to consult this section regularly to check for the publication of the most up-to-date version of this privacy policy.

Date last updated: 16.01.2023

privacy-fed-logo-bianco

PrivacyFed is an independent federation that operates ethically between the needs of economic transactions, promotional information and protection of consumer rights.

info@privacyfed.eu

Viale Gran Sasso 11 20131 Milan, Italy

How does it work

The project

For companies

Please subscribe

Contact us

Frequently asked questions

Facebook Linkedin Instagram

Privacy Policy

Cookies

Acknowledgements

They say about us

Sustainability

Case History

Partners

Privacy Federation S.r.l. SB
Viale Gran Sasso 11 – 20131 Milan, Italy
P.IVA 12408040967

©privacyfed 2022