Web information pursuant to EU Regulation 2016/679 for the protection of personal data.
Dear user, in compliance with the provisions of EU Reg. 2016/679 (GDPR) and Legislative Decree 196/2003, as amended by Legislative Decree 101/2018, with this information the Fondazione Carlo Erba – as Data Controller – provides the necessary information regarding the processing of personal data provided on this web page. This information is valid exclusively for the website www.fondazionecarloerba.org and is not to be considered valid for other websites that may be consulted via links on the website in the Owner’s domain. Users/visitors must carefully read this Privacy Policy before submitting any type of personal information and/or filling in any electronic form or form on the website itself.
1. DATA CONTROLLER
The data controller – pursuant to articles 4 and 24 of EU Reg. 2016/679 – is Fondazione Carlo Erba, with registered office in Piazza Giuseppe Missori, 2, 20122, Milan, MI, C.F. 80078930155. The Data Controller can be contacted at the following email address: privacy@fondazionecarloerba.org
2. TYPES OF DATA PROCESSED AND COLLECTED
– Data provided voluntarily by the user: identification data and contact data provided by the interested parties in the contact form or in the email requesting information;
– Data collected passively, i.e. through the website (e.g. IP address, location, browser type);
– Cookies and other tracking systems: the website only uses technical cookies, which are used to perform navigation or to provide a service requested by the user; no tracking system is used.
It is specified that the optional, explicit and voluntary sending of emails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the communication.
3. LEGAL BASIS, LEGALITY AND PURPOSE OF THE PROCESSING
The legal basis that legitimizes the processing is the execution of pre-contractual obligations or the need to follow up on a request expressly formulated by the interested party.
We inform you that we will process the data communicated by you in compliance with the conditions of lawfulness provided for by art. 6 EU Reg. 2016/679 and to the extent strictly necessary to fulfil the following purposes:
to allow navigation and use of services on this website;
to respond to requests for information.
4. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF PERSONAL DATA
The data collected may be accessible only to authorized persons and will not be disclosed under any circumstances. The data collected may also be temporarily made accessible to companies, appointed pursuant to art. 28 EU Reg. 2016/679, for the management/maintenance of the IT system, communication networks and web platform.
5. DATA TRANSFER TO A THIRD COUNTRY AND/OR AN INTERNATIONAL ORGANIZATION
The data collected will not be transferred to Third Countries outside the European Union. It should be noted, however, that the use of Google Drive or Dropbox may involve the transfer of data to servers located abroad (both EU and non-EU), always in compliance with the applicable legal provisions and, in any case, in compliance with maximum security.
6. PERIOD OF RETENTION OR CRITERIA USED TO DETERMINE SUCH PERIOD
In compliance with the provisions of art. 5 EU Reg. 2016/679 and the principle of minimization, the data collected will be stored on protected computer systems for a period not exceeding the achievement of the purposes for which the personal data are collected. If for any reason you believe that the purpose of the processing has been exhausted (before the aforementioned deadline), you must give written notice to the Data Controller, who will proceed to the immediate cancellation of the data collected.
7. RIGHTS OF INTERESTED PARTIES AND METHODS OF EXERCISE THESE
In your capacity as interested party, you may assert your rights under Chapter III (articles 15-22) of EU Reg. 2016/679 by contacting the Data Controller by email at privacy@fondazionecarloerba.org, by registered mail with return receipt – c/o the address of the registered office of the Foundation – or by paper delivery.
The rights you enjoy, pursuant to EU Reg. 2016/679, are precisely the following:
– access;
– rectification;
– cancellation;
– revocation of consent;
– limitation of processing;
– opposition to processing;
– portability.
These rights are guaranteed to you without any particular charges or formalities for their exercise, which is essentially free of charge.
Without prejudice to any other administrative or judicial action udiziale, you may also submit a complaint to the Supervisory Authority in accordance with the provisions of EU Regulation 2016/679 and the Privacy Code, as amended by Legislative Decree 101/2018.
8. METHODS OF DATA PROCESSING
The personal data you provide will be processed, managed, and archived with the aid of electronic IT tools and in any case in a way that guarantees the security and confidentiality of the same. The processing will be carried out by expressly authorized internal personnel. The processing of personal data occurs without the intervention of automated systems or processes and no profiling activities are carried out.
9. NATURE OF THE PROVISION
Apart from what is specified for navigation data, the user is free to provide the personal data contained in the request forms or otherwise indicated in contacts to request the sending of information material or other communications. Failure to provide them may make it impossible to obtain what is requested.
10. DISSEMINATION OF DATA
The personal data collected will not be disclosed in any case and for any reason to third parties not authorized by the Data Controller and may be exhibited only upon request of the Judicial, Financial and Guarantor Authorities, as well as to all other subjects to whom communication is mandatory by law for the fulfillment of the aforementioned purposes.
The Data Controller
Fondazione Carlo Erba