In compliance with the obligations deriving from the national legislation (Legislative De- cree 30 June 2003 No. 196, Code for the protection of personal data) and the Community (European Regulation 2016/679, GDPR) and subsequent amendments, this site respects and protects the confidentiality of visitors and users, putting in place every possible and proportionate effort not to harm user rights.
LEGAL BASIS OF THE PROCESSING
This site processes data based on consent. With the use or consultation of this site visitors and users explicitly approve this privacy statement and consent to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties necessary for the provision of a service.
The provision of data and therefore the consent to the collection and processing of data is optional; the User can refuse the consent, and can revoke at any time a consent already provided (through the Contact link at the bottom of the page).
DATA COLLECTED AND PURPOSES
Like all websites, this site also makes use of log files in which information collected in an automated way is stored during user visits. The information collected could be the following:
- - Internet protocol (IP) address;
- - Type of browser and device parameters used to connect to the site; - Name of the Internet service provider (ISP);
- - Date and time of the visit;
- - Web page of the origin of the visitor (referral) and exit;
- - Possibly the number of clicks.
The aforementioned information is processed in an automated form and collected in an exclusively aggregated and pseudonymised form in order to verify the correct functioning of the site and for security reasons; such information will be processed according to the legitimate interests of the holder.
For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as IP address, which could be used, in accordance with applicable laws, in order to block attempts at damage to the site itself or to cause damage to other users, or in any case harmful activities or constituting a crime. Such data are never used for the identification or profiling of the user, but only for the protection of the site and its users; this information is treated according to the legitimate interests of the holder.
The data received will be used exclusively for the provision of the requested service and only for the time needed to provide the service.
The information that users of the site deem to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any liability regarding any violation of laws. It is up to the user to verify that they have permission to enter personal data of third parties or contents protected by national and international standards.
The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the activities specified. In any case, the data collected from the site will never be provided to third parties, for any reason, unless it is a legitimate request by the judicial authority and only in the cases provided by law.
The data used for security purposes (block attempts to damage the site) are kept for 7 days.
PLACE OF TREATMENT
The data collected by the site are processed by the Data Controller located in Capriva del Friuli (GO) 34070 in Via Russiz, 4, and are only handled by technical personnel authorized to process, or by persons in charge of occasional maintenance operations.
TRANSFER OF DATA TO NON-EU COUNTRIES
This site may share some of the data collected with services located outside the European Union area. The transfer is authorized on the basis of specific decisions of the European Union and the Guarantor for the protection of personal data, in particular the decision 1250/2016 (Privacy shield), for which no further consent is required.
This site processes the data of users in a lawful and correct manner, adopting the appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. Processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the owner, in some cases, may have access to the data categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (as suppliers of third-party technical services, postal couriers, hosting provides, IT companies, communication agencies).
Pursuant to the 2016/679 European Regulation (GDPR) and national regulations, the User can, in accordance with the procedures and within the limits established by current legislation, exercise the following rights:
- - Request confirmation of the existence of personal data concerning him (right of access);
- - Know the origin;
- - Receive intelligible communication;
- - Having information about the logic, methods and purposes of processing;
- - Request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
- - In cases of processing based on a consent, receive only the cost of any support, its data provided to the holder, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
- - The right to lodge a complaint with the Supervisory Authority (Garante Privacy);
As well as, more generally, exercise all the rights that are recognized by the current provi- sions of the law.
Requests should be addressed to the Data Controller or Data Protection Officer.
In the event that the data are processed on the basis of legitimate interests, the rights of data subjects are guaranteed (with the exception of the right to portability that is not provided for by the regulations), in particular the right to oppose the treatment that can be exercised by sending a request to the data controller.
DATA CONTROLLER AND DATA PROCESSOR
Fondazione Villa Russiz with registered office in Capriva del Friuli (GO) 34070 in Via Russiz, 4, which can be contacted at + 39 0481 80047 and by email at firstname.lastname@example.org.
Responsible for the treatment Bottacin Fabrizio who con be contacted via email email@example.com or PEC firstname.lastname@example.org.