PRIVACY AND COOKIES POLICY
This privacy police has been drafted so as to set out the main methods used to manage the website www.fondazioneguidobernardini.org (hereinafter the “Website”), with reference to the processing of Users’ personal data (hereinafter the “Netizen” or “Data Subject”); this document also includes the processing performed on other websites, possibly consulted by the User through the use of links on the Website; ; this document also includes the processing performed on other websites, possibly consulted by the User through the use of links on the Website.
This document is a general outline giving information concerning the criteria used for the correct and lawful processing of personal data performed through or on the Website. The before mentioned criteria are set out in detail to the User within the Statement published on the Website itself, aimed at specifying the methods and goals of the processing for what concerns the specific services and/or information of all natures.
HOLDER OF THE DATA PROCESSING
Fondazione Guido Bernardini, having its registered office in Milano Italy Via Manfredo Camperio 11, mail firstname.lastname@example.org, Tel +39 02 45076787 Fax +39 02 45070212, is the Holder of your personal data.
THE DATA COLLECTION
The Users acknowledge the fact that the use of this website implies the processing of their, direct or indirect, personal data. Therefore, we collect direct and/or indirect data through the website www.fondazioneguidobernardini.org.
The data supplied on a voluntary basis.
The optional and voluntary supply of an e-mail address to addresses listed on the Website involves the later acquisition of the sender’s address, as well as any other personal data inserted in the communication necessary to answer to and fulfil the requests.
Moreover, you may forward your data to us by filling in specific online forms drafted by Fondazione Guido Bernardini so as to take advantage of the services offered by the website itself. A summary of all the specific information is published within the site-pages through which the data is collected so as to supply the requested services. Your personal data include, but are not limited to, your name, surname, e-mail address, your company and your telephone number.
You are the sole responsible for the correctness of the data supplied during the registration phase and the filling in of these forms, and as such, as of now, undertake to update the personal data supplied on a regular basis.
This policy, available from any web page, is adopted in accordance with the following rules and provisions:
- Article 13 of EU Regulation 2016/679;
- Provision of the Italian Privacy Authority No. 231 of 10 June 2021 (Guidelines on cookies and other tracking tools) integrating Provision No. 229 of 2014 and providing important clarifications in order to facilitate data controllers in the correct application of the current regulatory framework;
- Recommendation No. 2/2001 of the Group Article 29 concerning the minimum requirements for the online collection of data in the EU ;
- of the Directive 2009/136/EC, amending Directive 2002/58/EC (the so-called e-Privacy Directive), concerning the processing of personal data and the protection of privacy in the electronic communications sector;
- WP 29 Guidelines of 10 April 2019, ratified by the European Data Protection Board and replaced by the Guidelines 05/2020 on consent under Regulation 2016/679 adopted on 4 May 2020.
The following text explains 'what cookies are' and how they are used on this website.
What are cookies?
A "cookie" is a text file that a website sends to your computer or any other device connected to the Internet in order to uniquely identify your browser or to store information or configurations in it.
This site does not use passive tracking tools such as fingerprinting but it does use active identifiers such as cookies.
What type of cookies are in this website?
1. Strictly necessary technical cookies
These cookies are essential to accomplish the activities requested by the user. For example, to store information provided by the user while browsing through the website or to manage the "login" status during his/her visit.
This site uses technical cookies, automatically installed following the access to the site, for the specific purposes indicated with regard to each of them.
Technical cookies: these cookies include browsing or session cookies which are solely designed to enable the communication to be carried out over an electronic communications network, or to the extent strictly necessary for the provider of an IT service explicitly requested by the contracting party or user to provide such a service, or functional cookies which enable the user to browse according to a set of selected criteria which, inter alia, do not contain personal data (e.g. language, choices regarding certain types of non-technical device type cookies) so as to improve the service provided to the user.
Technical cookies used by this site expire once the browser is closed, except for those containing the user's choice of non-technical cookies, which expire after 6 months. These cookies do not allow the acquisition of personal data identifying the user.
2. Third-party Functional Cookies
3. Advertising or Profiling Cookies
This website does not use profiling or advertising cookies.
What to do in case of links to other sites?
Surfing the Fondazione Guido Bernardini website allows access, via links, to other websites managed by third parties. These sites might collect your personal details. Fondazione Guido Bernardini does not control the websites managed by these subjects and cannot be held responsible for their conduct.
How to give/revoke consent and manage preferences?
The user can manage his/her consent and change cookie preferences on this website via the cookie banner, which once closed can be retrieved by clicking on the footer link on this website.
The user can also manage cookie consent and preferences via the above mentioned third-party links, directly via his/her device or web browser settings.
The reiteration of the consent request when prior consent has failed is an unlawful activity which Fondazione Guido Bernardini shall not carry out.
If you previously refused to give your consent, the consent acquisition banner may be resubmitted to you in the following cases:
- Where at least six months have elapsed since your refusal;
- If the processing conditions have significantly changed, in which case the banner also serves the purpose of informing you about those changes (e.g. in the event of third-party changes);
- When the site administrator cannot be aware of the fact that a cookie has already been previously stored on the device in order to be transmitted during a subsequent visit by the same user to the site that generated it (e.g. hypothesis in which the user chooses to delete the cookies legitimately installed on his/her device while the administrator cannot keep track of the will to maintain the default settings and, therefore, to continue browsing without being tracked).
How to control third-party cookie settings
You can find information on how to manage cookies in some of the most popular browsers at the following addresses:
- Google Chrome
- Mozilla Firefox
- Apple Safari
- Microsoft Internet Explorer
- Microsoft Edge
- More information and details on the different types of cookies, how these work, and their characteristics can be found on www.AllAboutCookies.org and on www.aboutcookies.org.
In addition, you can manage some mobile application tracking tools by deactivating them through the appropriate device settings, such as mobile advertising settings or tracking settings in general (the user can refer to the device settings to find the relevant one). If you want to delete cookies from your smartphone/tablet's internet browser, please refer to your device's user guide.
The IT system and the software procedures used for the functioning of the website automatically acquire some personal data, which are then usually transferred following the use of the Internet communication protocols.
This information is not gathered to be associated to identified users, but that due to their nature may allow the identification of the User through the elaboration of and in connection to the data held by third parties.
The aforesaid category includes the IP addresses and/or the domain names of the computers used by the Users connecting to the website, the user agents, the URI (Uniform Resource Identifier) addresses of the requested resources, the type of web browser used, the moment in which the connection to the site is made, the pages containing the link through which you were connected to the website www.fondazioneguidobernardini.org, the time at which the request is made, the method used to forward the request to the server, the dimension of the file obtained as an answer, the numeric code indicating the state of the answer given by the server (positive, error, etc.) and any other parameter involving the Users’ operating system and their IT environment.
These data are solely used or the purpose of retrieving anonymous statistical information involving the use of the website, for the management of the internal system, to identify any problems concerning the server, for the website’s administration and to check its correct functioning and shall immediately be erased after their processing. We shall also take advantage of this information to collect demographic data involving the origin of the internet service suppliers of the users surfing on our site.
The data may also be used to investigate any responsibilities in case of hypothetical IT crimes performed against the Website: without any prejudice for this possibility, at present the data concerning the web-connections are not kept in a permanent manner.
VOLUNTARY NATURE OF THE DATA TRANSFER
Without prejudice to the specific information contained in the data involving the surfing on the Website, the User shall always be free to grant his/her personal data for the aims for which he/she is connecting to the Website (for instance, request of information or documents through the filling in the “Contact Us” form,). Nevertheless, the denial of consent to grant the data could jeopardize the possibility to fulfil the User’s requests.
DATA PROCESSING AND STORAGE
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected.
Once this deadline has elapsed, the data will be deleted or transformed into an anonymous form, unless their further conservation is necessary to fulfill legal obligations or to comply with orders issued by Public Authorities and/or Supervisory Bodies.
Where necessary, the processing carried out by the Holder/Data Controller on personal data collected from the website of the Holder/Data Controller may be based on automated decision-making processes that produce legal effects or that significantly affect the data subject, such as, for example, the processing carried out use of profiling cookies.
Appropriate technical and organizational security measures are observed to prevent damage, whether material or immaterial (e.g. loss of control of personal data or limitation of rights, discrimination, theft or identity usurpation, financial loss, unauthorized decryption of pseudonymization, prejudice to reputation, loss of confidentiality of personal data protected by professional secrecy or any other significant economic or social damage).
No data deriving from web services is finally disseminated.
PLACE OF DATA PROCESSING
The processing of the personal data involving the performance of the web services of the Website www.fondazioneguidobernardini.org is performed within Fondazione Guido Bernardini’s registered office by the Company’s personnel responsible for the processing itself and by the Subject appointed by the Company to manage the Website, check its correct functioning and implement the security measures.
The data may also be processed by third parties appointed to perform occasional maintenance operations.
The communication and/or possible disclosure of the personal data shall solely occur in compliance with the provisions set forth within the GDPR: with prior consent of the Interested Party/Data Subject or in compliance with the Law, as provided for by article 6 and article 7 of the GDPR.
The disclosure of the aforesaid data may, for instance, be made upon request of Government Entities and/or Bodies or any third party, also, but not limited to, in compliance with the orders of any Judicial Authority if provided for or allowed by the Law.
It is requested not to send curricula because the Fondazione Guido Bernardini does not recruit personnel.
We herewith kindly ask you not to forward any sensitive data by means of the Internet (such as for instance data concerning your health, your sexual inclinations, your religious views, your political views, etc.). In case you will nonetheless do so, we shall be obliged to immediately cancel these data.
Fondazione Guido Bernardini may take advantage of third parties for the management of the website and the technologic part. These third parties shall have to comply with the legislations in force and shall act as autonomous holders of the processing. In case these third parties shall have to perform activities, which could potentially involve the processing of personal data, they shall be the specific external responsible for what concerns the Privacy or the external Privacy Responsible.
In order to pursue the purposes described, or in the event that this is indispensable or required by law or by authorities with the power to impose it, the Controller reserves the right to communicate the data to recipients belonging to the following categories:
- subjects who perform IT maintenance or similar services;
- Authorities, Supervisory Bodies and, in general, public or private subjects with functions of public relevance (eg: Prefecture, Police Headquarters, Judicial Authorities, in any case only within the limits in which the conditions established by applicable law are met);
- subjects that perform data acquisition, processing and processing services;
- subjects that carry out documentation archival and data-entry activities;
- subjects who provide assistance to the Interested Party/Data Subject;
- Professional firms or Companies in the context of assistance and advise services;
- subjects who release support in the activities referred to in the various privacy policies on the website.
The Data may also be known, in the exercise of the duties assigned, by the Holder/Data Controller's staff, including external collaborators, consultants, employees of companies external to the Holder/Data Controller, all specially appointed to process the data.
Social Plug in
Our web pages may contain social network plug-ins (es. Linkedin o Twitter). If you access one of our web pages equipped with a similar plug-in, the Internet browser connects directly to the social network and the plug-in is displayed on the screen thanks to the connection with the browser.
LINKS AND OTHER WEBSITES
The security of your information is essential for the Fondazione Guido Bernardini. Specific security measures are complied with so as to prevent the loss of data, illegal use of or incorrect use of as well as non-authorized access to the aforesaid data. Anyhow, Internet’s nature, being a global means of communication, does not guarantee the absolute security of your data and information during the communication phase on the Internet, or during the memorization and/or archiving within our systems. Third parties, such as hackers, may in fact get to know this information. In the same manner, the forwarding by means of e-mail or through the “contact us” instrument, and/or any other similar instrument or function contained on our website, may not be safe as third parties could steal your data. The clients are solely allowed to access the Reserved Sections after sending the password by the Holder.
TRANSFER OF EXTRAUE DATA
No extra EU transfer of data related to our Netizens is foreseen. Where necessary and in limited cases, for the pursuit of the aforementioned purposes, the data of the Interested Party/Data Subject may be transferred abroad, to non-EU countries/organizations that guarantee a level of personal data protection deemed appropriate by the European Commission with its own decision, or in any case on the basis of other appropriate guarantees, such as the Standard Contractual Clauses adopted by the European Commission and of which Fondazione Guido Bernardini make use. A copy of any data transferred abroad, as well as the list of non-EU countries/organizations to which the Data have been transferred, may be requested from the Holder/Data Controller by submitting a request to the organizational unit responsible for replying to the Data Subject by ordinary mail sent to the Holder/Data Controller's registered office or by e-mail sent to email@example.com .
THE RIGHTS OF THE INTERESTED PARTY/DATA SUBJECT
Pursuant to articles 15 to 22, the GDPR Regulation confers to the Interested Parties/Data Subjects the possibility to exercise specific rights. In particular, the interested party can obtain:
a) confirmation of the existence of processing of personal data concerning him and, in this case, access to such data;
b) the correction of inaccurate personal data and the integration of incomplete personal data;
c) the cancellation of personal data concerning him, in cases where this is permitted by the Regulations;
d) the limitation of the treatment, in the hypotheses provided for by the Regulations;
e) the communication, to recipients to whom personal data have been transmitted, of requests for rectification/deletion of personal data and limitation of processing received by the interested party, unless this proves impossible or involves a disproportionate effort;
f) the receipt, in a structured format, of common use and legible by automatic device, of the personal data provided to the Holder/Data Controller, as well as their transmission to another data controller, at any time, including termination of any relationship entertained with the Owner.
The Interested Parties/Data Subjects also has the right to object at any time to the processing of personal data concerning him/her: in such cases, the Holder is obliged to refrain from further processing, subject to the provisions permitted by the GDPR.
Where consent is required for the use of your data for promotional purposes you may deny it without this refusal having any consequence on your main request. If you have given your consent you can always revoke it by using the same modalities of release or email below. The revocation does not affect previous treatments.
Requests can be submitted by ordinary mail sent to the Holder/Data Controller's office or by e-mail sent to the address firstname.lastname@example.org. The Interested Party/Data Subject also has the right to lodge a complaint with the Privacy Guarantor. See: www.garanteprivacy.it.
QUESTIONS AND/OR COMMENTS