Privacy Policy
- IDENTITY OF THE DATA CONTROLLER. CONTACT DETAILS
In compliance with the obligations prescribed by Article 13 of the European Regulation 2016/679 (General Data Protection Regulation, hereinafter "GDPR") and the national legislation in force on the "protection of natural persons with regard to the processing of personal data and the free movement of such data", the Lo Doil Association with head office in Frazione Closé 1 - 11020, Arnad (AO), Tax Code and VAT number 00656270071 (hereinafter "the Controller"), which can be contacted for these purposes at the following e-mail address: festalardo@gmail.com, in view of the importance it attaches to the protection and security of the personal data provided by the user (henceforth, in terms of the GDPR, 'Data Subject', in this category including, in addition to natural persons, also legal persons) to whom such data refer, directly or indirectly, through the Controller's website and/or through its other channels multimedia contact channels (e.g. mailing service, newsletter, sms, whatsapp, etc.). By accessing and browsing the website, or through other contact with the Controller, the With access by browsing the website, or any other contact with the Controller, the interested party assumes all responsibility in relation to the availability and truthfulness of the data data provided, which will be processed according to principles of lawfulness, correctness, transparency minimisation, accuracy, integrity and confidentiality, collected for specific, explicit and legitimate purposes and subsequently legitimate purposes and subsequently processed in a manner not incompatible with those purposes, and stored in a form which permits identification of data subjects for a period of time not exceeding the achievement of the the purposes for which they are processed, unless they need to be kept for a longer period, by reason of legal obligation or by order of an Authority. - Navigation data
The computer systems and software procedures used to operate this site as well as the multimedia contact channels used by the Data Controller, acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. It is this is information that is not collected to be associated with identified interested parties, but which by its very their very nature could make it possible to identify users, through processing and association with other data held by third parties. - DATA COMMUNICATED BY THE USER
The optional, explicit and voluntary sending of messages to the contact addresses of the Controller, messages private messages sent by users ("Interested Parties") to social media profiles/promotional pages (where this possibility is provided), as well as the completion and submission of forms on the Controller's website, entail the acquisition of the sender's ("Interested Party") contact data, necessary to reply, as well as of all personal data included in the communications and/or possibly linked to the promotional purposes The personal data in question do not belong to special categories (such as, for example, name, address, telephone number, e-mail address, etc.). (such as, for example, name, surname, telephone number and e-mail address, etc.), provided by the same person concerned to enable their identification, and/or the acquisition of contractual and/or pre-contractual information. pre-contractual information. - PURPOSE AND LEGAL BASIS
The processing of personal data relating to the data subject, insofar as as automatically acquired or voluntarily provided when accessing contact services or via a link to the Controller's e-mail address, where applicable, is carried out in order to to implement pre-contractual or contractual measures (Art. 6(1)(b) of the GDPR), or to enable maintenance of the site and/or other communication channels, to guarantee security, to check its proper functioning and to obtain statistics in relation to its use (Art. 6(1)(f) of the GDPR). GDPR), or for the pursuit of the direct or indirect promotional purposes of the Data Controller in the event of consent freely and specifically given by the data subject (Art. 6(1)(a) of the GDPR). express consent, the data provided by the data subject are optional and therefore consent with respect to the processing of the data is optional. and therefore consent with respect to the processing of the same may be denied or revoked by the data subject at any time and with the same ease with which it is given, without prejudice to the lawfulness of the processing carried out before the revocation, with the consequence that the failure to give and/or the revocation of consent to the processing of such data will not prevent access to the service by the Interested Party (so-called 'user') but the Holder will not be able to send its commercial communications, allow access to the advantages possibly dedicated and/or personalise the forwarding of the same.
The processing of all personal data described above may in any case be carried out for the purpose of management and execution of the fulfilments provided for by the regulations in force (of an accounting administrative, fiscal, etc.), or for the management of disputes and possible litigation (Art. 6, par.1, lett. c and lett. f of the GDPR). - PROCESSING METHODS AND RETENTION PERIODS
The processing of all the aforementioned data will be mainly automated, with logic strictly related to the aforementioned purposes, by means of directly managed archives and/or integrated systems of a paper and/or computer nature and/or websites owned by or in use by the Data Controller and for it by persons specifically trained and authorised (Articles 28(3)(b) and 29 of the GDPR) or designated (Article 2 quaterdecies Legislative Decree 101/2018), or by third parties appointed as Data Processors pursuant to Art. 28 of the GDPR, to consult the list of which the data subject may contact the Controller at the contact addresses above.The Data Controller has adopted appropriate security measures against the risk of loss, misuse or alteration of such data by adopting technical and organisational measures appropriate to the risk and Article 32 of the aforementioned GDPR, with the adoption of protected data transmission protocols (known as http or https), and storage on servers located in the territory of the European Union, subject to an advanced advanced back-up and disaster recovery system, protected by firewalls, with strict restriction of access to personal data personal data, on a need-to-know basis and only for the purposes communicated.The personal data provided by the data subject or otherwise processed by the Data Controller are saved for the time necessary to fulfil the specific purposes, i.e. for a period of time not exceeding 12 months from the date on which the service is provided of the service (exclusively to comply with the same) or upon withdrawal of consent in the case of processing carried out for promotional purposes of the Controller. In any case, no more than 5 years from the conferment automatically or voluntarily, except in the event of regulatory obligations to store and/or the need to ascertain of offences by the judicial authorities. - RIGHTS OF THE INTERESTED PARTIES
Data subjects have the right to obtain, in the cases provided for access to their personal data, rectification, deletion of the same, restriction of the processing concerning them or to object to the processing, to this end by contacting the Controller at the addresses indicated in point 1 and expressing their wish to exercise the rights provided for in Articles 15-22 of the GDPR which can be consulted in full at www.garanteprivacy.it/regolamentouewithin the limits and under the conditions Pursuant to Articles 77 and 79 of EU Reg. 2016/679, finally, the Data Subject has the right to right to seek judicial redress, without prejudice to any other administrative or available, including the right to lodge a complaint with a supervisory authority (Garante per the Protection of Personal Data, Piazza Venezia 11 - 00187 Rome, www.gpdp.it - www.garanteprivacy.it, e-mail: garante@gpdp.it, Fax: (+39) 06.69677.3785 Telephone switchboard: (+39) 06.69677.1).
The Controller reserves the right to make changes to this Policy at any time, with binding effects from the date of its publication, by giving information on this page which therefore may be subject to updates over time, also in compliance with European and national regulations on the subject. Users (Interested Parties) are therefore invited to constantly check the content of the Information Notice in order to ensure that they agree with any changes (taking as reference the date of last modification indicated at the bottom of the same), being required to stop browsing the website website and respectively the use of the service provided through the Controller's other communication channels in the case of non-acceptance of the same.
Last modified 30/07/2024