Privacy consensus

 

INFORMATION ON DATA PROCESSING

EX ARTICLE 13 REG. EU NO. 679/2016

Published: April 24th, 2019

In order to ensure a correct and transparent use of personal data, which takes into account the specific circumstances and the context in which they will be processed, Fondazione Telethon kindly ask you to read the following information, in accordance with the provisions of Article 13 of the European Regulation n.679 / 2016.

Identity and contact details of the Owner and the Data Protection Officer

The Data Controller is Fondazione Telethon, based in Rome, Via Varese n.16 / B, in the person of Dr. Francesca Pasinelli, in accordance with the BoD resolution of 7 February 2013 (hereinafter referred to as the Data Controller "or" Owner "). The DPO is identified in the person of Dr Michela Maggi, Piazza del Liberty n. 8 20121 Milan; Telephone: 0249450269; Fax: 0247977003; website: www.maggilegal.it, Email mmaggi@maggilegal.it Pec: michela.maggi@milano.pecavvocati.it.

Purpose and methods of processing

Personal data will be processed for the following purpose: managing of the registration to the event "AATD Meeting 2019" (as an example which is not exhaustive: activities relating to the completion of registration, as well as administrative and fiscal tasks and any activity connected to its participation in the event including the compilation of an online abstract book, to be sent at the end of the event, to all participants, and containing the individual publications uploaded by each participant during registration, together with the individual names of the same, etc. ).

Legal basis: the legal basis of the process is the need to execute a contract pursuant to art. 6 paragraph 1 letter b) of the GDPR 679/16

Personal data will be processed manually and electronically with IT tools and will be kept in a database owned by the Data Controller.

Recipients or categories of recipients and areas of dissemination of personal data

Personal data will not be disseminated but may be communicated and acquired:

  • i) among Data Controller company personnel, with particular reference to employees and collaborators who deal with the specific activities in which the data processing is carried out , and that the treatment was authorized as well as
  • ii) the participants of the event by sending the abstract book online.
In addition, personal data may be communicated to third parties responsible for carrying out tax / legal consultancy or auditing activities for which they will acquire the data as independent data controllers

Data storage period

Personal data will be kept for the entire duration of the event, up to the preparation of the online abstract book, unless the data itself must be kept for legal obligations or to enforce a right in court.

Rights of the data subject

In relation to the aforementioned data processing, rights referred to in art. 13 GDPR 679/16 as better expressed in the articles 15-16-17-18-20-21 and 22 of GDPR 679/16 can be exercised and specifically:

  • - obtain confirmation of the existence or not of personal data, even if not yet recorded, and their communication in intelligible form;
  • - ask for access to personal data, in addition to the right to data portability;
  • - obtain the updating and rectification or the integration of data;
  • - object, in whole or in part:
    • a) for legitimate reasons to the processing of personal data, even if pertinent to the purpose of collection;
    • b) to the processing of personal data for the purpose of sending advertising materials or direct sales or for carrying out market research or commercial communication;
  • - obtain the cancellation and transformation into anonymous form or blocking of data processed in violation of the law, including data which does not need to be kept for the purposes for which the data was collected or subsequently processed;
  • - to submit a complaint to a supervisory authority;
  • - obtain confirmation that the operations referred to points 4 and 6 have been brought to the knowledge, also with regard to their content, of those to whom the data have been communicated, except for the case in which this fulfillment is revealed impossible or involves the use of means manifestly disproportionate to the protected right.

Nature of data provision and consequences of any failure to provide data

The provision of personal data in relation to the aforementioned processing is necessary for the execution of the contract of which the interested party is a part, in relation to the treatment connected to the management of the registration to the event.

Data transfer

Personal data are stored on servers located within the European Union. Regardless, it is agreed that the Controller may also move the servers outside the European Union if necessary. In that case, the Controller hereby ensures that the data shall be transferred outside the European Union in compliance with the provisions of applicable laws, after stipulating the standard contractual clauses required by the European Commission.

 

Francesca Pasinelli

General Manager Fondazione Telethon
as Data Controller