Information on the processing of personal data
eu regulation 2016/679 of the european parliament and of the council
(GENERAL DATA PROTECTION REGULATION - GDPR)
eu regulation 2016/679 of the european parliament and of the council
(GENERAL DATA PROTECTION REGULATION - GDPR)
As required by Article 13 of the European Regulation on the Protection of Personal Data 2016/679 (hereinafter also referred to as the " Regulation", "General Data Protection Regulation" or "GDPR"), before proceeding to the processing of personal data (hereinafter also referred to as " Data" or "the Data"), the Data Subject (user of the website https://www.romagrandprix.it) is informed that his or her Personal Data, collected through the website, are subject to processing by the Data Controller by means of computer and/or telematic tools, for the purposes indicated in this information notice. To this end, the interested party is subject to the Privacy Policy prepared by the Italian Taekwondo Federation (hereinafter also referred to as "FITA " or " the Federation" or "the Owner" or "the Data Controller" or "the Body") as the creator and promoter of the activities available on the website https://www.romagrandprix.it.
1. Data Controller and Data Protection Officer
The Data Controller of your data is Federazione Italiana Taekwondo, with registered office in Viale Tiziano, 70 - 00196 Rome (RM), C.F. 06926800589.
In accordance with Articles 37 et seq. of the GDPR, FITA has appointed a Data Protection Officer who can be contacted at the following e-mail address: dpo@taekwondoitalia.it.
For further information on the exercise of your rights, please consider the paragraphs entitled "Rights of data subjects" and "Methods and exercise of rights" in this notice.
2. Legal basis and purpose of processing
The Data provided when browsing the https://www.romagrandprix.it website are processed by the Data Controller in accordance with the regulations in force.
The legal basis of the processing is identified in the performance of the statutory activities of FITA managed through the website, in the management and facilitation of the website itself, in the management of the reserved areas, where present, of the website, and in the consent to processing by the data subject, where provided for and requested.
The processing of your Data by the Data Controller, provided during your navigation/use of the sections of the website https://www.romagrandprix.it, is aimed at pursuing the following purposes:
- Processing of information requests: in the event that you decide to contact us to request information by sending an e-mail using the hypertext links, e-mail addresses or contacting us by telephone, using the telephone contacts on the site, or if you fill out the multimedia form in the "Contacts" section of the site, your data (personal and contact details) will be processed to process your request and provide you with the necessary information. In this context, the legal basis of the processing is identified in the interest of FITA in processing the information requests made by the data subject.
In this context, it is specified that the processing may also be carried out for the purpose of fulfilling the obligations provided for by law, regulations and, in general, by the legislation applicable from time to time.
3. Nature of processing
In relation to the purposes indicated in point 1 of the paragraph "Purposes and legal basis of data processing - Processing of information requests", the provision of your data is compulsory. Failure to provide your data will make it impossible for the Data Controller to take charge of and process your requests for information.
4. Data processed
The Data processed by the Controller are those provided by the user when browsing the website https://www.romagrandprix.it and, depending on the processing operations identified in Point 1 "Purposes and legal basis of the processing", may include: name, surname, contact details, e-mail.
5. Methods of treatment
The processing of the Data is carried out by the Owner in compliance with the provisions of the regulations in force. The Data Controller processes the Data by means of computer and/or telematic instruments and with organisational and logical methods strictly related to the pursuit of the purposes indicated in this information notice, as well as by adopting the appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of the Data, their loss and their unlawful and incorrect use.
However, the Owner cannot guarantee its users that the measures adopted for the security of the site and the transmission of Data and information on the site itself are able to limit or exclude any risk of unauthorised access or dispersion of Data by devices belonging to the user. For this reason, users of the site are advised to ensure that their computer is equipped with appropriate software for the protection of network data transmission (e.g. up-to-date antivirus software) and that their Internet provider has adopted appropriate measures for the security of network data transmission.
The Data Controller also undertakes to process the Data in accordance with the principles of correctness, lawfulness and transparency, to collect them to the extent necessary and accurate for processing and to allow their use only by staff authorised for this purpose. The management and storage of the Data acquired will take place in archives or on servers located within the European Union owned by the Data Controller and/or third party companies, appointed as External Data Controllers and, in any case, currently located in Italy.
6. Data retention times and criteria for determining retention times
In relation to the different purposes for which they are collected, the Data will be kept for the time strictly necessary to achieve those purposes and, in any case, in accordance with the applicable regulations.
In any case, the Data Controller shall take care to avoid using the data indefinitely, periodically checking that the interest of the person to whom the data refer is still valid.
7. Recipients and Data Processors
The Data collected will not in any way be disclosed or communicated to third parties, except in the cases provided for by the information and/or the law and, in any case, in the manner permitted by it. The Data will be processed within the limits and for the purposes described by the employees of the Owner. Some Data processing may also be carried out by third parties, appointed as External Data Processors, which the Data Controller uses or may use for the management of the contractual relationship, for the performance of the activities envisaged in the Articles of Association and for the organisational requirements of its business. In particular, the Data may be communicated, by way of example, to:
-
- Subjects, both public and private, who can access the Data by virtue of provisions of law, regulations or Community legislation, within the limits provided for by these rules;
- Subjects who need access to the Data for purposes related to the contractual relationship between the parties, to the extent strictly necessary for the performance of ancillary tasks (such as, for example, banks and credit institutions, technical service providers, hosting providers, IT companies, communication agencies, postal couriers and shipping companies);
- consultants, to the extent necessary for the performance of their professional duties.
8. Transfer of Data Abroad
The management and storage of personal data shall take place on the servers of the Data Controller and/or of third party companies duly appointed as External Data Controllers located within the European Union.
Personal data may be transferred abroad, in accordance with the provisions of current legislation, including to countries outside the European Union. The transfer to non-EU countries, in addition to the cases in which this is guaranteed by Adequacy Decisions of the Commission, is carried out in such a way as to provide appropriate and adequate Guarantees pursuant to Articles 46 or 47 or 49 of the Regulation.
9. Rights of interested parties
As a Data Subject, we inform you that you may exercise your rights under the GDPR, namely:
-
-
- the right, pursuant to article 15, to obtain confirmation as to whether or not Data concerning you are being processed and, if so, to obtain access to the Data and to the following information: I) the purposes of the processing; II) the categories of Data concerned; III) the recipients or categories of recipients to whom the Data have been or will be communicated, in particular if third countries or international organizations; IV) when possible, the expected period of retention of the Data or, if this is not possible, the criteria used to determine this period; V) the existence of the data subject's right to request from the controller the rectification or erasure of the Data or the restriction of their processing or to object to their processing; VI) the right to lodge a complaint with a supervisory authority, pursuant to art. 77 ff. of the GDPR; VII) where the Data are not collected from the Data Subject, all available information on their origin; VIII) the existence of an automated decision-making process, including profiling as referred to in Article 22(1) and (4) of the GDPR, and, at least in such cases, meaningful information on the logic used, as well as the importance and expected consequences of such processing for the Data Subject IX) the right to be informed of the existence of adequate safeguards, pursuant to Article 46 of the GDPR, relating to the transfer, if the Data is transferred to a third country or international organisation;
- the Data Subject will also be able to exercise the rights, where applicable, set out in Articles 16-21 of the GDPR (right of rectification, right to be forgotten, right to restriction of processing, right to Data portability, right to object).
-
10. Methods of exercising rights
The data subject may at any time exercise the above-mentioned rights and request the updated list of data processors by sending a request to the following e-mail address privacy@taekwondoitalia.it.
11. Amendments to this policy
The Data Controller reserves the right to make changes to this Privacy Policy at any time by publicising them to users on the website https://www.romagrandprix.it. Therefore, please consult this page frequently, taking as reference the date of the last modification indicated at the end of the document. In the event of non-acceptance of the changes made to this Privacy Policy, the Data Subject may request the Data Controller to delete his/her Data. Unless otherwise specified, the previous Privacy Policy will continue to apply to the Data collected up to that moment.
Privacy Policy updated on 27/05/2020