The personal data controller is Adria Congrex srl, with registered office in via Sassonia 30 RN Italy, in the person of its pro tempore legal representative.
Information pursuant to GDPR 679/2016 – ex Arts. 13-14.
In compliance with Arts. 13-14 of GDPR 679/2016 (hereinafter the GDPR), please be informed that the company, in relation to the purposes of processing hereinafter explained, needs to process certain personal data. Processing is carried out in compliance with the following terms and conditions.
Adria Congrex srl places utmost importance in maintaining confidentiality in order to safeguard and protect the personal data of any subjects it comes into contact with.
All site users are therefore kindly invited to first visit all sections of this document, which contains a description of the methods used to manage the website with regard to the processing of personal data relating to visitors to it.
This document also aims to provide information, pursuant to Art. 13 of EU Regulation 2016/679 and applicable national legislation on matters relating to the processing of personal data, to all those who interact with the web services provided by gimsi.it, accessible online at the following address: www.gimsi.it.
This information is provided and valid for this website and sub-domains attributable to it alone and not for any other websites not attributable to it that may be consulted by the user through links found on gimsi.it. Adria Congrex Srl has no control whatsoever over such websites or the procedures they apply with regard to data confidentiality and therefore, we recommend users check the privacy policies of all the subjects contacted, prior to disclosing any personal data or information to them.
Data Protection Officer
Please note that a Data Protection Officer has been appointed. The Data Protection Officer is Roberto Piccardi and he can be contacted at the following address: email@example.com.
Types of data processed and purposes of processing
Personal data provided by users are collected, processed and stored for the following purposes:
- acquiring initial contact details and information;
- organising and promoting events and conferences organised for third parties;
- sending information and promotional material relating to the services offered and/or events organised and promoted and sending newsletters or other promotional initiatives and sales communications, even via email or mobile phone;
- any other purpose for which the data subject has expressly granted consent.
During normal functioning, the IT systems and software procedures used to operate the website may acquire certain personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be attributed to identified data subjects, but due to its nature, could make it possible to identify users through processing and association with data held by third parties.
This category of data includes the IP addresses or domain names of computer devices used to connect to the website, the URI (Uniform Resource Identifier) addresses of the requested resources, the time the request was made, the method used to send the request to the server, the size of the file received in reply, the numerical code indicating the status of the reply given by the server (sent successfully, error, etc.) and other parameters relating to the user’s operating system and IT environment.
Such data are used for the sole purpose of drawing up anonymous statistical information on the use of the website and to check its correct functioning. With the exception of the express provisions of the “disclosure and transmission of data” section, the data are not disclosed to third parties and are not disseminated.
A “cookie” is a small text file transferred by the web server to the user’s computer device. Its purpose is to inform the server regarding user access to a specific web page and other information that it obtains from the parameters that can be read by the system via functions contained in the web page. Cookies can be either “temporary” (or “session” cookies that are deleted when the browser is closed) or “permanent” (that are memorized on the user’s hard disk unless the user cancels them).
The website uses both session cookies and persistent cookies in order to:
- keep a trace of navigation sessions in anonymous form;
- improve website navigation;
- personalise services;
- analyse website traffic models in aggregate form.
The persistent cookies we use can only store personal data if the user has registered with the website and has given consent for the identifying personal data input onto the website to be stored. Otherwise, our server only recognises that an unidentified visitor, with that particular cookie, has returned to the website.
With the exception of the express provisions of the “disclosure and transmission of data” section, such data are not disclosed to third parties and not disseminated.
Click here for full information.
Data provided voluntarily by the user
Users are requested to provide personal data (e.g. name, surname, email address, etc.) only when they wish to contact us or to use the services offered on our website. In such cases, users are always given appropriate information and should it prove necessary, are asked to provide consent. The data provided by the user will be processed in compliance with the purposes and methods indicated in this information notice and with the specific information made available from time to time.
Personal data are processed using manual and IT tools in order to achieve the purposes for which they were collected. Specific security measures are complied with in order to prevent the loss of data, its illicit or incorrect use and any non-authorised access.
Data processing will be carried out be personnel directly employed by Adria Congrex srl and/or by natural and legal persons specifically appointed by the same and trained pursuant to the definitions provided by EU Regulation 2016/679, duly-appointed managers, authorised and trained to process data.
The data processed by this website and the services offered through it are processed on the basis of consent and/or on the basis of contract agreements and the legitimate interest of the data controller.
The data subjects are all users of the website or the services available through it aged 16 or over or aged 18 or over wherever provided for in the individual information notes.
Optionality of providing data
Users are free to decide whether or not to provide personal data to Adria Congrex srl through the website and/or services connected to it.
Failure to provide the data, as indicated each time in the information provided for users, may mean Adria Congrex srl is unable to provide the service requested.
Disclosure and transmission of data
The data provided will not in any case be disseminated or disclosed to third parties, with the exception of subjects whose right to access the data is recognised by law or by order of the authorities, as well as subjects, including external and/or overseas subjects, that Adria Congrex srl appoints to carry out activities that are instrumental and/or additional to the services offered and the benefits connected to the latter, including providers of software, web application and storage service solutions, including those provided via cloud computing systems.
Users should be aware that in order to provide the aforementioned services, the data collected will not be disclosed or transmitted to non-EU countries, unless there are adequate guarantees pursuant to Arts. 45-49 of EU Regulation 2016/679. In this event, Adria Congrex srl will guarantee suitable security measures pursuant to the provisions of the Regulation. The data subject may request further information by simply sending an email to the following address:firstname.lastname@example.org.
Duration of data processing
Unless otherwise specified, personal data will be processed for the entire period during which the data subject uses this website and the services provided through it. In the event of revocation of consent, personal data will be stored by Adria Congrex srl in order to prove fulfilment of its obligations, until the limitation period has been reached. The maximum duration of processing is linked solely to legal obligations attributable to fiscal, tax and legal purposes.
Rights of the data subject
Personal data subjects can, at any time, exercise their rights against the data controller pursuant to Arts. 15 to 22 and 34 of the Regulation and applicable national laws on personal data processing. In particular, they may:
- a) access data and obtain confirmation regarding the existence or otherwise of personal data concerning them and its communication in intelligible form;
- b) obtain information regarding the origin of personal data; the purposes and means of processing it; the logic applied in the event of processing carried out using electronic tools; details identifying the data controller; managers and appointed representative; the subjects or categories of subjects to whom the data may be disclosed or who may become aware of it in their capacity as appointed representative on the territory of the state, manager or appointee;
- c) obtain the updating, correction or integration of the data, as well as the portability of the same;
- d) obtain the cancellation, limitation, transformation in anonymous form or blocking of data processed, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
- e) obtain confirmation that the aforementioned operations were brought to the attention of those to whom the data were disclosed or disseminated, with the exception of when such fulfilment is impossible or implies the use of means that are manifestly disproportionate to the right being protected;
- f) oppose, either in total or in part, for legitimate reasons, the processing of personal data concerning them, whether pertinent to the purpose of collection or the sending of advertising material or direct sales information or for carrying out market research or for commercial communications;
The data subject also has the right to make a complaint to the supervisory authority, which in Italy is the Garante per la Protezione dei Dati Personali (Italian Data Protection Authority).
Furthermore, the data subject has the right to revoke the consent given for the processing of personal data at any time.
To exercise such rights, the data subject can contact the data controller directly by sending an email to the following address: email@example.com.
Further information regarding the processing of personal data carried out through this website and/or the services connected to it can be requested by writing to firstname.lastname@example.org.
For further details regarding personal data processing methods, the request to access, modify or cancel data or to oppose the use of data, please contact email@example.com.