DATA CONTROLLER is MARGHERITA SOCIETA’ COOPERATIVA SOCIALE with registered office in Sandrigo (VI), via A. Andretto 7, contactable at privacy@cooperativamargherita.org.
CONTACT DETAILS OF THE DATA PROTECTION OFFICER (DPO) The contact details of the DPO are as follows: dpo@cooperativamargherita.org.
TYPES OF PERSONAL DATA COLLECTED
a) Browsing data
Browsing the Site and accessing related services involves acquiring some personal data related to your browsing, such as, for example, the IP addresses or domain names of the computers you use to connect to the Site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the operating system and the IT environment you use. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow the identification of such data subjects.
b) Personal data provided directly by the User
Margherita Società Cooperativa Sociale processes the personal data you voluntarily provide when you request information, make complaints, register for an event, or request the sending of newsletters or promotional communications, such as, for example, personal details and contact information.
c) Cookies
The Site uses so-called cookies and we therefore ask you to read the dedicated information available at the following link Cookie Policy.
To manage cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool “Real Cookie Banner.” Details on how “Real Cookie Banner” works are available at https://devowl.io/rcb/data-processing/.
The legal bases for processing personal data in this context are Article 6 (1) lit. c GDPR and Article 6 (1) lit. f GDPR. Our legitimate interest is the management of cookies and similar technologies used and related consents.
The provision of personal data is not contractually required nor necessary for the conclusion of a contract. You are not obliged to provide personal data. If you do not provide personal data, we will not be able to manage your consents.
PURPOSES, LEGAL BASIS, AND RETENTION PERIOD
Your personal data will be processed by the Data Controller for:
| # | PURPOSES | LEGAL BASIS | RETENTION PERIOD |
| A | Site Navigation: browsing data is processed to allow you to navigate the Site and access related services and, in particular, to obtain anonymous statistical information on the use of the Site and the services offered, to check its correct functioning, and for security reasons | Legitimate interest of the Data Controller | For the period necessary for the relevant processing |
| B | Contacts: responding to inquiries and receiving information about the services provided | The data subject gives consent | Until consent is withdrawn or for 24 months from the last interaction |
| C | Handling complaints | Legitimate interest of the Data Controller | For the period necessary for the purpose for which the data is collected in accordance with applicable regulations (for example, in terms of prescription) |
| D | Event registration | The data subject gives consent | Until consent is withdrawn or for 24 months from the last interaction |
| E | Marketing purposes: we will use your personal data to manage your subscription to the newsletter and to send you information about our services using various electronic communication means (e.g., email, SMS, online sponsorships). You can unsubscribe from the Newsletter at any time through the appropriate link at the bottom of each email received or by contacting the data controller at the addresses indicated. | The data subject gives consent | Until consent is withdrawn |
LEGAL BASIS FOR PROCESSING
The personal data indicated on this page is processed by the data controller as necessary for the management of the site and, based on specific information, and where necessary based on consent, to offer and perform services offered by the site itself.
PROCESSING METHODS
Your data will be processed by the Data Controller mainly using IT and telematic methods. Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access. The Data Controller has adopted all the adequate security measures required by law.
CATEGORIES OF RECIPIENTS OF PERSONAL DATA AND DATA DISCLOSURE
The recipients of the data collected following consultation of the site may be the subjects designated, pursuant to Article 28 of the Regulation, as data processors, for the provision, delivery, and operational management of the technological platforms used.
The personal data collected is also processed by the data controller’s staff, who act based on specific instructions provided regarding the purposes and methods of the processing itself.
SOCIAL BUTTONS
The Site also features social buttons. These are digital buttons placed on the web page to facilitate sharing on a specific social network, such as Facebook, Instagram, and YouTube. With these tools, you can, for example, share content or recommend Site services on social networks.
Following a click on the social buttons, the social network may collect data related to your visit to the Site. We suggest you read the privacy policy of the relevant social provider also present in the site’s cookie policy.
RIGHTS OF DATA SUBJECTS
You may, at any time, exercise the rights from Articles 15 to 21 GDPR, as indicated below, if applicable:
- Right of access to personal data (Art. 15 GDPR)
- Right to rectification (Art. 16 GDPR)
- Right to erasure of data (Art. 17 GDPR)
- Right to restriction of processing (Art. 18 GDPR)
- Right to data portability (Art. 20 GDPR)
- Right to object to processing (Art. 21 GDPR)
To exercise the rights indicated, you can address requests to the contact details of the Data Controller provided above. If you believe that the processing of your personal data is in violation of the provisions of Regulation EU 2016/679, you have the right to lodge a complaint with the Data Protection Authority, contactable via the website www.garanteprivacy.it.
We remind you that you can withdraw the consent given at any time using the opt-out function in communications or by contacting the Data Controller.
To exercise these rights, you can write to privacy@cooperativamargherita.org.