Privacy Policy

PRIVACY POLICY

Information document pursuant to and for the purposes of Article 13 of Regulation (EU) 2016/679 (GDPR)

 In accordance with the provisions of EU Regulation 2016/679 (European Regulation for the Protection of Personal Data) we provide you with the necessary information regarding the processing of personal data. This information does not apply to other websites that may be accessed via links on our pages, the owner of this website is not to be considered in any way responsible for the websites of third parties.

This information is provided pursuant to Article 13 of EU Regulation 2016/679 (European Regulation for the Protection of Personal Data) and is also based on the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, on Cookies and the provisions of the Provision of the Guarantor Authority for the Protection of Personal Data of 08.05.2014 on Cookies.

Personal data that can be processed: “personal data”: any information concerning an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, with particular reference to an identifier such as a name, an identification number, location data, an online identifier or one or more elements characteristic of his physical, physiological, genetic, mental, economic, cultural or social identity; (C26, C27, C30).

Internet navigation data

The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of computers and terminals used by users, URI/URL (Uniform Resource Identifier/Locator) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters relating to the operating system and computer environment.

Data communicated by the interested party

The optional, explicit and voluntary sending of messages to contact addresses, as well as the compilation and forwarding of the forms on the website of the Owner, involves the acquisition of contact data of the sender, necessary to respond to requests, as well as all personal data included in the communications. Such data will be processed only if communicated and for the purpose of responding to or registering for a service offered.

Specific information

Specific information will be present in the pages of the Site in relation to particular services or processing of the Data provided.

Cookies

For more information on the cookies used by this website, see the cookies policy.

 

  1. Data controller

The Data Controller, pursuant to Articles 4 and 24 of EU Regulation 2016/679, is the FIU – Unione Italiana Food, with registered office in Viale del Poggio Fiorito 61, 00144 Rome (RM), in the person of the President Marco LAVAZZA. Following the contact details of the Owner: Tel. 06 8091071, email unionfood@unionfood.it.

 

  1. Data Protection Officer

RESPONSIBLE FOR THE PROTECTION OF DATA (RPD/DPO- DATA PROTECTION OFFICER) pursuant to Articles 37 – 39 of EU Reg. 2016/679, is/has not been appointed and can be contacted at the following e-mail address: dpo@unionfood.it, at the same Unione Italiana Food, Viale del Poggio Fiorito, 61 – 00144 Rome.

 

  1. Purpose, legal basis of the processing and retention periods of data or criteria for determining the period

The personal data provided will be processed, in compliance with the conditions of lawfulness ex art. 6 of EU Reg. 2016/679, for the purposes indicated below. The treatment will be carried out in automated and manual form, with methods and tools to ensure maximum security and confidentiality, by persons authorized to do so.

In compliance with the provisions of art. 5, paragraph 1, letter e) of EU Regulation 2016/679, the personal data collected will be kept in a form that allows the identification of those concerned for a period of time not exceeding the achievement of the purposes for which the personal data are processed. The retention of personal data provided depends on the purpose of the processing, as indicated below.

Purpose A)

Website navigation

– LEGAL BASIS: Legitimate interest art. 6 letter f) and recital 47: processing is necessary for the pursuit of the legitimate interest of the data controller or third parties, provided that the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data do not prevail, taking into account the reasonable expectations of the data subject based on his or her relationship with the data controller. Activities strictly necessary for the operation of the site and the provision of navigation services on the platform.

– PERIOD OF DATA STORAGE: Up to the duration of the navigation session. For navigation see cookie policy.

 

Purpose B)

Possible compilation of data collection forms for contacts

– LEGAL BASIS: Consent art. 6 par. 1 letter. a): the person concerned has expressed consent to the processing of their personal data for one or more specific purposes

Subject to consent and until its opposition for direct marketing activities of the Owner, market research, direct sales, surveys of the degree of satisfaction, sending newsletters and promotional material, commercial and advertising or related events and initiatives, by the Owner by automated means of e-mail, fax, SMS messages, MMS or other types, as well as by phone calls through operator, including automated and paper mail and other information material. The Owner to compare and possibly improve the results of communications, uses systems for sending newsletters and promotional communications with reports. Thanks to the reports, the Owner will be able to know, for example: the number of readers, openings, unique “clickers” and clicks; the devices and operating systems used to read the communication; the detail of the activity of individual users; the detail of the emails sent, emails delivered and not, of those sent; All these data are used to compare, and possibly improve, the results of communications.

– PERIOD OF DATA CONSERVATION: until its opposition (opt-out) or at most one year.

 

  1. Recipients or categories of recipients of the data

The personal data provided will be shared with subjects who will process the data in their capacity as data processors (art. 28 of EU Regulation 2016/679) and/or as natural persons acting under the authority of the Data Controller and Data Processor (art. 29 of EU Regulation 2016/679), for the purposes listed above.

Precisely, the data will be shared with:

– entities that provide services for the management of the information system used by Unione Italiana Food and telecommunications networks; including e-mail, newsletters and website management; freelancers, studios or companies in the context of assistance and consulting relationships including INC – Istituto Nazionale per la Comunicazione;

– competent authorities for fulfilling legal obligations and/or provisions of public bodies, upon request.

The list of data processors is constantly updated and available by writing to unionfood@unionfood.it or at the registered office of Unione Italiana Food.

 

  1. Data transfer to a third Country

The personal data provided will be transferred exclusively to countries belonging to the European Union in order to comply with contractual obligations and related purposes and subject to the limits and conditions set forth in art. 44 et seq. of EU Regulation 2016/679. The data will be transferred on the basis of Article 44 – General principle for transfer; Article 45 – Transfer on the basis of an adequacy decision, specifically the data will be transferred to third countries international organizations for which the Commission has intervened with an assessment of adequacy. The data subject may obtain information on the guarantees for the data transfer by writing an e-mail to unionfood@unionfood.it or to the registered office of the Data Controller.

 

  1. Nature of the conferment and refusal

With the exception of that specified for navigation data (which are necessary in order to allow navigation of the website), the user is free to provide personal data.

The provision of data is optional or necessary depending on the specific purpose for which the data is processed. Failure to provide data marked with the symbol* or wording (required), will make it impossible to obtain what has been requested or to use the services of the data controller. The provision of data for the purpose B) is optional and in the absence of the same, your data will not be processed for the pursuit of this purpose, the refusal to provide will not affect the usability of the purposes referred to in point A).

 

  1. Rights of the interested parties

You may exercise your rights as expressed in Articles 15, 16, 17, 18, 19, 20, 21 of EU Regulation 2016/679 by contacting the Data Protection Officer pursuant to Article 38(4) at unionfood@unionfood.it. You have the right, at any time, to ask the Data Controller for access to your personal data, rectification, deletion, restriction of the processing and portability of your data, if any. Furthermore, you have the right to object, at any time, to the processing of your data based on your consent and/or legitimate interest.   To stop receiving automated direct marketing communications (e.g. e-mails, sms), simply write an e-mail at any time to the address unionfood@unionfood.it with the subject “cancellation by automated” or use our automatic cancellation systems provided for e-mails only.  In order to stop receiving traditional direct marketing communications (telephone calls with operator) it will be sufficient to write at any time an e-mail to the address unionfood@unionfood.it with the subject “cancellation from traditional”. Without prejudice to any other administrative and jurisdictional appeal, if you believe that the processing of data concerning you, violates the provisions of EU Reg. 2016/679, pursuant to art. 15 letter f) of the aforementioned EU Reg. 2016/679, you have the right to lodge a complaint with the Guarantor for the Protection of Personal Data (Control Authority www.garanteprivacy.it).

 

  1. Modification of the privacy policy

 The owner reserves the right to modify, update, add or remove portions of this privacy policy at his sole discretion and at any time. In order to facilitate such verification the policy will contain the date of updating.

Date of update: July 8th 2019