Menu

Privacy Policy & Cookies – english

Information on the processing of personal data pursuant Article 13 of Regulation (EC) No 2016/679 

In accordance with Article 13 of Regulation (EU) No. 2016/679, also known as the General Data Protection Regulation (hereinafter the ‘GDPR’), A Sud, Ecologia e Cooperazione Aps informs you that your personal data (hereinafter referred to as “Data”) will be processed in compliance with the GDPR and any applicable legislation regarding the processing of personal data in accordance with the following information.

Data Controller. Data Protection Officer

The Data Controller is A Sud, Ecologia e Cooperazione Aps, with its registered office at Via Romanello da Forlì 18, 00176 Rome, Italy (hereinafter referred to as the “Controller”).
The Data Protection Officer is Laura Greco, who can be contacted at segreteria@asud.net for any information regarding the processing of personal data.

 

Categories of Data

The Data processed by the Controller include: (i) personal information (such as name, surname, age, gender), address of residence or domicile, and contact details (telephone number, email address); (ii) banking and/or payment data necessary for the execution of contracts.

Purpose and Legal Basis of Data Processing. Legitimate Interest

The Data will be processed, including through automated means, for administrative purposes and compliance with legal obligations, pursuant to Article 6(1)(b) and (c) of the GDPR, as well as for the pursuit of the Controller’s legitimate interest, pursuant to Article 6(1)(f) of the GDPR, in relation to:

– completion of all stages related to donations and/or participation in specific projects and appeals promoted by the Controller, including related activities (e.g., payments confirmations summaries of contributions);
 – compliance with internal administrative procedures andfulfilment of legal obligations or regulations in force in Italy;
 – sending communications regarding projects, activities, and fundraising initiatives, as well as surveys and reserved  for donors and other individuals who have previously expressed interest in the Controller’s initiatives, with the aim of raising public awareness of its non-profit activities.

In any case, the processing of your Data based on the Controller’s legitimate interest is carried out not only in compliance with Article 6(1)(f) of the GDPR, but also in line with Recital 47 and Opinion No. 6/2014 of the Article 29 Data Protection Working Party, paragraph III.3.1.

 

Methods of Processing

Your personal data is collected and processed lawfully and fairly for the purposes indicated above. The data is processed either in paper format or by automated means, including through entry and organization in databases, in compliance with the security measures set out in the GDPR and in such a way as to ensure the security and confidentiality of the data.

Recipients or categories of recipients

The Data may be made accessible, brought to the attention of or communicated to the following subjects:

public or private subjects, natural or legal persons, whom the Data Controller uses to carry out activities instrumental to achieving the above purposes or to whom the Data Controller is required to communicate the Data by virtue of legal or contractual obligations;

non-profit organisations belonging to the group to which the Data Controller belongs, employees and/or collaborators of the Data Controller in any capacity, project partners, collaborators and/or consultants.

 

Transfer of data abroad

No data transfers outside of the country are foreseen.

 

Retention period

The Data will be stored for a period not exceeding 10 (ten) years for administrative purposes and, in any case, for the time strictly necessary to pursue the legitimate interests of the Data Controller. The processing of the data will be carried out within the time limits set out in the individual information notices drawn up at the time of acquisition.

 

Right of Access, Erasure, Restriction, and Portability

The Data Controller informs you that you have the rights set out in Articles 15 to 20 of the GDPR. For example, by sending a specific request to segreteria@asud.net, you may:

  • obtain confirmation as to whether or not personal data concerning you is being processed;
  • if processing is ongoing, access the data and information related to the processing, and request a copy of the data;
  • request the rectification of inaccurate personal data and the completion of incomplete data;
  • request the erasure of your data, where one of the conditions set out in Article 17 of the GDPR applies;
  • request the restriction of processing, in the cases provided for under Article 18 of the GDPR;
  • receive your personal data in a structured, commonly used and machine-readable format, and request the transmission of such data to another controller, where technically feasible.

Right to Object

Pursuant to Article 21 of the GDPR, you also have the right to object at any time to the processing of your data carried out in pursuit of the legitimate interests of the Controller, by writing to segreteria@asud.net.

If you object, your data will no longer be processed unless there are compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise, or defence of legal claims.

 

Right to lodge a complaint with the Data Protection Authority

The Data Controller also informs you that you have the right to lodge a complaint with the Data Protection Authority if you believe that your rights under the GDPR or any other applicable data protection legislation have been violated. Complaints may be submitted according to the procedures indicated on the website of the Authority, available at: www.garanteprivacy.it.

Cookies

Here you can manage or change your cookie preferences.