DOI106 – AP 11 bis
The Office is committed to protecting personal data collected from its customers and from participants at the congresses and events it organises.
Please read this short message, which seeks to address your needs and justifiable concerns in simple language. The Office plans, organises and manages congresses and events, manages language and translation services, plans training activities and provides association management services.
Whenever you transfer your data to us, you consent to the processing described in this document, which is intended to guarantee security, integrity and privacy in accordance with EU Regulation 2016/679 (GDPR).
This message applies only to this site and not to other websites that you can access through our links.
1. Why we process your data
a) we provide services requested by you and/or available on this site.
b) we fulfil contractual, legal, regulatory or EU obligations and comply with accounting, tax and administrative obligations;
c) we send information on activities and invitations to events after obtaining your specific consent;
2. Why we are able to process your data (legal grounds for processing)
- The processing is lawful provided at least one of the following conditions applies:
you have consented to the processing of your personal data for one or more specific purposes;
- the processing is necessary for performing a contract to which you are party or to implement pre-contractual measures at your request;
- the processing is necessary to fulfil a legal obligation to which we are subject as data controllers.
3. How we process data and for how long
The data will be processed on paper forms and/or computerised or electronic media according to principles of lawfulness and fairness and in such a way as to protect your privacy. The data will be protected and stored in accordance with current legislation, in the manner required to pursue the aforementioned purposes and will be kept for the time required by civil and tax laws. The data may be on third-party platforms.
4. What happens if you do not allow us to process your data
Transfer of the data required for the purposes referred to in point 1(a) and (b) is necessary in order to run our business properly and to manage and provide the associated services effectively. Sometimes we need to obtain specific data in order to ensure we can provide you with the service you requested (for example, to ensure that the restaurant does not serve dishes containing substances that you have specifically asked to avoid or that you are provided with the necessary assistance if you have specific mobility needs). Failure to transfer the data will mean we cannot do what you have asked us to do.
Transfer of data requested for the purposes referred to in point 1(c) is optional and we must obtain your specific consent; if you do not give us your consent for these activities, this will not affect provision of the requested service. Please note that our communication is never invasive. Try giving us your consent, you can always withdraw it with one click.
5. Who has access to your data
Your data may be communicated to the following categories and subjects:
- regarding point 1(a) and b):
– it may become known to our employees and partners, in their capacity as in-house or outsourced data processors and/or system administrators;
– it may be outsourced to third party companies or other subjects (for example to banks holding our current accounts, accountancy firms that help us with accounting and payroll management, our consultants, insurance companies that cover the events in which you participate etc.) that act as external data processors for us, i.e. the Data Controller.
– relevant data may be communicated in accordance with official procedures to third parties that contribute to our business activities in various ways (the following list provides examples but is not exhaustive: Age.na.s [Italian agency for regional health services that processes CME credits], airlines, hotels, caterers, car rentals, organizers, translators, interpreters, etc.).
- regarding point 1. point c): to subjects appointed by us
Your personal data cannot be disclosed.
6. Where your data is kept (transferred)
Personal data is stored on servers located within the European Union.
7. Your rights
You have the right to obtain confirmation from the data controller, i.e. from us, that personal data concerning you is being processed and, in this case, you have the right to access, rectify or erase the data or restrict its processing. You also have the right to object to processing at any time, including processing for direct marketing and automated decision-making purposes. You have the right to portability and to withdraw consent at any time, without affecting the lawfulness of the processing based on consent before its withdrawal, and to lodge a complaint with a supervisory authority. You can exercise your rights at any time by sending us a written request addressed to THE OFFICE SRL, via San Nicolò 14 – 34121 TRIESTE (TS) or sending an email to firstname.lastname@example.org.
8. Data controller
The Data Controller is THE OFFICE SRL, via San Nicolò 14 – 34121 TRIESTE, tel. 040368343
Trieste, 25 May 2018