Information on Personal Data Processing – Participants
Pursuant to art. 13 of EU Regulation 2016/679
SPICI S.r.l. informs you that, in order to correctly provide and manage the event, it will process the data provided as follows:
Data Controller
The Data Controller is SPICI S.r.l., represented by the legal representative pro tempore Vincenzo Lipardi, headquartered in Naples, at Via Ponte dei Granili n.24 – 80146
The Data Controller can be contacted at any time by sending an email to the following address: eventi@spici.eu
Nature of the Data
All your personal data necessary for managing registration and any additional services requested for the event will be processed. In particular, the form will collect personal information such as name, surname, email, any phone number, etc. If the participant has disabilities, health-related data will be processed to ensure safe participation. During the event, photos may be taken and at the end, a satisfaction questionnaire may also be administered.
Purpose of Processing
The data is processed by the Data Controller due to the necessity of managing registrations and participations and the necessity of providing any further services you may request. Images taken during the event may be used for documentation and promotional purposes of the event and the Company itself. Any post-event satisfaction questionnaires may be administered to improve the quality of the services offered.
Legal Basis for Processing and Nature of Provision
The legal basis for processing data is the necessity to perform a contract to which the Data Subject is a party or pre-contractual measures upon request (art. 6, paragraph 1, letter b, EU Reg. 2016/679). For certain activities, it is based on the legitimate interest of the Controller (art. 6, paragraph 1, letter f, EU Reg. 2016/679). The provision of mandatory data is necessary to manage participant registration for events. Refusal or revocation of such data may prevent the Controller from properly carrying out activities. The provision of additional data is optional and its denial does not affect the continuation of activities.
Data Retention Period
The Controller retains personal data for the time necessary to provide the service or for the purposes described. Upon completion, the data will be deleted or permanently and irreversibly anonymised.
Processing Methods
Data will be processed by internal subjects authorized by the Controller (art. 29 EU Reg. 2016/679), using electronic and IT tools, respecting confidentiality and the security measures provided (art. 32 EU Reg. 2016/679). Some activities will be outsourced to external companies, appointed as Data Processors (art. 28 EU Reg. 2016/679).
Data Communication
Your personal data may be communicated to authorized internal subjects (art. 29 EU Reg. 2016/679) and to external subjects appointed as Data Processors (art. 28 EU Reg. 2016/679). Data Processors may communicate the data to third parties involved in managing the processes. These communications will be handled correctly, lawfully, and securely, and the data will be used solely for the stated purposes.
Data Subject's Rights
Pursuant to articles 15 to 22 of EU Reg. 2016/679, the Data Controller informs you that you have the right to request, by sending an email to the email address: eventi@spici.eu. Moreover, if you believe that the processing concerning you violates the provisions of EU Reg. 2016/679, you can always lodge a complaint with the Privacy Authority using the form and procedure indicated on the site www.garanteprivacy.it and available at the link:
https://www.garanteprivacy.it/home/docweb/-/docweb-display/docweb/4535524