Privacy Policy
Privacy Policy
Privacy: Meeter Congressi S.r.l. (hereinafter ” Data Data Controller”) safeguards the confidentiality of Personal Data and ensures appropriate and effective technical and organizational measures, taking into account the nature, scope, context, and purposes of the processing and the risks to the rights and freedoms of individuals. By the GDPR, and in particular, among others, Article 13, the following information is provided to the Data Subject (individual to whom the Data belongs) regarding the processing of Personal Data, including special categories (images, audio/video of the individuals), or possibly of third parties (e.g., data of family members, minors provided for participant registration).
Identity of the Data Data Controller and Contact Details: Meeter Congressi S.r.l. represented by the legal representative pro tempore, headquartered in Rome, Largo Giampaolo Borghi 3, PEC meetercongressi@pec.it, email privacy@meeter.it, phone: +390633680034, website: www.meeter.it;
Before providing any personal data, the Data Controller invites you to carefully read this document, as it contains important information regarding protecting your personal data and the security measures adopted to ensure confidentiality in full compliance with applicable regulations. This Privacy Policy also:
- is provided solely for the website www.onytrichoscopy.org (“Site”) and does not apply to other websites that may be accessed through external links;
- is intended as Information provided under Article 13 of the applicable regulations to those who interact with the Site;
- complies with Recommendation No. 2/2001 on the minimum requirements for collecting online data in the European Union, adopted on May 17, 2001, by the Article 29 Working Party.
The Data Data Controller informs you that processing your personal data will be based on the principles of lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, integrity, and confidentiality. Your personal data will therefore be processed by the legal provisions of the applicable regulations and the confidentiality obligations therein.
- Data Data Controller
As per applicable regulations, the Data Controller responsible for processing on the Site is Meeter Congressi S.r.l. as described above.
- Personal Data Subject to Processing
“Personal Data” efers to any information related to an identified or identifiable natural person; an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
The personal data collected by the Site includes:
- Browsing Data
The computer systems and software procedures involved in the operation of the Site acquire some Personal Data during their normal operation, the transmission of which is implicit in the use of Internet communication protocols. This information, which is not collected to be associated with identified Data Subjects but which by its very nature could, through processing and association with data held by third parties, allow users to be identified, includes IP addresses or domain names of the computers used by users who connect to the Site, URI addresses (Uniform Resource Identifier) of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), and other parameters relating to the operating system and the user’s computer environment. This data is used to obtain statistical information about the use of the Site and to ensure its proper functioning, and is deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the Site or third parties.
- Voluntarily Provided Data
Through the Site, you have the option to voluntarily provide personal data such as name, email address, or mobile number to contact the Data Controller via the “Contacts” form. For e-commerce activities, the following data is requested: Name, Surname, Email, billing address, zip code, country, region, city, tax code, VAT number, and SDI code. The Data Controller will process this data in compliance with applicable regulations, assuming that it refers to you or third parties who have expressly authorized you to provide it based on a suitable legal basis legitimizing the processing of the data in question.
- Cookies and Similar Technologies
The Data Controller collects personal data through cookies. More information about the use of cookies and similar technologies is available here.
- Purposes, Legal Basis, or Mandatory or Optional Nature of the Processing
The Data Controller informs Site Users that the data collected will be processed lawfully by Article 6 of the GDPR, and with their specific consent where necessary, exclusively for the following purposes:
- To enable browsing, consultation of the website, provide the requested services, and verify their quality;
- To conduct studies, research, market statistics, and preferences regarding the services provided;
- To exercise and safeguard the rights and interests of the Data Controller, also in court, about the relationship with the data subjects;
- To respond to requests for assistance or information received via email;
- To respond to requests for assistance or information received through the completion of specific forms;
- To trace authors of any unlawful activities, in case of abnormal behavior by Users (e.g., for fraud prevention, the Data Controller may implement a monitoring system that involves the detection and analysis of User behavior on the Site associated with the processing of Personal Data including IP address, ascertained through regular checks on the Site or at the request of competent authorities;
- To fulfill obligations provided by laws or regulations;
- To perform any accounting and tax obligations;
- To send information and/or promotional offers about promotional services related to products and initiatives of its own (or of affiliated and/or controlled companies) and third parties (commercial partners and outsourcers) via newsletters that may be of interest to the User, without resulting in the transfer of personal data to third parties;
- To check the proper functioning of IT platforms, installations, infrastructures, and information systems.
For purposes 1, 4, and 5, the legal basis is the performance of the contract to which the data subject is a party or the performance of pre-contractual measures requested by the same;
For purposes 2, 3, 6, and 10, the legal basis is the pursuit of the legitimate interests of the data Data Controller; specifically: for purpose 2, the legitimate interest is to understand the use of the Site by Users; for purposes 3 and 6, the legitimate interest is the right to defend the Data Controller; for purpose 10, the legitimate interest is the verification of the security and reliability of the systems;
For purposes 7 and 8, the legal basis is the legal obligation to which the data Data Controller is subject;
For purpose 9, the legal basis is the consent of the data subject. Providing your personal data for the purposes listed above is optional, but failure to provide it may make it impossible to fulfill your request or to comply with a legal obligation to which the Data Controller may be subject.
- Recipients
In addition to the parties mentioned earlier, personal data may be disclosed to the following categories of natural or legal persons, as parties involved in the processing, or as parties whose knowledge of the data is required for the pursuit of the indicated purposes, or to Authorities upon motivated requests to which it is obligatory to respond. These parties will process the data as independent Data Controllers: 1. entities necessary for the provision of services offered by the Site, including, by way of example, email delivery and analysis of Site functionality, typically acting as Data Processors on behalf of the Controller; 2. individuals authorized by the Controller to process personal data who have committed to confidentiality or have an adequate legal obligation of confidentiality (e.g., Controller’s collaborators); 3. judicial authorities in the exercise of their functions when required by applicable law ; 4. Merchants, payment service providers and card management such as Paypal (For their privacy policy, click here).
- Data Transfer to a Third Country
The processing and storage in paper, electronic, and telematic archives may take place at the operational headquarters of the Data Controller or at any other location where the parties involved in the processing are located. Data processed using platforms, virtual spaces, or applications developed, for example, by providers operating internationally (e.g., Google, Microsoft, Dropbox) or by providers operating outside of the Italian Republic, may also be stored at the premises of these providers, even outside the territory of the European Union.
Where necessary or appropriate, the transfer of data to entities located in a third country or to an international organization will be carried out: 1) In compliance with adequacy decisions; 2) In compliance with applicable adequate safeguards; 3) In compliance with binding corporate rules if applicable.
- Data Retention Period
Personal data will be retained for as long as necessary for the legitimate purposes for which they were collected, unless the data subject expresses a desire to remove them, and subject in this case to the needs of the Data Controller regarding data whose processing or retention is required by law or specific interests, or in cases where content removal is not possible or would involve disproportionate effort for the Data Controller.
In particular, data will be retained by legal requirements for administrative and accounting purposes and the exercise of rights, and in any case for a period not exceeding 10 years from the termination of the user account, except for further and compatible purposes with those originally collected by Article 6.4 of the GDPR.
- Data Subject Rights
To ensure the correct and transparent processing of personal data, the Data Controller guarantees the Data Subject, upon communication to the above contacts and to the extent possible:
- The right to obtain confirmation of whether or not personal data concerning them exist, even if not yet recorded, and their communication in an intelligible form;
- The right of the Data Subject to request from the Data Controller access to the personal data concerning them;
- The right to obtain from the Data Controller without undue delay the rectification of inaccurate personal data concerning them;
- The right to obtain from the Data Controller the erasure of personal data concerning them without undue delay, where such data are no longer necessary for the purposes for which they were collected or otherwise processed, or where the processing is unlawful, subject to legal requirements and exceptions;
- The right to obtain from the Data Controller restriction of processing where the accuracy of the personal data is contested, for a period enabling the Data Controller to verify the accuracy of the personal data;
- The right to receive the personal data concerning them, which they have provided to a Data Controller, in a structured, commonly used, and machine-readable format, and the right to transmit those data to another Data Controller without hindrance from the Data Controller to whom the personal data have been provided, in cases provided for by Article 20 of the GDPR, and the right to have the personal data transmitted directly from one Data Controller to another, where technically feasible and involving no disproportionate effort;
- The right to withdraw consent to the processing of personal data previously expressed, [where the processing is based on Article 6(1)(a) or Article 9(2)(a)] at any time without affecting the lawfulness of processing based on consent before its withdrawal, provided that the processing is not lawful for other legal bases or conditions;
- The right to object, on grounds relating to their particular situation, to the processing of personal data concerning them, including profiling based on those provisions. In such cases, the Data Controller shall refrain from further processing of personal data unless they demonstrate compelling legitimate grounds for the processing which override the interests, rights, and freedoms of the Data Subject, or for the establishment, exercise, or defense of legal claims;
- The right to complain to a supervisory authority, whose contact details can be found for Italy on the website garanteprivacy.it.
Requests should be addressed via email: privacy@meeter.it
- Changes
This information is prepared in compliance with GDPR guidelines. An updated version is made available on the Data Controller’s website.