INTRODUCTION
The Sports Committee “Trofeo Marco Rizzotti,” acting as the Data Controller, hereinafter referred to as “the Committee,” in accordance with Articles 13 and 14 of European Regulation No. 2016/679 and the current Privacy Code, provides information regarding the processing of personal data and describes the methods of collection, management, the substantive rules of the regulatory discipline, and the technical and organizational measures it has adopted to protect the privacy of Users accessing the website portal, and subsequently registering for the online platform. This notice is provided only for the website www.rizzottisail.it owned by the Sports Committee “Trofeo Marco Rizzotti.”
DATA CONTROLLER
The Data Controller (Article 4, No. 7 of EU Reg. No. 2016/679) is the Sports Committee “Trofeo Marco Rizzotti,” headquartered in Venice, Porticciolo E. De Zottis S. Elena – ZIP 30132, which can be contacted as follows:
– Email: gm@trofeorizzotti.it
– Mailing address: Porticciolo E. De Zottis S. Elena – ZIP 30132 Venice
DATA PROCESSING MANAGER
The Data Processing Manager (Article 4, No. 8 of EU Reg. No. 2016/679) is Dr. Luigi NONINO, who can be contacted as follows:
– Email: gm@trofeorizzotti.it
– Mailing address: Porticciolo E. De Zottis S. Elena – ZIP 30132 Venice
LEGAL BASIS FOR PROCESSING
The legal basis for the processing of personal data consists of the services offered by the Committee or otherwise related to the conduct of sports and competitive activities, for the use and consultation of the Site by visitors and users who consent to the processing of personal data. The Committee promotes awareness and facilitates understanding of the risks, rules, guarantees, and rights relating to the processing, and also promotes awareness among data controllers and data processors regarding the obligations imposed on them by the European Regulation (Article 57, para. 1, lett. b and d EU Reg. No. 2016/679).
PURPOSE OF PROCESSING
The Sports Committee “Trofeo Marco Rizzotti” may process user data (name, surname, email address, phone number), after obtaining specific consent expressed by sending the acceptance form, to inform them about projects promoted by the Committee and news about sports competitions (Article 4, No. 11 EU Reg. No. 2016/679). In any case, the user can unsubscribe at any time (Article 17 EU Reg. No. 2016/679). Refusal to respond or give consent may result in the Committee being unable to follow up on user requests.
COLLECTION OF PERSONAL DATA
The Sports Committee “Trofeo Marco Rizzotti” will collect user personal data for purposes related to the provision of its services as specified in the Privacy Policy. When contacting and/or subscribing to the newsletter, the user will be asked for the following data: name and surname (mandatory field); email address (mandatory field); and other optional data. User personal data may be processed for marketing purposes, to send promotional material about events organized by the Committee. User personal data will be stored by the Committee only for the time necessary for the provision of the requested services and for the purposes mentioned above.
DATA PROCESSING LOCATION
The processing of personal data related to the online services of this site takes place at the Committee’s headquarters and is handled only by technical staff in charge of processing, or by any maintenance personnel, who manage the technological part of the site (Article 28 EU Reg. No. 2016/679).
PERSONAL DATA SECURITY
– Processing Methods:
Personal data processing is carried out in accordance with the principles of confidentiality, fairness, lawfulness, and transparency, using manual, computerized, and telematic tools, with logic strictly related to the purposes themselves, also using telephone, mobile phone, email, or other remote communication techniques. User personal data will be managed by implementing appropriate technical and organizational measures to ensure a level of security proportionate to the risk (Article 32 EU Reg. No. 2016/679). Specifically, the data controller, to effectively implement data protection principles, implements pseudonymization, so that personal data cannot be attributed to a specific data subject without additional information, which must be kept separate to ensure that such personal data are not attributed to an identified or identifiable natural person (Articles 4 No. 5 and 25 EU Reg. No. 2016/679).
– Storage Methods:
The Sports Committee “Trofeo Marco Rizzotti” pays attention to the implementation and maintenance of the security of its services and its users’ data. Additionally, the Committee has implemented appropriate physical and technological safeguards to help prevent unauthorized access, maintain data security, and correctly use the information we collect. These protections vary depending on the sensitivity of the information collected and stored. The Sports Committee “Trofeo Marco Rizzotti” uses accurate procedures and specific technical controls to ensure the security of its computer systems, such as:
– Secure network topology, including intrusion prevention systems;
– Encrypted communication;
– Authentication and access control;
– External and internal verification tests.
In any case, considering the state of technology, it is noted that the different measures adopted to safeguard user information do not guarantee with absolute certainty any unauthorized access or abuse of certain services by third parties. In such cases, the Sports Committee “Trofeo Marco Rizzotti” will restore security systems and report the incident to the competent authorities.
TYPES OF DATA PROCESSED
– Browsing Data:
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This data category includes IP addresses or domain names of the computers and terminals used by users, URI/URL addresses (Uniform Resource Identifier/Locator) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the operating system and the user’s IT environment. This data, necessary for the use of web services, is also processed for the purpose of:
– Obtaining statistical information about the use of services (most visited pages, number of visitors per time or day, geographical areas of origin, etc.);
– Checking the correct functioning of the services offered.
Browsing data does not persist for more than seven days (except for any need to ascertain crimes by the Judicial Authority).
– Data Provided by the Data Subject:
The optional, explicit, and voluntary sending of messages to the contact addresses of the website www.rizzottisail.it, private messages sent by users to social media profiles (where this possibility is provided), involve the acquisition of the sender’s contact data, necessary to respond, as well as all personal data included in the communications. Specific information will be published on the pages of the website www.rizzottisail.it prepared for the provision of certain services.
– Cookies and Other Tracking Systems:
The website www.rizzottisail.it uses cookies for user profiling, and also uses session cookies (non
-persistent) strictly limited to what is necessary for secure and efficient navigation of the sites. The storage of session cookies on terminals or browsers is under the user’s control. At the end of HTTP sessions, information related to cookies remains recorded in the service logs, with retention times, however, not exceeding seven days, like other browsing data.
DATA SUBJECT RIGHTS
The data subject has the right to obtain from the Data Controller:
– Confirmation of whether or not personal data concerning them are being processed, and if so, access to personal data and the following information:
– Purposes of processing;
– Categories of personal data concerned;
– Recipients or categories of recipients to whom personal data have been or will be disclosed, particularly recipients in third countries or international organizations;
– Where possible, the envisaged period for which personal data will be stored or, if not possible, the criteria used to determine that period;
– The existence of the data subject’s right to request from the Data Controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
– The right to lodge a complaint with a supervisory authority;
– Where the data were not collected from the data subject, any available information as to their source;
– The existence of automated decision-making, including profiling;
– The rectification of inaccurate personal data concerning them without undue delay.
Considering the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement (Article 16 EU Reg. No. 2016/679);
– Erasure of personal data (“right to be forgotten”) concerning them without undue delay (Article 17 EU Reg. No. 2016/679);
– Restriction of processing of personal data (Article 18 EU Reg. No. 2016/679);
– Data portability (Article 20 EU Reg. No. 2016/679);
– The right to object, on grounds relating to their particular situation, at any time, to processing of personal data concerning them (Article 21 EU Reg. No. 2016/679);
– The right not to be subject to a decision based solely on automated processing, including profiling (Article 22 EU Reg. No. 2016/679).
CONSENT OF THE DATA SUBJECT
The data subject gives their consent with a manifestation of free, specific, informed, and unequivocal will, by means of a declaration or clear affirmative action, that the personal data concerning them may be subject to processing.
The data subject has the right to withdraw their consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Before giving their consent, the data subject is informed of this (Articles 4, No. 7 and 11 EU Reg. No. 2016/679). Consent can be given by the data subject, in accordance with current regulations, by means of specific configurations of the browser and computer programs or devices that are easy and clear to use (Articles 4, No. 7 and 11; 7 EU Reg. No. 2016/679).
RIGHT TO LODGE A COMPLAINT
The data subject, to exercise their rights and for any questions or requests regarding the processing of their personal and sensitive data by the Association, can contact the Data Controller at the following addresses:
– Email: gm@trofeorizzotti.it
– Mailing address: Porticciolo E. De Zottis S. Elena – ZIP 30132 Venice
The data subject has the right to lodge a complaint with the Privacy Guarantor (Article 77 EU Reg. No. 2016/679) or to take appropriate legal action (Article 79 EU Reg. No. 2016/679) if they believe that the processing of their personal data violates this regulation.
DATA RECIPIENTS
All data collected and processed may be communicated exclusively for the aforementioned purposes to:
– K4 Solutions S.r.l., as provider of web platform development and maintenance services;
– Aruba, commercial partners for their autonomous and distinct purposes, only if the data subject has given specific consent;
– subjects, bodies, or authorities to whom it is mandatory to communicate your personal data by order of the authorities or by law.
The complete list of data processors is available by sending a written request to the following email address: gm@trofeorizzotti.it.
DATA RETENTION PERIOD
Data will be retained for the period strictly necessary for the pursuit of the purposes for which they were collected, and not beyond one year from the date of consent provision and for the entire duration of the requested services, and also subsequently, for the fulfillment of legal obligations and for commercial purposes.
DATA TRANSFER
Your data will not be managed, stored, or transferred outside the European Union.
