Personal data – name, surname, physical address, nationality, province and municipality of residence, landline and / or mobile phone, social security number, e-mail address.
Data relating to the use of services – courses, schools, activities, events to which the member is currently registered or who has previously attended.
The Association does not require the Data Subject to provide data known as “Particulars”, that is, according to the provisions of the GDPR (Article 9), personal data revealing racial or ethnic origin, political opinions, religious or philosophical convictions, or union membership, as well as genetic data or biometric data designed to uniquely identify a person, data relating to the health or sexual life or sexual orientation of the person. In the event that the specific case requires the processing of such data, the interested party will receive prior notice and will be required to give appropriate consent.
The SIAY has appointed a Data Protection Officer (DPO) who can be contacted for any information and request:
e-mail: segreteria@agniyoga.it; Telephone: 0578 299985
For any information or request, the interested party may contact the address info@agniyoga.it, Telephone 0578 299985
SECTION I – Treatment and protection of SIAY Member Data
The SIAY collects and maintains the personal data of its members according to the criteria already stated at the beginning of this document (see). In particular, the following are the purposes and general specifications that extend and complete the information already reported regarding the Privacy Policy relatively to the web site.
Purposes for which we need the data of the interested party (Article 13, paragraph 1 of the GDPR)
The data are used by the Data Controller to process the registration request in the “members book” and to provide the training activity and / or the selected business activity and / or manage and execute the contact requests sent by the interested party, provide assistance, comply with the legal and regulatory obligations to which the Controller is held according to the activity carried out.
In no case will the SIAY resell or forfeit the personal data of the interested party to any third parties or use them for undeclared purposes. In particular the data of the interested party will be processed for:
a) registration and contact requests and / or information material
The processing of personal data of the interested party takes place to carry out the preliminary and consequent activities and to fulfill the registration request, the management of requests for information and to contact and / or send information material, as well as for the fulfillment of any other obligation arising. The legal basis of these uses is the fulfillment of the services inherent to the request for registration, information and contact and / or sending of informative material and compliance with legal obligations.
b) management of the associative relationship
The processing of personal data of the interested party takes place to start the preliminary activities and consequent activities to fulfill the registration request, for the management to one or more activities (training and / or social), the management of the aforementioned registration, the frequency of the activity and / or the shipment ( in the case of distance courses) of the material relating to the activity, the management of any contributions and the issue of receipts, the handling of complaints and / or reports to the assistance service and the provision of the assistance itself, the prevention fraud and the fulfillment of any other obligation arising from the associative relationship. The legal basis of these uses is the fulfillment of the services inherent in the associative relationship in compliance with the legal obligations.
c) promotional activities on activities / events similar to those already attended by the interested party (Recital 47 GDPR)
The CEV, even without the explicit consent of the interested party, may use the contact details provided by the interested party, for the purpose of providing direct information on their Activities / Events, limited to the case in which they are activities / events similar to those already used, unless the interested party explicitly objects.
d) the commercial promotion activities on activities / events different from those already used by the interested party
The personal data of the interested party may also be processed for promotional purposes regarding activities / events offered by the Data Controller. This treatment can take place in the following ways:
- e-mail;
- WhatsApp;
- telephone contact
and can be done:
- if the interested party has not revoked his consent for the use of the data;
- if the interested party is not registered in the register of oppositions referred to in the D.P.R. n. 178/2010, in the event that the processing takes place through contact with the telephone operator;
The legal basis of such processing is the consent given by the interested party prior to the processing itself, which can be revoked by the interested party freely and at any time (see Section IV).
e) computer security
The CEV, in line with the provisions of art. 49 of the GDPR, processes personal data of the interested party to a strictly necessary and proportionate extent to ensure network and information security, that is to say the ability of a network or an information system to resist, at a given level security, unforeseen events or illicit or malicious acts that compromise the availability, authenticity, integrity and confidentiality of personal data stored or transmitted.
The Data Controller will promptly inform the Interested parties if there is a particular risk of violation of their data, without prejudice to the obligations arising from the provisions of article 33 of the GDPR regarding notifications of violation of personal data.
The legal basis for such processing is compliance with the legal obligations and the legitimate interest of the Data Controller to carry out processing related to the protection of the company assets and security of the SIAY offices and systems.
f) profiling
The personal data of the interested party may also be processed for profiling purposes (such as analysis of transmitted data and the activities / events attended, proposing promotional messages and / or activity proposals in line with the choices made by the same shareholders) exclusively in the case which the interested party has provided an explicit and informed consent.
The legal basis of such processing is the consent given by the interested party prior to the processing itself, which can be revoked by the interested party freely and at any time (see Section IV).
g) the protection of minors
The activities / events offered by the SIAY are reserved for subjects legally capable, on the basis of the national reference legislation, to associate themselves. In order to prevent unlawful access to its activities, the Data Controller implements prevention measures to protect its legitimate interest, such as the control of the tax code and / or other checks, when necessary for specific courses / activities, the correctness of the data identification of identity documents issued by the competent authorities.
Communication to third parties and categories of recipients (Article 13, 1st paragraph GDPR)
The personal data will be communicated only to third parties whose activity is similar and closely linked to the activities of the CEV: these are associations born as natural development of some sectors of the CEV, progressively matured as autonomous entities, collaborating with the purposes of the aforesaid statute *. They are:
- Community of Living Ethics Association;
- New Era Association;
- Banner of Peace Association,
- Libra Association, for a new economy,
- Sarasvati Association;
- Naturovaloris Association;
The Personal Data transferred to these associations are “name”, “surname”, “e-mail” and are transferred for the sole purpose of creating mailing lists for the dissemination of information on the social activities of the same. The contacted user / Member can unsubscribe from the individual mailing lists using the appropriate link in the body of the e-mails.
* The Data Controller imposes on the aforementioned related and related Associations and their Data Processors compliance with security measures equal to those adopted towards the Data Subject, limiting the Managers actions to the only uses related to the advertising of their own activities.
The communication of personal data can in addition be made
- to Supervisory and control authority for the fulfillment of legal obligations, defense of rights; lists and registers held by public authorities or similar bodies on the basis of specific regulations, in relation to the statutory provisions and the specific nature of the activity provided;
- to Subjects formally delegated, or with recognized legal title, Legal representatives, curators, tutors, etc.
The SIAY does not transfer the personal data to countries where the GDPR (non-EU countries) is not applied, unless there are specific contrary indications for which you will be informed in advance and your consent, if necessary, will be required.
The legal basis of these uses is the fulfillment of the services inherent to the relationship established, compliance with legal obligations and the legitimate interest of the SIAY to carry out its necessary uses for these purposes.
SECTION II – Processing of data collected through the Website
The Data Controller of the collected data is the Association of Living Ethics, whose generalities have been previously reported. The Website and / or the Data Controller are not responsible for the processing of data collected on pages not present in the second level domain https://www.agniyoga.it.
Sources of personal data
The applications dedicated to the functioning of this site may detect, in the course of their normal operation, some of your data (the transmission of which is implicit in the use of Internet communication protocols), however not associated with you directly. The data collected may include, but is not limited to, the IP address, the domain names and the browser type of the computers used to connect to the Site, the addresses in the Uniform Resource Identifier (URI) of the resources requests, the time of the request , the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters concerning the operating system and the IT environment you use. These data do not allow, in any case, to reach your identity and are therefore considered anonymous.
Particular sources of personal data are indicated in the specific Privacy policy set up for particular services offered by the Site or software used by it for its proper functioning and reported below.
Types of Data collected
Among the Personal Information collected by this Website, independently or through third parties, there are: name, surname, telephone number, country, email, usage data and cookies.
Full details on each type of data collected are provided in the dedicated sections of this privacy policy or through specific information texts displayed before the data are collected.
Personal Data may be freely provided by the User or, in the case of usage data, collected automatically during the use of this Website. In the absence of the provision of data qualified as mandatory it may be impossible for this Website to provide the service. In cases where this Website indicates the data requested as optional, Users are free to refrain from communicating them, without this having any consequence on the availability of the service or on its operation.
Users who have doubts about which data are mandatory, are encouraged to contact the owner. (segreteria@agniyoga.it)
Any use of Cookies – or other tracking tools – by this Website or by third party service providers used by this Website, unless otherwise specified, is intended to provide the service requested by the User, in addition to the other purposes described in this document and in Cookie Policy.
The SIAY assumes the responsibility of the Personal Data of third parties published or shared through this Website and warrants that he has the right to communicate or disseminate them, freeing the Owner from any liability to third parties.
Mode and place of processing of collected data
Method of treatment
The Data Controller processes the Personal Data of Users by adopting appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data.
Processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, the Data may have access to the Data categories of persons involved in the organization of the site (members with administrative, legal, system administrators, etc.) or external subjects (as indicated in Section I, under ” Communication to third parties and categories of recipients “). The updated list of Managers can always be requested from the Data Controller.
Place
The Data are processed at the operational headquarters of the Data Controller and in any other place where the parties involved in the processing are located. For more information, contact the owner.
Times
The Data are processed for the time necessary to perform the service requested by the User or for the purposes described in this document, and the User can always ask for the interruption of the treatment or the cancellation of the Data.
Purposes of the processing of collected data
The Data concerning the User is collected to allow the Data Controller to provide its services and for the purposes listed in Section I under the heading “For what purposes we need data from the Data Subject“.
The types of Personal Data used for purposes strictly related to the Website are indicated below.
Details on the processing of Personal Data collected via the website
Personal Data is collected for the following purposes and using the following services:
-
Contact with the user
Contact form (on this Website)
By filling out the contact form with their Data, the User consents to their use to respond to requests for information, or any other nature indicated by the header of the form.
Personal Data collected: name, surname, city, zip code, province, country, phone number, email address.
Mailing list or newsletter (on this website)
By registering with the mailing list or the newsletter, the User’s email address is automatically added to a list of contacts to which email messages containing information, including promotional information, relating to the activities of the SIAY can be transmitted. The User’s email address could also be added to this list as a result of registering for an event or registering on this Website.
Personal Data collected: name, surname and email address.
-
Displaying content from external platforms
This type of service allows you to view content hosted on external platforms directly from the pages of this Website and to interact with them. In the event that a service of this type is installed, it is possible that, even if the Users do not use the service, the service itself gathers traffic data relating to the pages in which it is installed.
Google Fonts (Google Inc.)
Google Fonts is a service of visualization of font styles managed by Google Inc. that allows this website to integrate such contents within its pages.
Personal Data collected: Usage Data and various types of Data as specified in the privacy policy of the service.
Place of processing: USA (see: Google Privacy Policy)
Google Maps widget (Google Inc.)
Google Maps is a map visualization service managed by Google Inc. that allows this website to integrate such contents within its pages.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA (see: Google Privacy Policy)
YouTube (Google Inc.)
YouTube is a web platform that allows the sharing and viewing of video documents on the network; this service is managed by Google Inc. which allows this Website to integrate such contents within its pages.
Personal Data collected: Usage Data and various types of Data as specified in the privacy policy of the service.
Place of processing: USA (see: Google Privacy Policy)
-
Interaction with social networks and external platforms
This type of services allows interaction with social networks, or with other external platforms, directly from the pages of this Website.
The interactions and information acquired from this Website are in any case subject to the User’s privacy settings relating to any social network.
If an interaction service with social networks is installed, it is possible that, even if the Users do not use the service, the service itself gathers traffic data relating to the pages in which it is installed.
Like button and Facebook social widgets (Facebook, Inc.)
The “Like” button and Facebook social widgets are services of interaction with the social network Facebook, provided by Facebook, Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy
-
Statistics
The services contained in this section allow the Data Controller to monitor and analyze traffic data and are used to keep track of User behavior.
Google Analytics with anonymized IP (Google Inc.)
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses Personal Information collected for the purpose of evaluating the use of this Website, compiling reports and sharing them with other services developed by Google. Google may use the Personal Data to contextualise and personalize the advertisements of its advertising network.
This integration of Google Analytics makes your IP address anonymous. Anonymisation works by shortening the IP address of the Users within the borders of the member states of the European Union or in other countries participating in the agreement on the European Economic Area. Only in exceptional cases, the IP address will be sent to Google’s servers and shortened within the United States.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy – Opt Out
Data protection with SSL certificate
This site is provided with SSL certificate (Secure Sockets Layer): a protocol designed to allow applications to transmit information securely and securely, preventing third parties (such as Internet points, Internet service providers and Wi-Fi hotspots) from detecting the fruition and / or access data entered on the site by the user
More information on treatment
Defense in court
The User’s Personal Data may be used by the Owner in court or in the stages leading to his possible establishment for the defense against abuse of this Website or related services by the User.
The User declares to be aware that the Data Controller may be required to disclose the Data at the request of the public authorities.
Specific information
At the request of the User, in addition to the information contained in this privacy policy, this Website may provide the User with additional and contextual information regarding specific services, or the collection and processing of Personal Data.
System logs and maintenance
For needs related to operation and maintenance, this Website and any third party services used by it may collect System Logs, which are files that record the interactions and that may also contain Personal Data, such as the User IP address.
This Website does not support “Do Not Track” requests.
To know if any third-party services used support them, the User is invited to consult their respective privacy policies.
Legal references
Notice to European Users: this privacy statement has been prepared in fulfillment of the obligations under Art. 10 of the Directive n. 95/46 / EC, as well as the provisions of Directive 2002/58 / EC, as updated by Directive 2009/136 / EC, concerning Cookies.
This part of the privacy policy only applies to this Website.
SECTION III – Coockie Policy
As is customary on all websites, this site also makes use of cookies, small text files that allow you to store information on visitor preferences, to improve the functionality of the site, to simplify navigation by automating the procedures (e.g. Login, site language) and for the analysis of the use of the site.
Session cookies are essential to distinguish between the connected users, and are useful to avoid that a required feature can be provided to the wrong user, as well as for security purposes to prevent cyber attacks on the site. Session cookies do not contain personal data and last only for the current session, ie until the browser is closed. No consent is required for them.
The functionality cookies used by the site are strictly necessary for the use of the site, in particular they are linked to an express request of functionality by the user, for which no consent is required.
By using the site, the visitor expressly consents to the use of cookies.
Disabling cookies
Cookies are connected to the browser used and can be disabled directly from the browser, thus refusing / revoking consent to the use of cookies. It should be noted that disabling cookies may prevent the correct use of some features of the site itself.
Instructions for disabling cookies can be found on the following web pages:
Mozilla Firefox http://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
Windows Internet Explorer http://windows.microsoft.com/it-IT/windows7/Block-enable-or-allow-cookies
Google Chrome http://support.google.com/chrome/bin/answer.py?hl=it&answer=95647
Opera http://help.opera.com/Windows/10.00/it/cookies.html
Apple Safari https://support.apple.com/it-it/HT201265
Third-party cookies
This site also acts as an intermediary for third-party cookies, used to provide additional services and features to visitors and to improve the use of the site, such as buttons for social media.
This privacy policy does not apply to services provided by third parties, and this site has no control over their cookies, entirely managed by third parties.
The data transfer agreement takes place directly between the user / visitor and the third parties, so the acquisition of consent for these cookies is, of course, borne by the third parties, while this site does not participate in any way in this transfer. As a consequence, the information on the use of these cookies and their purposes, as well as on how to disable them, are provided directly by the third parties on the pages indicated below.
In particular, this site uses cookies of the following third parties:
Google (Google Analytics cookie)
Google Analytics is an analysis tool by Google that through the use of cookies (performance cookies), collects anonymous browsing data in order to examine the use of the site by users, compile reports on activities on the site and provide other information , including the number of visitors and the pages visited. Google may also transfer this information to third parties where required to do so by law or where such third parties process the information on Google’s behalf. Google Analytics cookies can also be used to show more relevant results in Google properties (such as Google search). Google will not associate the IP address with any other data held by Google. Data transmitted to Google are stored on Google’s servers in the United States.
Further information on Google Analytics cookies can be found at the following page: https://developers.google.com/analytics/devguides/collection/analyticsjs/cookie-usage
The user can selectively disable the action of Google Analytics by installing the appropriate component provided by Google on his browser (opt out). To disable the collection of data by Google Analytics, please refer to the link below: https://tools.google.com/dlpage/gaoptout
Youtube cookie
Youtube is a platform owned by Google, for sharing videos, which uses cookies to collect information from users and navigation devices.
For more information on the use of data and their processing by Google, it is recommended to view the information at the following Internet address: http://www.google.com/intl/it/policies/privacy/.
Social network
This site also incorporates plugins and / or buttons for social networks, in order to allow easy sharing of content on your favorite social networks. These plugins do not set a cookie, but if it is already present on the visitor’s computer they are able to read it and use it according to its settings. The collection and use of information by these third parties are governed by the respective privacy policies to which reference is made.
- Facebook https://www.facebook.com/about/privacy/ (cookie information link) https://www.facebook.com/help/cookies/ )
- Twitter https://twitter.com/privacy?lang=it (cookie information link) https://support.twitter.com/articles/20170519-uso-dei-cookie-e-di-altre-tecnologie-simili-da-parte-di-twitter )
Consent to the use of cookies
The Association “Community of Living Ethics”, according to current legislation, is not required to seek consent for cookies and technical analytics, as necessary to provide the required services. For all other types of cookies, consent may be expressed by the User with one or more of the following methods:
Through specific configurations of the browser used or the related computer programs used to navigate the pages that make up the Site. By changing the settings in the use of third-party services Both these solutions may prevent the user from using or viewing parts of the Website.
How to disable cookies by configuring the browser
Chrome
1. Run the Chrome Browser
2. Click on the menu in the browser toolbar next to the url input window for navigation
3. Select Settings
4. Click Show Advanced Settings
5. In the “Privacy” section click on the “Content settings” button
6. In the “Cookies” section you can change the following cookie settings: Allow data to be saved locally Change local data only until the browser is closed Prevent sites from setting cookies Block third-party cookies and data from cookies sites Manage exceptions for some websites Delete one or all cookies
Mozilla Firefox
1. Run the Mozilla Firefox Browser
2. Click on the menu in the browser toolbar next to the url input window for navigation
3. Select Options
4. Select the Privacy panel
5. Click Show Advanced Settings
6. In the “Privacy” section click on the “Content settings” button
7. In the “Tracking” section you can change the following settings related to cookies: Request sites to not make any tracking Notify sites to be available to be tracked Do not communicate any preference regarding the tracking of personal data
8. From the “History” section you can: Enabling “Use custom settings” select to accept third-party cookies (always, from most visited sites or never) and to store them for a specified period (until their expiration, at the end of Firefox or ask every time) Remove individual cookies stored
Internet Explorer
1. Run the Internet Explorer Browser
2. Click the Toolbox button and select Internet Options
3. Click on the Privacy tab and in the Settings section, change the slider depending on the desired action for cookies: Block all cookies Allow all cookies Select sites from which to get cookies: move the cursor to an intermediate position in order do not block or allow all cookies, then click on Sites, in the Web Site Address box enter a website and then press on Block or Allow
Safari 6
1. Run the Safari Browser
2. Click on Safari, select Preferences and press Privacy
3. In the Block Cookiespecify as Safari section, you must accept cookies from websites.
4. To view which sites have stored cookies click on Details For more information visit the dedicated page.
IOS Safari (mobile devices)
1. Run the iOS Safari Browser
2. Tap on Settings and then Safari
3. Tap on Block Cookies and choose from the various options: “Never”, “Third party and advertisers” or “Always”
4. To delete all cookies stored by Safari, tap on Settings, then on Safarie and finally on Delete Cookies and data
Opera
1. Run the Opera Browser
2. Click on the Preferences then on Advanced and finally on Cookies
3. Select one of the following options: Accept all cookies Accept cookies only from the site you visit: third-party cookies that are sent from a domain other than the one you are visiting will be rejected Do not ever accept cookies: all cookies will never be saved For more information visit the dedicated page
SECTION IV – Denial of consent and rights of users / members
What happens if the Data Subject does not provide his data identified as necessary for the execution of the requested service? (Article 13, paragraph 2, letter and GDPR)
The collection and processing of personal data is necessary to follow up the requested services and to provide the requested course / activity. If the Data Subject does not provide the personal data expressly provided for as necessary in the registration form, the Data Controller will not be able to follow the processing related to the activities to which it intends to adhere and / or the services associated with them, or to fulfilments that depend on them.
What happens if the Data Subject does not give consent to the processing of personal data for promotional activities on activities / events different from those to which the application was made?
In the event that the interested party does not give his consent to the processing of personal data for these purposes, said processing will not take place for the same purposes, without this having effects on the provision of the requested services, or for those for which the interested party has already given its consent, if requested.
Information not contained in this policy
More information in relation to the processing of Personal Data may be requested at any time to SIAY using the contact information.
Exercise of rights by Users
The subjects to whom the Personal Data refer have the right at any time to obtain confirmation of the existence or otherwise of the same with the Data Controller, to know its content and origin, to verify its accuracy or request its integration , the cancellation, updating, rectification, transformation into anonymous form or blocking of Personal Data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their processing. Requests should be addressed to the Data Controller. (privacy@agniyoga.it).
————————— < —————————
Changes to this privacy policy
The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to Users on this page. Please therefore consult this page often, referring to the date of the last modification indicated at the bottom. In case of non-acceptance of the changes made to this privacy policy, the User is required to cease using this Website and may request the Data Controller to remove his Personal Data. Unless otherwise specified, the previous privacy policy will continue to apply to Personal Data collected until then.
Last modification: May 31, 2019
————————— < —————————
Glossary
Personal Data (or Data)
It constitutes personal data any information relating to a natural person, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number.
Usage Data
This information is collected automatically from this Website (or from third-party applications that this Website uses), including: IP addresses or domain names of the computers used by the User that connects to this Website, the addresses in the notation URI ( Uniform Resource Identifier), the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (good order, error , etc.) the country of origin, the characteristics of the browser and the operating system used by the visitor, the various temporal connotations of the visit (for example the time spent on each page) and the details relating to the itinerary followed within the Site Web, with particular reference to the sequence of pages consulted, to the parameters relating to the operating system and to the user’s IT environment.
User
The individual who uses this Website, which must coincide with the interested party or be authorized by him and whose Personal Data are being processed.
Interested
The person or legal contact to whom the Personal Data refers.
Member of CEV
The person who appears to be voluntarily and regularly enrolled in the Association of Living Ethics, for the current year of activity, with the status of Ordinary Member or Aggregate Member.
Data Processor (or Manager)
The person, legal contact, public administration and any other body, association or body appointed by the SIAY to process Personal Data, as prepared by this privacy policy.
Data Controller (or Holder)
The natural person, legal entity, public administration and any other body, association or body to which they are responsible, even together with another owner, decisions regarding the purposes, methods of processing personal data and the tools used, including the profile of the security, in relation to the functioning and use of this Website. The Data Controller, unless otherwise specified, is the owner of this Website.
This Website
Specifically, the website www.comunitadieticavivente.org, through which the Personal Data of Users can be collected.
Cookie
Small portion of data stored in the User’s device.