This document describes the website management procedures www.euphrasiathemusical.gsif.it (“Site“), with reference to processing users’ personal data (“User/Users“).
This information is provided pursuant to Articles 13 et seq.of Regulation (EU) 679/2016 (“GDPR“), to all those who visit the Site and/or communicate with Good Shepherd International Foundation Onlus.
The information is provided only for the Site and not for other websites that may be consulted by the User through links on the Site.
1. Data Controller
The data controller is Good Shepherd International Foundation Onlus, with registered office in Rome, at Via Raffaello Sardiello, 20, Tax Code 97512090586, e-mail address email@example.com (the “Foundation” or the “Data Controller“).
2. Type of data processed
2.1 Browsing data
The computer systems and software procedures provided for Site functioning acquire, during their normal operation, some personal data, transmission of which is implicit in the use of internet communication protocols.
This information is not collected to be associated with identified individuals, but by its very nature could allow users to be identified. This category of data includes (i) the IP addresses or domain names of computers used by users who connect to the Site, (ii) the URI (Uniform Resource Identifier) notation addresses of the resources requested, (iii) the request time, (iv) the method used to submit the request to the server, (v) the size of the file obtained in response, (vi) the numerical code indicating the status of the response givenby the server (successful, error) and (vii) other parameters relating to the operating system and computer environment of the user.
This data is used only to gather anonymous statistical information about use of the Site and to check the correct functioning of the site. Such data is deleted immediately after processing.
For the processing of data by cookies, please read the relevant policy below.
2.3 Data voluntarily provided by the User:
a) The optional, explicit and voluntary sending of e-mail messages to the addresses indicated on this Site involves the acquisition and processing by the Data Controller of the e-mail address provided by the User, as well as any other personal data that may be present in the communication sent;
b) the completion of the form available in the “Contact us” section involves the acquisition and processing by the Data Controller of the following data: name, e-mail address, as well as any other information contained in the communication sent;
c) the sending of a donation through the “Donate now” section involves the acquisition and processing by the Data Controller of the following data: name, surname, credit card details, country of origin and, possibly, e-mail address and telephone number.
3. Purposes and legal basis of processing
The processing of the User’s personal details by the Data Controller is aimed at the data pursuant to
b) Section 2.3(a) & (b), to process requests for information sent to the Data Controller, pursuant to Art. 6.1(b) of the GDPR;
c) Section 2.3(c), to allow the User to make a donation, pursuant to Art. 6.1(b) of the GDPR, as well as, subject to the donor’s consent, to send communications, via automated systems (e-mail, SMS, MMS) and/or postal mail and telephone calls, regarding the initiatives and activities organised by the Foundation to pursue its institutional purpose, pursuant to Art. 6.1(a) of the GDPR. Such communications may be done in a profiled manner, taking into account the areas of interest expressed by you to the Foundation through your donation(s).
4. Consequences of any refusal to respond
The provision of data for the purpose of processing requests for information made by the data subject or to allow the User to make a donation, is compulsory, as failure to do so will make it impossible for the Data Controller, in whole or in part, to perform the User’s request.
The provision of donor data for sending newsletters, however, is optional and subject to the donor’s explicit consent, which may be withdrawn at any time without prejudice to the lawfulness of the processing conducted before such withdrawal.
5. Processing methods and categories of person to whom data may be communicated
Data processing will be conducted by means of computer and telematic instruments, with logic strictly related to the above purposes and, in any case, by persons authorised to perform these tasks, duly informed of the constraints imposed by the GDPR, equipped with security measures to ensure the confidentiality of personal data and to avoid undue access to third parties or unauthorised personnel.
In particular, the data may be communicated, to the extent strictly necessary for the purposes pursued, to employees, collaborators, professionals and companies in charge of specific processing, to accounting firms and consultants responsible for keeping accounts, banks, associated companies, third-party suppliers, such as, for example, the company that manages the payment service for donations. Such suppliers, where they operate in countries outside of the EU, offer their services on the basis of standard contractual clauses or on the basis of European Commission adequacy decisions. Such subjects shall come into possession only of the personal data required for them to perform their functions and may only use them for the purpose of performing such services for the Data Controller or to fulfil legal requirements. The data may also be communicated to police bodies, judicial authorities and to persons who may access data under the provisions of law or secondary or Community legislation.
The Data Controller undertakes to process the data in compliance with the provisions of the GDPR, as well as the national legislation in force on privacy, as well as to process the data lawfully and correctly, collecting and recording data for specific, explicit and legitimate purposes, taking care to check that such data is relevant, complete and not excessive with respect to the purposes for which it was collected or subsequently processed.
6. Data subject’s rights
The User is guaranteed the rights set forth in Articles 15 et seq.of the GDPR, consisting essentially of the right to receive information from the Data Controller regarding the existence or otherwise of processing of their personal data, as well as to access their data, to have it rectified, added to, updated, erased or to object to processing thereof. In addition, each data subject shall also have the right to obtain a copy of their data, to restrict processing and/or, again, to object to processing thereof, as well as the right to data portability and to lodge a complaint to the competent supervisory authorities under the conditions and within the limits indicated in Art. 13 of the GDPR.In order to exercise these rights, Users may send a written request to the Data Controller at the address firstname.lastname@example.org, indicating RE: “Privacy – exercising privacy rights”.
7. Duration of processing and storage of personal data
Users’ personal data will be processed by the Data Controller only for the period of time required to achieve the purposes of processing pursuant to Article 3, after which period of time, it will be stored only in fulfilment of the legal obligations in force on the matter, for administrative purposes and/or to assert or defend a right, in the event of a dispute or pre-litigation. With reference to data processed for the purpose of sending communications regarding the initiatives and activities organised by the Foundation to pursue its institutional purpose, they will be processed for a period of two years or until consent is withdrawn.
1. General Cookie Information
Cookies are small text files sent by sites users use to their computers, where they are stored to then be resent to those sites on subsequent visits. Cookies are used for various purposes, they have different specific features and can be used both by the site owner and any users visiting the site, as well as by third parties. The main categories into which cookies can be divided are:
- session or permanent cookies;
- technical or profiling cookies;
- first- and third-party cookies.
1.2 Session and permanent cookies
Cookies may expire at the end of browser session (the time between a user opening a browser window and closing it) or may be stored for a longer period of time. Session cookies are those that enable websites to link user actions during a browser session. Session cookies expire when the browser session ends. Permanent cookies are stored on the user’s device between browser sessions, for different periods of time, and allow a user’s preferences or actions in relation to a website to be remembered.
1.3 Technical and profiling cookiesTechnical cookies are those used by the site owner for the sole purpose of sending a communication over an electronic communication network, or to the extent strictly necessary for the supplier of an information service explicitly requested by the subscriber or user to provide such a service. The installation of these cookies does not require the prior consent of users when used directly by the site operator.
Profiling cookies are designed to create profiles related to the user and are used to send advertising messages in line with the preferences expressed by the user when surfing the web. Due to the particular invasiveness that such cookies may have on users’ privacy, European and Italian law sets forth that users must be adequately informed about their use, through a short informative note (banner) and more extensive information on the site, and must give their express consent in this regard the first time they visit the site. This consent may be expressed in a general manner by interacting with the short information banner on the site landing page, in the manner indicated in that banner, or may be provided or denied selectively, in the manner indicated below. This consent will be recorded on subsequent visits. The user always has the option to revoke all or part of the consent already given.
1.4 First- and third-party cookies
A cookie is “first party” or “third party” depending on whether it is from the website or the domain from which it originates.
First-party cookies are, in essence, cookies set and managed by the site owner. For these cookies, the obligation to provide information, the acquisition of prior consent and/or the possible blocking of cookies lies with the site owner.
Third-party cookies are cookies set by a domain other than the one visited by the user. For these cookies, the obligation to provide information and to indicate how to consent to and/or block cookies lies with the third party, while the site owner is only obliged to add a link to the site of the third party where these elements are available.
Here below, the site owner, Good Shepherd International Foundation Onlus, with registered office at Via Raffaello Sardiello, 20, Rome, tax code 97512090586, e-mail address email@example.com (hereinafter, in short, the “Site Owner“), provides the user with all the information about cookies installed on the site www.fondazionebuonpastore.org (hereinafter, the “User” and the “Site“) and the indications required on how to manage their own preferences.
2.2 First-party cookies
The first-party cookies used by the Site Owner are of a technical nature. These are functionality cookies, used to activate specific features of the site and required to provide the service or improve it, and cookies.
2.3 Third-party cookies
The Site Owner also uses third-party cookies to analyse the use of the Site by Users, to optimise its use, as well as to submit personalised ads in line with users’ preferences.
3. How to disable Cookies?
Below you will find links explaining how to disable cookies for the most popular browsers (for any other browsers that may be used, we suggest you look for this option in the software help section normally available through the F1 button):
Click on “Tools” and then “Internet Options”. Clicking on the “Privacy” tab under “Settings”, move the slider up to block all cookies.
Click on the menu in the browser tool bar. Select “Settings”. Click on “Show advanced settings”. In the “Privacy” section, click on the “Content settings” button. Select “Block site permissions”.
Click on the menu button and select “Options”. Select “Privacy & Security”. Under “History” settings: select “use custom history settings”. To enable cookies, check “Accept cookies from sites”; to disable them, remove the check from the item.
Click “Safari” on the menu bar, then “Preferences”. Then click on “Privacy”, “Details” to select the site, finally select “Remove”.
Alternatively, you can disable Google Analytics cookies using the opt-out add-on provided by Google for the main browsers https://tools.google.com/dlpage/gaoptout?hl=it.
Please note that the information obtained using the cookies identified above is anonymised before sending the data to the third-party owner.
In any case, this information does not personally identify the users.
4. How do I consent to the installation of Cookies?
In addition to what is indicated in this document, Users can manage their cookie preferences directly within their browser and prevent, for example, third parties from installing them. You can also use your browser preferences to delete cookies installed in the past, including the cookie used to save your consent to this Site installing cookies. Users can find information on how to manage cookies using some of the most common browsers at the following addresses:
Google Chrome: https://support.google.com/chrome/answer/95647?hl=it;
Mozilla Firefox: https://support.mozilla.org/it/kb/Gestione%20dei%20cookie;
Apple Safari: https://support.apple.com/kb/PH19214?locale=it_IT;
Microsoft Windows Explorer: http://windows.microsoft.com/it-it/windows-vista/block-or-allow-cookies.
Notwithstanding the foregoing, Users may use information provided by EDAA(EU), Network Advertising Initiative(USA) and Digital Advertising Alliance(USA), DAAC(Canada), DDAI(Japan) or other similar services. Using these services, you can manage the tracking preferences of most advertising tools. The Site Owner therefore advises Users to use these resources in addition to the information provided by this document.