Privacy Policy

Pursuant art. 13 and 14 of the Regulation (EU) 2016/679 on Personal Data Protection (GDPR), this document describes the methods adopted in order to safeguard the privacy of visitors to this website; it describes how we collect, use and protect personal data; and presents the rights recognized to the visitors and the means to contact us. 

Data Controller

Fondazione LIA based in 
Corso P.ta Romana 108
20122 Milano

Purposes of the processing

On our website, we collect the personal data that You are free to provide to us by means of:
  • Electronic mail address provided by the Data Controller;
  • Filling out the form of data collection / subscription to the Newsletter service 
for the following purposes: 
  • Meeting the specific demand submitted by the User;
  • Allowing the submission of spontaneous application;
  • Sustaining projects and activities of Fondazione LIA, helping with a Donation;
  • Allowing the subscription to the Newsletter service, which contains updates and information about projects and activities of Fondazione LIA;
  • Allowing the registration to participate to an event / training course / seminar / workshop; 
  • Allowing the download of multimedia contents; 
  • Prior consent of the data subject, transmission of updates, proposals to support through donations or by 5x1000 (donation through Tax Declaration); information about events, courses and other promotional activities by traditional and automatic means. 
  • Prior consent of the data subject, sending updates, information and commercial notifications, advertising events and other promotional activities - by traditional and automatic means – sponsored by AIE – Associazione Italiana Editori, and its service company Ediser S.r.l, in partnership with Fondazione Lia; 

Legal basis for data processing

The processing of personal data is compliant to the principle expressed by art. 6 of the General Data Protection Regulation, the processing is lawful when necessary to provide the services requested by Data Subject. Providing data for those purposes is necessary to meet the user’s request, therefore giving correct execution to the agreement between the Parties involved.
Personal data processing for promotional purposes will be based on the Data Subject’s consent, pursuant art. 6 GDPR. Providing data for promotional purposes is not mandatory, the refusal will thus not cause any consequences except the impossibility to receive promotional material about activities and projects.

Types of personal data collected

Personal data collected on this website specifically concern personal information and contacts; methods of payment in case of donations; communications which users may need to send to the Data Controller.
Fondazione LIA does not intentionally collect any sensitive personal data on this website.
In addition to the data provided directly and voluntarily by the user, the informatic systems and software procedures necessary to correctly run the website will acquire - during their normal operation - some web browser data, whose transmission is implicit in the use of Internet communication protocols. 
For further information about this, please refer to our website’s Cookie Policy. 

Method of Data Processing

The processing of personal data may consist of collection, registration, organization, storage, processing, modification, comparison, selection, extraction, utilization, interconnection, block, communication, disclosure, erasure and destruction; or the combination of two or more of these operations, also using automatic means to memorize, manage and transmit data, using appropriate instruments to ensure the security and the confidentiality. 
With regard to security, we inform You that the database is accessible only by staff members previously authorized by the Data Controller, as well as the related operations described above; and that the processing of Your data will occur through appropriate methods and instruments  to ensure confidentiality by using electronic means or automatic and non-automatic means (paper records), both provided with appropriate security measures, pursuant EU Regulation 2016/679 to prevent data loss, unlawful or malicious acts and unauthorised access.

Data communication to third parties

Without prejudice to the communications provided to comply with law obligations, the Data Controller will communicate the provided personal data only to third parties specifically appointed and designated as Data Processors - in order to support the service requested and fulfil the purposes mentioned above. Among them: 
  • Consultants and collaborators responsible to provide fiscal, accounting and legal assistance;
  • Commercial and operational partner; 
  • Third parties hired to manage the IT system, the website or the databases and communications networks;
  • Credit institutions to manage the donations (or 5x1000); including suppliers of e-payments services. 
Users’ data may be transmitted, pursuant to the law, to the police or judicial and administrative authorities  for detection and prosecution of offences; prevention and protection from threats to the public security; and to allow the Data Controller to ensure, exercise or defend a right before a Court; and for other reasons related to the protection of the rights and freedoms of the individuals.

Link with websites of third parties

We invite our users to consider that this website contains links to other websites which are not covered by this privacy policy. Our users may be redirected to third parties’ websites to collect more information about events and promotional contents, or service providers; the Data Controller does not vouch for the methods used by the third parties’ servers to memorize and use data. We recommend users read carefully the privacy policy of each websites reached through our website, in order to be aware the use of Your personal data.

Use of Social Media

This website may provide links to social media platforms which are connected to servers installed by individuals or organizations that do not fall under the control of the Data Controller. The Data Controller does not provide any representation and will not take any responsibility for the accuracy of the information available to those websites. The link to a third website cannot be intended as a validation - neither from Data Controller nor from the third parties - of the products and services of others or of the third party.  Fondazione LIA does not make statements or guarantee the use or storage of data within the websites of third parties. 
We invite the users to read carefully privacy policies which regulates third parties websites linked to ours in order to have a better understanding of the possible use of Your personal data.

Data Retention

All the personal data collected on this website will be retained for the time necessary to the satisfy of the request, thus to  the conditions of the agreement between parties.
With regard to the specific marketing purposes, we inform users that Your data will be retained for a period of 5 (five) years, without prejudice to the right of the data subject to revoke the consent in any moment, or to withdraw from the Newsletter service.

Rights of the data subjects

Pursuant to the EU Regulation 679/2016,  data subjects have the right to: request to the Data Controller the access to their personal data (art. 15), rectify (art. 16), cancel or the right to be forgotten (art. 17), the limitation of processing of their personal data (art. 18), the right to data portability (art. 20) or to object their processing (art. 21), and right to be not subjected to a decision solely based on automated processing, including profiling which produces legal effects on the subjects, or similarly significantly affects his/her person (art. 22). 
If the data processing is based on the consent expressed by data subject, pursuant art.  7 paragraph 3 of the GDPR, withdrawal from the Newsletter subscription or from the reception of commercial and promotional information is allowed at any time.
Data subjects have also the right to submit complaints to the Supervisor Authority (art. 77 of the Regulation) if the users think the processing carried out by the Data Controller is not compliant to the legislation about protection of personal data.
Requests can be forwarded to the Data Controller by sending an email to: privacy@fondazionelia.org

Changes to this policy

The present privacy policy was updated on the 4th March 2019
Fondazione LIA reserves the rights to modify the present privacy policy when deemed necessary. We invite You to check this page periodically to keep track of possible changes.