Privacy statement

1. Regulatory Basis of Reference
The European General Data Protection Regulation (Reg. n.679/2016 of April 27th relating to the protection of individuals with regard to the processing and free circulation of particular data, in particular art. 13 of the regulation, also known as “GDPR”) has the purpose of ensuring that the processing of personal data is carried out in compliance with the rights, fundamental freedoms, as well as the dignity of individuals, with particular reference to confidentiality and personal identity.
The GDPR establishes that the Data Subject or the person from whom the personal data is collected receive a set of information about the purposes and methods of their processing. We therefore send you the following communication (of which a simultaneous copy is issued) which must be signed and returned to ensure that it has been acknowledged.

2. Joint Controllers
Fondazione Golinelli, with registered office in Via Paolo Nanni Costa n. 14, Bologna (BO), VAT number 03939010371, e-Mail: privacy@fondazionegolinelli.it and Uniser, with registered office in Mura di Porta Galliera n. ½ Bologna (BO), VAT number IT02622940407, e-Mail: segreteria@uniser.net (hereinafter also referred to as the “Joint Controllers”) – are the joint controllers of your personal data pursuant to the GDPR in object.

3. Types of data collected and legal basis
The Joint Controllers informs you that, according to the provisions of the GDPR, the contact data included in the attached document – where they contain personal data of the reference subjects (eg. contact data via email referable to natural persons, personal telephone numbers, etc.) will be processed solely to enable participation in the training course “UNISER TEACHER WEEK 2024. International Skills in the Digital Era” and for administrative/accounting purposes.
The lawfulness of this processing is based on the fact that it is necessary for the execution of a contract of which the Data Subject is a party (Article 6.1-b of the Regulation), or depending on the case, on the basis that the processing is necessary for the pursuit of the legitimate interest of the Joint Controllers (Article 6.1-f of the Regulation).

4. Non-disclosure of personal data
The provision of personal data is optional but failure to communicate would prevent the establishment or proper continuation of the relationship.

5. Purpose of the processing
The Joint Controllers ensures that the data collected will be processed only for the purposes of fulfilling contractual and / or communication obligations relating to agreements signed or in the process of signing and / or managing the related execution of the activity.

6. Recipients of personal data
Personal data may be disclosed to:

• subjects, public and private, who, if strictly established by law, will be able to access the data by virtue of the provisions of the law, within the limits provided for by the rules themselves (by way of example and not exhaustive: the institutions and social security, welfare and insurance funds, pension funds and assistance, including supplementary ones, the offices of the financial administration, etc.);
• subjects who need to access your data for purposes auxiliary to the relationship between you and the Joint Controllers, within the limits strictly necessary to carry out the auxiliary tasks entrusted to them (by way of example and not limited to: credit institutions or insurance companies, etc.) – upon signing of a letter from the authorized / external Data Processor by the Joint Controllers;
• consultants / suppliers of the Joint Controllers, following a letter of appointment by the Joint Controllers which imposes on them the duty of confidentiality and security in the processing of personal data.

In any case, personal data will not be disseminated or, except as indicated above, communicated to third parties.

7. Method of treatment of personal data
We inform you that the data processing indicated in this Information is also carried out with the aid of electronic and / or automated computer-based means, via terminals and PCs connected to a network with a central computer and, in any case, by means of suitable tools to ensure adequate security and confidentiality. The methodologies applied also guarantee non-interference between the processing relating to the various purposes and limited access to those responsible and / or authorized to process the processing for each of the purposes relating to your employment relationship with the Joint Controllers.

8. Rights of the Data Subjects
We also remind you that the GDPR grants you the exercise of specific rights, including those of obtaining confirmation of the existence or not of your personal data even if not yet registered, the communication in intelligible form of the same data, their origin as well as of the logic and purpose of the processing itself, in particular you have the right to obtain:

• confirmation as to whether or not your personal data is being processed and, in this case, to obtain access to it (right of access, pursuant to Article 15 of the GDPR);
• the correction of your inaccurate personal data, or the integration of your incomplete personal data (right of rectification, pursuant to Article 16 of the GDPR);
• the cancellation of your data, if one of the reasons provided for by the Regulation exists (right to erasure/ ‘right to be forgotten’, pursuant to Article 17 of the GDPR);
• the limitation of the processing of your data when one of the hypotheses provided for by the Regulation occurs (right of limitation, pursuant to Article 18 of the GDPR).
• the right to request a complete and updated list of Data Processors of your personal data.

9. Personal Data Protection
The Joint Controllers use advanced security technologies and periodic backups to protect the integrity and confidentiality of your data.

10. Retention Period of Personal Data
The Joint Controllers will keep personal data for as long as necessary to fulfill the obligations established by law, resolve disputes and enforce the agreements concluded. Personal data will therefore be kept, in accordance with the provisions of the law, for a period of time not exceeding that necessary to achieve the purposes for which we are processing them, in particular. In any case, we will take every care to avoid excessive data retention, proceeding periodically to check our archives.

11. Informations
You can exercise the aforementioned rights at any time by sending a simple request to this email address privacy@fondazionegolinelli.it or segreteria@uniser.net or to the physical address indicated in the Joint Controllers paragraph. We will contact or inform you as soon as possible and, in any case, within 30 (thirty) days from the date of your request.

12. Complaints
If you believe that the legislation on personal data protection has been violated with regard to the processing of your data, you also have the right to lodge a complaint with the local authority for the protection of personal data within the European Economic Area. (‘AEE’). You can find the references of the individual Authorities, depending on the country in which you are located, by clicking on this link http://www.garanteprivacy.it/web/guest/home/footer/link.