This document contains important information on the following matters.
1. DATA CONTROLLER
2. PROCESSING PURPOSES
3. NATURE OF DATA CONFERRAL AND CONSEQUENCES OF A REFUSAL
4. TYPES OF DATA PROCESSED/SPECIFIC PROCESSING
5. DATA CONSERVATION PERIOD
6. RECIPIENTS/CATEGORIES OF RECIPIENTS OF PERSONAL DATA
7. RIGHTS OF THE DATA SUBJECT
8. RIGHT TO OBJECT AND REVOKE
9. CHILDREN'S PERSONAL DATA PROTECTION
10. PROCESSING METHODS AND SECURITY AND CONFIDENTIALITY OF PERSONAL DATA
11. UPDATES OF THIS STATEMENT/NOTICES
1. DATA CONTROLLER
2. PROCESSING PURPOSES
After accessing this Website and using one or more services, information related to identified or identifiable natural persons may be processed. Any personal data collected, always in compliance with applicable regulations, will be processed solely for the following purposes:
a) purposes connected and instrumental to allowing access to and use of the Website, its features, the services requested and the services rendered by the Data Controller and, more in general, to the browsing of this Site;
b) for the organization, management and documentation of the sport events listed, sponsored and organized also through the Website and, more in general, for internal operating and administration requirements related to services and/or products offered through the Website, including direct marketing activities;
c) to comply with the requirements of the applicable law and regulations;
d) when expressly requested, to implement the newsletter service;
e) to answer users' requests and communications;
f) in the event of personal data collected during the registration phase and the using of the Website's restricted areas for: (i) the registration and management of the restricted area; (ii) the purposes provided in the relevant collection data form; (iii) sending marketing communications, newsletter, special offers and advertising material by the entities specified in the collection consent form, if necessary;
g) for any other purpose described in the specific information statement provided during the data collection.
In the event of explicit and freely given consent, if necessary, the data collected for the purposes indicated in point a), b) and f) above will be also be processed for direct marketing purposes by the Data Controller and in particular for sending information, commercial or advertising material related to the services and/or products offered by the Data Controller. The data will be processed fairly and lawfully and used solely for the purposes indicated in the paragraphs above. Processing will take place by means of appropriate instruments to guarantee the security and confidentiality of the personal data which may be handled using paper-based instruments and/or automated means or computer systems suitable for recording, managing and transmitting data.
3. NATURE OF THE DATA CONFERRAL AND CONSEQUENCES OF A REFUSAL
The provision of personal data is optional. Nevertheless, we inform that lacking the communication of personal data, user may not be allowed to properly browse the Site and the provision of any services or information requested may be prevented. The provision of additional personal data for the sending of informative material or other communications is optional. However, failure to provide such data could make it impossible to process such requests and therefore obtaining the relevant information. It should be noted that, in any case, if the processing of your data is carried out on the basis of consent, this can be revoked at any time, as specified below.
4. TYPES OF DATA PROCESSED/SPECIFIC PROCESSING AND LEGAL BASIS OF PROCESSING
Depending on the service provided, different types of personal data may be processed as specified in this article.
4.1. Navigation data
The information systems and software procedures used for the functioning of this Site collect, during their normal exercise, some personal data whose transmission is implicit in the navigation of websites. This information is not collected to be associated with identified interests. However, by their very nature they could, through processing and association with data held by third parties, lead to the identification of the users. These include the IP addresses or the domain names of the computers used by the users accessing the site, the URL addresses of the resources requested, time of the request, method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply from the server and other parameters related to the operating system and the platform used by the user. The information referred to above is used for the sole purpose of acquiring anonymous statistical data on the use of the site and to verify its correct functioning; these data are cancelled immediately after elaboration. The data may be used for ascertaining responsibility in the event of potential computer crimes to the detriment of the site: apart from this possibility, at the current time data on web contacts do not persist for more than seven days. Retention of access logs, maintained directly on servers that register users' IPs, are kept for 12 months. The legal basis of processing is carrying out the services to users (art. 6, paragraph 1, lett. b) GDPR). Should personal data be processed for profiling purposes, the lawful basis of processing will be consent. As far as cookies are concerned, reference should be made to COOKIES POLICY.
4.2.1. Data provided voluntarily by the user (communications)
Optional, explicit and voluntary communications by means of contact forms available on this site or by electronic mail to the addresses indicated on this Site, will lead to the subsequent collection of the data forwarded by the sender, including his/her e-mail address and consent to receiving further messages in answer to his/her requests.
The personal data thus supplied can be used only for the purpose of fulfilling or acknowledging requests transmitted and are communicated to third parties only when necessary for such purpose. Specific statements prepared for special services on request will be listed in the related web pages. The legal basis of the processing are as per: i) Section 6, paragraph 1, letter b) of GDPR (i.e. when the processing is necessary for the performance of a contract to which you are party or in order to take steps to at your request prior to entering into a contract) and; ii) Section 6, paragraph 1, letter f) of GDPR(i.e. the legitimate interest of the Data Controller to carry out the users' requests and to promote their activities).
4.2.2. Data provided voluntarily by the user (in order to receive communications related to marketing and/or commercial promoting)
Each person interested may provide his/her personal data voluntarily to the Data Controller in order to receive trade communications or promotions however they may be called either by digital or paper notices. The legal basis of this processing is consent, pursuant to section 6, paragraph 1, letter a) of the GDPR. However, in each communication the data subject will be reminded that he/she can withdraw his/her consent at any time and without any formalities. The data will be erased at the request of the data subject, except if otherwise provided by law.
Only in the case where electronic mail details are provided by the interested party in the context of sale of a product or a service, the e-mail address thus supplied may be used for the direct sale of other similar products or services pursuant to EU Regulation 2016/679 (GDPR) and Legislative Decree 196/2003 (Italian Personal Data Protection Act, the so-called "Privacy Code"), without the need for prior express consent. The legal basis of processing is the Data Controller's legitimate interest, pursuant to Section 6, paragraph 1, letter f) of the GDPR.
4.2.3. Data provided voluntarily (in order to receive newsletter)
The Data Controller's newsletter is sent by e-mail to whoever subscribes at the newsletter service. The legal basis are as per: i) Section 6, paragraph 1, letter b) of GDPR (i.e. the processing is necessary for the performance of a contract to which you are party or in order to take steps to at your request prior to entering into a contract; and; ii) Section 6, paragraph 1, letter f) of GDPR, the legitimate interest of the Data Controller's to promote their activities.
If you no longer wish to receive the newsletter, all you have to do is to click on the cancellation link to be found at the end of each e-mail. Cancellation is handled by automated means, and you could receive other newsletters the mailing of which had been planned prior to receipt of your request for cancellation, in any case within a period of maximum 72 hours.
4.2.4. Data provided voluntarily by the user (through Website reserved areas and in connection with the sport events organized by the Data Controller and sponsored and managed also through the Website)
Registration data (necessary for registration in any reserved area of the Website) will be used for: (i) registration and management of reserved areas (ii) the purposes indicated in any data collection form (iii) for sending of commercial information, newsletters, special offers and promotional material by the entity specifically indicated in the consent form, if necessary. The legal basis are as per: i) Section 6, paragraph 1, letter b) of GDPR (i.e. the processing is necessary for the performance of a contract to which you are party or in order to take steps to at your request prior to entering into a contract; and; ii) Section 6, paragraph 1, letter f) of GDPR, the legitimate interest of the Data Controller to promote their activities.
The data provided within the scope of sports events organized by the Data Controller and sponsored and managed also through the Website, including events participants' images, will be used for: (i) registration, organization, management and documentation of user participation in the events themselves (ii) purposes indicated in each data collection form (iii) for sending information and newsletters relating to events of the same nature by the entities specified in the consent form, if necessary. The legal basis of processing is to be found in the need to perform the contract/provide the services requested by users or to take steps to at your request prior to entering into a contract (Section 6, paragraph 1, letter b) of GDPR) or in the legitimate interest of the Data Controller to promote its activities ((Section 6, paragraph 1, letter f) of GDPR)
5. CONSERVATION PERIOD
Except as expressly indicated in paragraph 4 above, data conferred are kept for the time strictly necessary to implement the activities for which the data has been collected and, however, for the period provided for by legislation. Additionally, such data will be stored for the period necessary to exercise the Data Controller's rights.
6. CATEGORIES OF PERSONAL DATA RECIPIENTS
For the purposes set out in Article 2 of this document, if only prior consent is required, the data can be disclosed to third parties whose cooperation may and/or needs be used by Infront for performing the services offered. Such subjects/entities will act as external data processor, pursuant to section 28 of GDPR and they will process personal data for the same purposes listed under article 2 of this document. Please note that some of the entities to which data can be communicated might act as data controllers of the communicated data, subject to their release of a proper information statement pursuant to Section 14 of GDPR, unless otherwise provided by applicable laws.
Moreover, data collected for the above purposes can be disclosed to related companies or those belonging to the same Group as the Controller and to parties authorized for such purpose by provisions of law and European regulations, also outside the European Union territory (for example in Switzerland). Having regard to Switzerland, we inform you that European Commission, with adequacy decision No 2000/518/CE of July 26, 2000, determined that Switzerland ensures an adequate level of protection.
A list of the parties to whom the Data Controller discloses personal data collected for the purposes indicated above is available for data subjects care of the Controller and can be obtained on written request.
7. RIGHTS OF THE DATA SUBJECT
Regarding personal data processed by automated means, you have the right to receive in a structured and commonly used format, the personal data concerning you and to transmit them, if so wished, to another controller (right to data portability).
To allow Infront to operate in the best interests of the user, the latter is requested to regularly verify and update its personal data. If you are a registered user, you can access your personal data and amend them but using the user account setting on the Website. Otherwise, you can contact Infront to receive help to update your personal data.
8. RIGHT TO OBJECT AND REVOKE
In addition, each data subject has the right to withdraw his consent at any time, without affecting the lawfulness of processing performed by the Controller prior to withdrawal as well as the possibility for the Data Controller to continue data processing based on other legal basis of processing.
The data subject always has the right to object to the processing of the data concerning him/her if it is performed for the purpose of direct marketing as indicated in Article 2, paragraph b). In this case, your personal data will no longer be subject to processing for such purposes (right to object).
9. PROTECTION OF CHILDREN'S PERSONAL DATA
This website addresses a general public but its services are intended for persons of 14 years and over. Infront does not requests, collects, utilizes and discloses personal data provided by persons under the age of 14. If Infront becomes aware that they have collected data concerning a minor of 14, they will erase them.
If the user is not of the required age, he/she is kindly requested not to register and to ask an adult (i.e. his/her parents or guardian) to undertake the necessary procedures.
It should be noted that pursuant to Article 2-quinquies of Legislative Decree 196/2003, where Article 6, paragraph 1, letter a) applies regarding the direct offer of information services to minors, the processing of the minor's personal data is lawful if the minor is at least 14 years old.
10. PROCESSING METHODS AND SECURITY AND CONFIDENTIALITY OF PERSONAL DATA
Personal data will be processed in compliance with the principles set forth under Section 5 of GDPR. The processing of personal data for the above-mentioned purposes will take place through information technologies and manually, with electronic devices or in paper form, based on logical criteria aimed at pursuing the purposes for which the data were collected and fulfilling specific legal obligations, in compliance with the rules of confidentiality and security provided by GDPR and with all laws and its implementing provisions, as well as with national legislation and internal regulations. However, pursuant to Section 32 of GDPR, the Data Controller has taken all appropriate security measures to prevent risks that may arise from the processing of data, such as the destruction, loss and misuse of data, as well as unauthorized access to them.
In particular, Infront has taken appropriate steps to protect the user's personal data from accidental loss and unauthorized access, utilization, amendment and disclosure. The management of this Website uses password controls, firewall technology and other technological safety measures based on procedures. Although Infront has put the above security measures into place for its Website, the user should be aware that it is impossible to guarantee 100% security. Therefore, the user provides his/her personal data at his/her own risk and, to the maximum extent allowed by applicable law, Infront cannot be held responsible for their disclosure due to errors, omissions or unauthorized actions of third parties during or after their transmission to the latter. Infront advises the user to periodically update the software to protect transmission of data on the networks (for example, antivirus software) and to ensure that the supplier of the electronic communication services has adopted appropriate means for the security of data transmission on the networks ( for example, firewalls and spam filters); maintain the confidentiality of user name and password to access the user account and not communicate them to anybody as well as periodically changing the password.
In the unlikely event that Infront is of the opinion that the security of the user's personal data in its possession or under its control has been or could have been compromised, the Data Controller will inform the user in accordance with the procedures envisaged by applicable law, using the methods required by law (by supplying Infront with his/her e-mail address, the user agrees to receive such communications in electronic format through such e-mail address).
11. UPDATES OF THIS DATA PROTECTION STATEMENT - NOTICES
Infront, at its own discretion, reserve the right to change, amend, add or remove parts of this Data Protection Statement at any time by publishing the revised version on this page of the Website and changing the date of the "Last Amendment" indicated below. It is the user's responsibility to re-read the Data Protection Statement from time to time in order to discover any changes made. In some cases, Infront may provide further notices concerning major changes to this Data Protection Statement by publishing a notice on the first page of this Website or, in the case of registered users, by sending an e-mail notice or by inserting a notice on their account page. Accepting such revised Data Protection Statement by clicking on the "accept" button found in the e-mail notice or in the notice published on the account page (where this is envisaged to comply with applicable regulations), by using or sending information to the Website after publication of the revised Data Protection Statement, the user accepts such revised Data Protection Statement. After the amendments made if envisaged by applicable regulations, user data will not be subject to processing without the explicit consent of the user.
12. COOKIES POLICY
12.1 Cookies and Consent
What are cookies? Cookies are information recorded by the browser when you visit a website with any appropriate device (such as a pc, tablet or smartphone).
Each cookie contains several data (e.g., the name of the server it comes from, numerical identification, etc.), it may remain in the system for the length of a session (until the browser is closed) or for longer periods and may contain a unique user ID.
What are they used for? Cookies are used for different purposes according to their type. Some are strictly necessary for the proper functioning of a website (technical cookies), while others enhance the services rendered in order to offer users a better experience or allow the collection of statistics on the use of the site, such as analytic cookies or the viewing of personalized advertising, such as profiling cookies.
Consent? Consent is not required for the technical cookies installation. Consent is necessary for the installation of profiling cookies or not-anonymized analytics cookies Consent granted by the user is recorded by the Data Controller, within its remit, through a technical cookie for 12 months. The user is informed either by means of a short statement (a banner visible until consent is either provided or refused as explained in paragraph "How can I disable cookies?") or by this extended information how disabling cookies. Moreover links to the privacy policies of third parties are indicated in the following paragraphs, also for the purpose of disabling them (when directly available).
How can I disable them? You can disable cookies by using your browser settings (see para "How can I disable cookies?") or the mechanisms made available by some third parties (para.. "Cookies used on the site").
12.2 General types of cookies used on the site
Please find below a list of the general types of cookies installed on the Site.
Technical Cookies (first party): they are essential for proper Website functioning and viewing and for recording storing the user's consent to use the cookies.
Technical Cookies (third party): they are essential for proper Website functioning and viewing and any photos contained therein, to indicate possible authentication by the user, to ascertain whether or not the customer's browser accepts the cookies and for use of the Site by the administrator, by means of a third party service.
Analytic Cookies (third party): they are used for the purpose of an aggregate analysis of visits to the Site, by using the services of a third party.
Profiling Cookie (third party): they are used to create user profiles and for the purpose of sending advertising messages in line with the preferences shown during web navigation, by means of third party services.
12.3 Cookies used on the site
First Party Cookies: only technical cookies are used for proper Website functioning and viewing for the purpose of recording user consent to use the profiling cookies (duration: 12 months).
Technical Cookies: the Website uses a technical cookie to detect the navigation language and third party cookies to analyse user navigation.
Analytic Cookies: Google Analytics
We use navigation cookies generated by Google Analytics, a web traffic analysis service provided by Google Inc. ("Google"). Analytical cookies are used to provide information on how our users use the Website and to optimise and improve the Website, making it more interesting and relevant for users.
Google does not associate the IP address with any other data in its possession and does not try to connect an IP address with the identity of a user. Therefore, these cookies are considered as technical cookies and users' consent is not required for their installation. Google may also communicate this information to third parties if required by law or should such third parties process the aforementioned information on behalf of Google.
Profiling Cookies: Youtube
In addition, there are social buttons on our Site or the "buttons" on the Site that depict icons of social networks (eg Linkedin and Twitter) and allow users who are browsing to interact with a "click" directly with social platforms .
The social buttons used by the Site refer to the account of the owner on the social networks depicted.
By using these buttons, therefore, third-party cookies are not installed on the Site.
In any case, the links are shown where the user can read the privacy notice concerning the management of data by the Socials, where the buttons refer:
Some of our pages use Twitter social buttons or widgets. Twitter can store cookies on your computer.
12.4 How can i disable cookies?
Monitoring by browser: the most widely used browsers (e.g. Internet Explorer, Firefox, Chrome, Safari) accept cookies for predefined settings, but these settings can be modified by the user at any time. This is valid both for PC's and mobile devices such as tablets and smartphones: it is a function generally and widely supported. Therefore, cookies can easily be deactivated or disabled by accessing the options or preferences on the browser used and usually third party cookies can also be blocked. In general, these options will only be effective for that particular browser and on that particular device, unless there are options available uniting preferences on several devices. Specific instructions can be found on the options or help page of the browser itself. However, disabling technical cookies may impact the full and/or proper functioning of several sites, including this Site.
Usually, browsers these days:
- offer the "Do not track" option, which is supported by some websites (but not all of them). In this way, some websites may not collect certain navigation data;
- offer the anonymous or incognito mode option: in this way data will not be collected by the browser or saved in the navigation chronology but the navigation data will nevertheless be available for collection by the manager of the website visited;
- allow you to eliminate cookies recorded fully or in part but when you visit a site again, they will usually be reinstalled unless such possibility has been blocked.
Links to the help pages of the major and most widely-used browsers are indicated below (with instructions for disabling cookies on such browsers):
Third-party Cookies: third-party cookies can be disabled either with the modalities described above or by referring to each third party (following the links indicated in the above paragraph.
On line Instruments: please note that from the site https://www.youronlinechoices.com/it/ it is possible not only to collect further information, but also to verify the installation of numerous cookies on your browser and, if supported, also disable them.