This information is provided pursuant to art. 13 of the EU Regulation n. 2016 to those who interact with web services accessible electronically from the address: http://www.novisport.eu

The information is provided only for the site in question and not for other websites that may be consulted by the user via links.

The information is also based on Recommendation no. 2/2001 that the European authorities for the protection of personal data, gathered in the Group established by art. 29 of directive n. 95/46 / EC, adopted on 17 May 2001 to identify some minimum requirements for the collection of personal data online, and, in particular, the methods, timing and nature of the information that the data controllers must provide to users when they connect to web pages, regardless of the purpose of the link.

THE “OWNER” OF THE DATAS TREATMENT
Following consultation of this site, data relating to identified or identifiable persons may be processed.
The “owner” of their treatment is: CGFS President, via Pomeria 90 59100 Prato

DATA PROTECTION MANAGER (DPO)

The data protection officer (DPO) is Dr. Dionisi Edoardo, email contact: rpdtoscana@gmail.com.

PLACE OF DATA PROCESSING

The treatments connected to the web services of this site take place at Aruba S.p.A. based in Località Palazzetto n. 4, 52011 Bibbiena (AR) Tel. 0575/0505 Fax 0575/862000, and are only handled by the technical staff of the office in charge of processing, or by persons in charge of occasional maintenance operations.

No data deriving from the web service is communicated or disseminated. This is without prejudice to any communication to the competent authorities, in relation to the activities necessary for the detection and prosecution of crimes.

TYPES OF DATA PROCESSED
Navigation data

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s computer environment.

These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site: except for this possibility, the data on web contacts do not currently persist for more than 5 days.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message. Same procedure for entering data through any login, registration and communication form. The sending of the same through IT procedures implies, without further requests, the acceptance and consent to the processing of their data.

Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.

OPTIONALITY OF PROVIDING DATA

Apart from that specified for navigation data, the user is free to provide personal data contained in the application forms or indicated in contacts to request the sending of informative material or other communications.

Failure to provide them may make it impossible to obtain what is requested.

METHOD OF TREATMENT

The processing will be carried out in an automated and / or manual form, in compliance with the provisions of art. 32 of the GDPR 2016/679 regarding security measures, by persons specifically appointed and in compliance with the provisions of art. 29 GDPR 2016/679.

We point out that, in compliance with the principles of lawfulness, purpose limitation and data minimization, pursuant to art. 5 GDPR 2016/679, your personal data will be kept for the period of time necessary to achieve the purposes for which they are collected and processed. However, the duration may not exceed 10 (ten) years.

EXISTENCE OF AN AUTOMATED DECISION-MAKING PROCESS, INCLUDING PROFILING

CGFS does not adopt any automated decision-making process, including profiling, referred to in Article 22, paragraphs 1 and 4, of EU Regulation no. 679/2016.

RIGHTS OF THE INTERESTED PARTIES

At any time, you can exercise, pursuant to articles 15 to 22 of EU Regulation no. 2016/679, the right to:

a) ask for confirmation of the existence or otherwise of their personal data;
b) obtain information about the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be communicated and, when possible, the retention period;
c) obtain the rectification and cancellation of data;
d) obtain the limitation of the processing;
e) obtain data portability, i.e. receive them from a data controller, in a structured format, commonly used and readable by an automatic device, and transmit them to another data controller without hindrance;
f) oppose the processing at any time and also in the case of processing for direct marketing purposes;
g) oppose an automated decision-making process relating to individuals, including profiling.
h) ask the data controller to access personal data and to correct or cancel them or limit their processing or to oppose their processing, in addition to the right to data portability;
i) withdraw the consent at any time without prejudice to the lawfulness of the processing based on the consent given prior to the revocation;
j) lodge a complaint with a supervisory authority.

You can exercise your rights with a written request sent to CGFS, to the postal address of the registered office or to the email address of the Data Protection Officer.