Privacy policy on the processing of personal data

Pursuant to Article 13 of European Regulation n. 2016/679 on the protection of personal data
Since, even after the mere consultation of websites, there may be the possibility of collecting and processing data relating to identified or identifiable persons, this section describes the procedures of how our website processes users’ personal data who consult it. The following PRIVACY AND COOKIE POLICY therefore means, in addition to providing the website rules in reference to the aforementioned personal data, also to provide the policy pursuant to Article 13 of EU Regulation, n. 2016/679 to those who interact or visit our website, accessible by telematic means from the address:
https://www.oshomiasto.it
Corresponding to the initial home page. The information is provided only for our website and not for other websites that may be consulted by the user via links.

1 HOLDER OF THE TREATMENT
Business name
ISTITUTO OSHO MIASTO
Address
Podere San Giorgio, 16
CAP 53031
City
CASOLE D’ELSA
Province: SI
Name: CIPRIANI Francesca
Legal Representative: CIPRIANI Francesca
The complete list of all those responsible for the processing of personal data, appointed by us, is easily available by contacting the Data Access Manager or by visiting the website www.oshomiasto.it

2 PLACE OF DATA PROCESSING
The processing carried out by the owner with the data collected from this website takes place at the aforementioned owner’s headquarters and are only handled by personnel appointed for this purpose or by persons in charge of occasional maintenance operations.

3 DATA COLLECTION PROCEDURES
The collection of information through the website can be carried out in one of the following ways:
a) Explicit method
b) Implicit method
c) Information sent voluntarily by the interested party

3.1 EXPLICIT ACQUISITION METHODS
Data request forms are available on our website.

3.2 IMPLIED ACQUISITION OF INFORMATION
Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, etc.), and other parameters relating to the operating system and the user’s IT environment.
Other information collected in this way may relate to: the “Uniform Resource Locator” (URL) of the website from which the user comes, which pages of the Website have been visited, what is the next URL to which the user has connected, which browser was used to reach the website.

3.2.1 COOKIES
A “cookie” is a small data file transferred to your computer’s hard drive when you access a website. No personal user data is acquired by the website in this regard.
We do not use cookies to transmit information of a personal nature, nor are the c.d. persistent cookies of any kind, or systems for tracking users.
This website uses only so-called session cookies that are not stored permanently on the user’s computer and disappear when the browser is closed.
The use of c.d. session cookies is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow a safe and efficient exploration of the website.
The c.d. session cookies used on this website avoid the use of other IT techniques that are potentially prejudicial to the privacy of users’ browsing and do not allow the acquisition of personal identification data of the user.
The aggregated information collected is anonymous and allows to analyze the type of traffic on the website. Over time this can help improve the content and make it easier to use. Most browsers automatically accept cookies, but it is also possible to reject them entirely or selectively accept only a few, acting on the preferences of your browser. If the user inhibits the loading of cookies, some components of the website may not be available and certain pages may be incomplete.

3.2.2 DATA LOG
The LOGs are archives on which the traffic data is automatically recorded, that is the activities carried out by the users who connect to our website. These archives give the possibility to reconstruct all the events that occurred on our website. LOGs are an essential element for the management of the system and allow solving many technical or organizational problems. We do not manage any type of Data Log, but it can be generated by the providers that manage our network connections and to whom you should contact for any clarifications.

3.3 VOLUNTARY INFORMATION SENT BY THE INTERESTED PARTY
The voluntary sending of electronic mail to the addresses indicated on this website entails viewing the sender’s e-mail address as well as any other personal data included in the message. This information will be used for the sole purpose of carrying out what has been requested (order production, supply of services, etc.). If, for any reason, the data were used for other purposes, they will be subject to the necessary formalities based on the use that we make of them according to the regulations in force (information and, if necessary, request for consent from the interested party), otherwise they will be immediately and irrevocably removed from our information systems.

4 LINKS TO OTHER WEBSITES
There is the possibility that the website contains links to third-party websites. When you use these links, you forward in environments that are not controlled by our organization that is not responsible for the contents in which the user may encounter, nor the privacy procedures adopted therein.
This policy does not extend to the privacy procedures adopted by the linked websites. It is advisable to carefully examine the procedures of each website that is visited. Furthermore, those websites, in a completely independent way, can send their cookies to users, collect data or request personal information.

5 Nature of the processed data
The data collected in addition to those indicated above and necessary for the management of the website may also concern the following categories:
personal, fiscal and economic data that are necessary
/ for the provision of the services requested and subject to the current or future economic and/or contractual relationships (e.g. necessary for the production of any orders)
/ for the fulfillment of the related taxes and/or mandatory obligations by law (e.g. invoicing)
/ personal data (name, surname, company name, telephone, fax, e-mail addresses) necessary to process your requests for information and/or technical assistance
/ data concerning e-mail addresses and other data that may be sent voluntarily by e-mail.
/ e-mail addresses, name and surname (for sending information on new services, promotions, special offers, dates of internal events offered by the Owner).

6 Purposes of the processing
For purposes of processing we mean the reason, the purpose for which the data is collected. Navigation data: this data is used only to obtain anonymous statistical information on the use of the website and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the website.
Personal data provided voluntarily by users treated as a result of requests for a service or otherwise: this data will be used for the sole purpose and for the time strictly necessary to perform the service or provision requested and may, for this reason, be communicated to subjects belonging to our association.

Personal data for registration to the newsletter: by requesting specific consent, you authorize us to treat some of your personal data (personal data and e-mail) to send information about new services, promotions, special offers, dates of internal events to our Institute offered by the Owner. The data is kept up to the request of the interested party of possible opposition to the sending and the will of these to renounce the receipt of the newsletter by clicking on the cancellation link of the registration placed at the bottom of each communication or through the procedures set for this purpose to provision periodically, except that for the processing for marketing and advertising purposes by the Owner, which will continue up to 24 months after the last contact with the Data Controller, except the possible establishment of contractual relationships and in any case up to opposition of the interested person.

7 Processing and storage methods
The processing of your personal data is carried out by means of the operations indicated in the art. 4 n. 2) of the GDPR. The processing of data takes place in an automated form using appropriate tools and procedures to guarantee security pursuant to art. 32 of the GDPR 2016/679 by authorized parties, in compliance with the provisions of art. 29 of this Regulation. Personal data is subject to the aforementioned processing in compliance with the principles of lawfulness, limitation of purposes and minimization of data pursuant to art. 5 of the GDPR.

The Owner will process your personal data for the sole purpose and for the time strictly necessary to perform the service or provision requested.

8 Security of personal data
The personal data, possibly collected on the website, is protected from unauthorized access, use or disclosure. This data can only be accessed by our staff with their own authentication credentials, and all the necessary security procedures have been applied to protect them from violations by unauthorized personnel, both locally and online. All personal data supplied to us is in fact stored in a secure and controlled environment. To this end, physical, electronic and organizational processes have been prepared to safeguard and protect the information collected.

9 Guarantees for subscribers and/or users and storage of traffic data
For the security guarantees offered during the connection, designed to safeguard the integrity of the data and electronic communications, as well as the types of data that are collected, recorded and the relative storage times of such data, it is necessary to view the policy issued from our electronic communication service provider and the provider you rely on for networking. The collection of such data and the relative methods of conservation are beyond our responsibility. These activities may be carried out by the aforementioned electronic communication service provider in a completely independent manner.

10 Storage of traffic data
Data collected on the net is not sold, marketed or rented to third parties. Should the need arise, the consent of the interested parties will be requested. Personal data may be communicated and/or disclosed as specified in the “communication and dissemination” section.

11 Information sharing
Personal data collected on the net is not sold, marketed or rented to third parties. If the need arises, the consent of the interested parties will be requested. Personal data may be communicated and/or disclosed as specified in the “communication and dissemination” section.

12 Obligation or right to provide data
Apart from that specified for navigation data, the user is free to provide the personal data that can be requested by browsing our website. Failure to provide such data may make it impossible to obtain what is requested.

13 Communication and dissemination
Your personal data will not be “disseminated”, i.e. they will not be made known to undetermined individuals; such data, on the other hand, may be “communicated” by us, that is to say, they will be made known to one or more specific subjects, in particular to public and private subjects executed in compliance with legal and contractual obligations for the purposes specified above. Your personal data may also be known by the employees and collaborators of the Data Controller in their capacity as Data Processors or Trustees, identified in writing and to whom specific instructions have been given.

14 Your rights
At any time you can exercise, pursuant to articles 15-22 of the GDPR, the rights recognized to you including the right of access, rectification, portability and cancellation of personal data or limitation of processing. To exercise these rights, you can contact the Data Controller, in the person of the pro-tempore legal representative, available as follows:

  • telephone +39 0577 960124,
  • e-mail address oshomiasto@oshomiasto.it
  • postal address at the headquarters of our company.

Please note that this document, published at the address: https://www.oshomiasto.it/en Constitutes the “Privacy Policy” of this website which will be subject to updates.