Newsletter Policy

Policy pursuant to Articles 13 and 14 of Regulation (EU) 20167679 (GDPR)

1) Data Controller:

Conference Service s.r.l., a company with registered office in Imola (BO) Via Lasie 10/L cap 40026 - hereinafter only "Conference", VAT No. 03134010374, Data Controller, pursuant to EU Regulation 2016/679 - hereinafter GDPR-, through its pro-tempore legal representative, email: privacy@conferenceservice.it

2) Purpose of Processing:

• Obligations related to the execution of a contract and/or the provision of services;
• Obligations related to legal obligations.

In particular:

A) Without Your consent:

• For the conclusion of any contracts for the sale of the Data Controller's products;
• For the fulfilment of pre-contractual, contractual and tax obligations deriving from relationships with you in place;
• For the fulfilment of obligations resulting from laws, regulations, European Community rules or orders from the Authorities (such as for example with regards to anti-money laundering measures);
• For the exercise of a right of the Data Controller, such as, by way of example and not limited to "right of defence in court".

B) Only with Your specific and distinct consent:

For the following marketing purposes. In particular:

• For the sending of e-mails, mails, internet and/or SMS and/or telephone contacts, from Italy or abroad, newsletters, commercial communications and/or advertising material as well as for the detection of the degree of satisfaction with the quality of the services and/or products offered by the Data Controller;
• To carry out profiling activities aimed at understanding possible needs in relation to the offer of new services based on the preferences expressed;
• Sending your data to companies of the Group, to third parties such as, exhibition organisers or partners involved in the organisation of individual fairs, including those based in non-European countries, in order to allow the latter to launch autonomous marketing initiatives relating to their products and services.

3) Addressees of the processing:

Your data may be made accessible for the purposes referred to in points 2.A) e 2.B):

• To the Data Controller’s employees and collaborators, in their role as data processors and/or system administrators;
• To third-party companies or other subjects (e.g. credit institutions, professional firms, consultants, insurance companies for the provision of insurance services, etc.) that carry out outsourced activities (including those subjects to whom the Company Conference is required to communicate personal data, by virtue of legal or contractual obligations.

4) Transfer of data

Any personal processed data is kept in computer archives of the Data Controller or at premises controlled by the same or also at other recipients (referred to in point 3) in any case within the European Union. It is understood that if necessary, the Data Controller may also move the servers outside the EU. In that case, the Data Controller hereby ensures that the transfer of data outside the EU will take place in accordance with the applicable legal provisions, subject to the conclusion of the standard contractual clauses provided for by the European Commission.


5) Nature of the provision of Data and consequences of refusing to provide them

The data provision for the purposes referred to in point 2.A) is mandatory. In Your absence, we will not be able to guarantee you the Services described in point 2.A).
The data provision for the purposes referred to in art. 2.B) is facultative. You can, therefore, decide not to provide any data or to subsequently deny the possibility of processing data, which were earlier provided. In that case, you will not be able to receive newsletters, commercial communications or advertising material concerning the services offered by the Data Controller.
However, you will continue to be entitled to the Services referred to in Article 2.A).

6) Data provided voluntarily by the data subject

Personal data sent by the Data Subject - online and offline, optional, explicit and voluntary - (e.g. e-mails and curricula vitae, requests for information for a fair participation and for booking hotels) involves the acquisition (in compliance with current legislation on the methods) of the sender's contact details necessary to be able to contact him/her and to indicate what are the forms provided for the acquisition of his/her personal data, including information on processing and request for consent where necessary.


7) Data processing methods

Provided data are primarily processed by automated means only for the purposes indicated and only for the period of time strictly necessary for the fulfilment of the purposes for which they were obtained. Specific security measures are observed to prevent, counteract and minimise the risks of destruction or loss, even accidental, of the data itself, unauthorised access or processing that is not permitted or does not comply with the purposes of the collection.

8) Rights of the person concerned

As a user, and therefore an interested party, you have the following rights (Art. 15 to 22 GDPR):

1. To obtain confirmation of the existence or otherwise of personal data concerning you, even if not yet recorded, and its communication in an intelligible form;
2. To obtain information on: a) the source of the personal data; b) the purposes for which and methods by which it is processed; c) the logic applied in the event of processing by electronic means; d) the identification details of the data controller and of designated representatives; e) the entities or categories of entities to which personal data may be communicated or which they may come to acquire as processors or designated representatives;
3. To obtain: a) the update, so the rectification, where there is an interest, the data integration; b) the cancellation, transformation into anonymous form or blocking of the processed data in violation of the law, including those whose retention is not necessary in relation to the purposes for which the data were collected or subsequently processed; c) certification that operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in case such fulfilment proves to be impossible or it involves the use of means manifestly disproportionate to the protected right;
4. To either totally or partially oppose: a) for legitimate reasons, the processing of Personal Data which concern you, even if pertinent to the purpose of collection; b) the processing of Personal Data which concern you for the sending of advertising or direct sales materials or for the carrying out of market research or communications of a commercial nature, through the use of automated calling systems without the intervention of an operator, via email and/or traditional marketing methods via telephone and/or standard post.

Please note that, with regard to direct marketing through automated methods, the data subject's right to object, as set out in point b) above, is extended to traditional methods, and that the data subject is able to exercise their right to object, even in part. Hence, the data subject may decide to receive only communications using traditional methods, or only automated communications, or neither of the above.

Where applicable, you also have the following rights: right of rectification, right to be forgotten, right to restriction of processing, right to data portability, right to object, as well as the right to complain to the Data Protection Authority.

9) Methods of exercising rights

You may exercise your rights at any time by sending:

- a registered letter with return receipt to the Data Controller (see point 1);

- an e-mail to privacy@conferenceservice.it.