PRIVACY POLICY

NOTICE ON THE PROCESSING OF PERSONAL DATA PURSUANT TO ART. 13 OF REGULATION (EU) 2016/679 – data collected with the FORM

The Gran Loggia Regolare d’Italia, Lungotevere dei Mellini 17 – 00193 Rome, Fiscal Code 96228480586, as Data Controller (hereinafter: hereinafter “GLRI” or “Data Controller”), pursuant to EU Regulation 2016/679 (hereinafter: “Regulation”) – considers privacy and the protection of Personal Data to be the main objective of its business. We therefore invite you, before transmitting any personal data to the Data Controller, to carefully read this Policy: it contains important information on the processing of your Personal Data. “Personal Data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, with particular reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more elements characteristic of his or her physical, physiological, genetic, mental, economic, cultural or social identity.

This Information:

is intended for sending a request for information through the form on the contact page of the site https://www.glri.it (hereinafter the site)

must necessarily have been read before sending the request by the form.

The Data Controller can be contacted at: privacy@glri.it.

This document has been drawn up pursuant to art. 13 of EU Regulation 2016/679 (hereinafter: “Regulation”) in order to allow you to know our privacy policy, understand how your personal information is processed when you use our sites and, if applicable, to give your free and informed consent to the processing of your Personal Data. The information and data provided by you or otherwise acquired in the context of the use of GLRI services, - such as for the request for information - hereinafter “Services” -, will be processed in compliance with the provisions of the Regulation and the confidentiality obligations that inspire the activity of GLRI.

According to the provisions of the Regulation, the processing carried out by GLRI will be based on the principles of lawfulness, correctness, transparency, limitation of purposes and storage, data minimization, accuracy, integrity and confidentiality.

Type of data processed

GLRI, as Data Controller, collects the following personal data:

- personal data (name and surname);

- contact details (email address and telephone)

- electronic identification data (public IP from which the registration request is sent)

Purpose of processing

GLRI processes personal information to pursue the following purposes:

- provide feedback to the interested party's requests for:

1. membership in the association

2. request for information on the association

3. follow up on the request for documentation relating to the research lodges form

Legal basis of processing

The processing of personal data carried out by GLRI is legitimate because it is based on the interested party's consent pursuant to art. 6 p.1 lett.a of EU Reg. 679/2016.

Method of data processing

Your personal data is processed electronically. GLRI stores the interested party's personal information following some fundamental criteria highlighted below: in particular relating to the purposes of collection.

Data retention

Personal Data processed for the purposes set out in this policy will be retained for the time strictly necessary to achieve those same purposes in compliance with the principles of minimization and limitation of storage pursuant to art. 5.1.e) of the Regulation. In any case, the Data Controller will process the Personal Data for a maximum period of 24 months.

Recipients

Within GLRI, only employees of the association and collaborators who have been informed of the importance of maintaining absolute confidentiality of personal data can access personal data: GLRI takes all necessary actions to draw their attention to the responsibilities regarding the protection of personal data. GLRI does not communicate personal information to other third parties without authorization, except when required by law or by an Authority.

Rights of the interested party

Pursuant to articles 15 and following of the Regulation, you have the right to request at any time, access to your Personal Data, the correction or deletion of the same, the limitation of the processing in the cases provided for by art. 18 of the Regulation, to obtain in a structured, commonly used and machine-readable format the data concerning you, in the cases provided for by art. 20 of the Regulation. At any time, you can revoke the consent given pursuant to art. 7 of the Regulation; lodge a complaint with the competent supervisory authority pursuant to article 77 of the Regulation (Guarantor for the Protection of Personal Data WWW.GARANTEPRIVACY.IT) pursuant to art. 77 of the Regulation, if you believe that the processing of your data is contrary to the legislation in force.

You can make a request to object to the processing of your data pursuant to Article 21 of the Regulation, in which you must highlight the reasons justifying the objection: the Data Controller reserves the right to evaluate the request, which will not be accepted in the event of the existence of compelling legitimate reasons to proceed with the processing that prevail over your interests, rights and freedoms.

Requests must be addressed in writing to the Data Controller.

If you wish to exercise your rights, please send an email or write to the following address specifying your request and providing us with the information necessary to identify you (also attaching a copy of your identity document): Gran Loggia Regolar d’Italia, Lungotevere dei Mellini 17- privacy@glri.it.

GLRI will respond to you within one month. If for some reason we are unable to respond to you, GLRI will provide you with a detailed explanation of the reason why it cannot satisfy your request.