On 6 April 2016, the European Union approved an important reform on the regulatory framework relating to the protection of personal data by adopting the “General Data Protection Regulation” (GDPR or Regulation), directly applicable to its Member States. The Regulation replaces the 95/46/CE Directive (“Directive on data protection”) and its application becomes compulsory from the 25th may 2018, two years after its coming into force.
The new Regulation strengthens the protection of the right to personal data protection (Data Protection), in line with the recognition of personal data protection as a fundamental right of the EU.
The Regulation also represents a necessary and urgent response to the challenges posed by technological developments that allow the collection and processing of large quantities of personal data in real time, allowing the development of automated decisions that go beyond human intervention.
The Regulation meets the need to protect the private sphere, which is increasingly felt by European citizens.
This disclosure was created for the purpose of making the Jewish Community of Rome known (hereinafter also the “Community”), with headquarters in Largo Stefano, with the utmost transparency and confidentiality as personal data (hereinafter, “data”). Gaj Taché – Sinagogue – 00186 Rome (RM), as Data Controller, collects through its Website romaebraica.it (hereinafter the “Website”) and with which methods such data are used in compliance with the law in force regarding the protection of personal data.
The Community, in order to provide the services offered through the Website, could make use of third parties, who will act on its behalf as Data Processors by virtue of a specific appointment.
Data may also be brought to the attention of subjects who will operate as “persons authorized to process”.
No Data will be disclosed.
PLACE OF DATA PROCESSING
The treatments connected to the Website and to the services provided by the Community take place at the headquarters of the Community and are only handled by the personnel in charge of processing, or by persons in charge of maintenance operations. The data deriving from the services offered within the Website may be communicated to the technological and instrumental partners used by the Community for the provision of the services requested by visitor users. The personal data provided by visitor users, who send requests for information or other communications, are used only to perform the service or provision requested and are communicated to third parties only if this is necessary for that purpose.
TYPE OF DATA ACQUIRED
When a user visits the Community Website, certain information may be collected or requested in order to improve the browsing experience or to help the Community manage the relationship with the user. This information may include: contact details such as name, surname, e-mail address and telephone number; data provided by the user in order to receive information or to make a donation; data deriving from technical cookies described below.
PURPOSE IN USE OF YOUR DATA
Information is reserved for the processing of personal data of users who consult the Website for the purposes specifically identified below:
- verify the user’s identity to answer questions or for the purpose of a donation;
- manage the subscription request to the newsletter service that the user has made on the Website by subscribing to the mailing list;
- allow the provision of services by guaranteeing the Community compliance with the legal requirements;
- fulfill a legal obligation, regulations or provisions of the judicial authority, as well as to defend a right in court.
METHODS OF TREATMENT AND STORAGE
Data processing is carried out through automated tools (e.g. using electronic procedures and supports) and/or manually (e.g. on paper support) for the strictly necessary time to achieve the purposes for which the Data were collected so as to offer users the browsing experience and allow them to use the services requested by them and, in any case, in compliance with the regulatory provisions in force on the matter.
The Data Controller has adopted technical and organizational measures aimed at ensuring a level of security which is appropriate to the risk, in accordance with the provisions of art. 32 of the GDPR, so as to prevent the loss of data, illicit or incorrect use and unauthorized access.
Information collected by the Community is stored on its own systems and in any region the suppliers that the Community uses operate.
The retention period of the acquired Data is that strictly necessary for the pursuit of the purposes for which they are processed.
TRANSFER OF DATA ABROAD
Within the the purposes described in this statement, the Community does not transmit the data provided to other subjects with offices in countries located outside the territory of the European Union.
RIGHTS OF INTERESTED PARTIES:
Pursuant to articles 15-21 of the GDPR, in relation to the data communicated, the interested party has the right to:
- log in and request a copy;
- request cancellation / rectification;
- obtain the limitation of the treatment;
- oppose the processing carried out on the basis of the legitimate interest of the Data Controller;
- receive in a structured format, commonly used and readable by an automatic device and to transmit such Data without impediments to another data controller, where technically feasible;
- lodge a complaint with a supervisory authority: without prejudice to any other administrative or judicial appeal, the interested party who believes that the processing that concerns him violates the Privacy Law has the right to lodge a complaint with the supervisory authority of the Member State in which he resides or works habitually, or of the State in which the alleged violation occurred.
The above does not apply to information made available to third parties which is outside the reach of the Community.
If the treatment is based on consent, pursuant to art. 7 of the GDPR, the interested party can revoke any consent given at any time, without prejudice to the lawfulness of the processing carried out before the revocation.
If the interested party wishes to have more information on the processing of his data, or to exercise the rights indicated above, he can send an e-mail to: email@example.com
CHANGES TO THIS POLICY
The Community may make changes to this information, ensuring in any case the timely updating of this internet page and allowing access to the various versions that have occurred over time, which can be consulted at the same address.
Cookies are small text files that the websites visited send to the user’s terminal (computer, tablet, smart-phone, notebook), where they are stored, and then re-transmitted to the same websites on the next visit.
Depending on their duration, they are divided into session cookies (i.e. those that are temporary and automatically deleted from the terminal at the end of the browsing session), by closing the browser and persistent cookies (i.e. those that remain stored on the terminal until they expire or are canceled by the user).
For more information, refer to the document on cookies prepared by the Data Protection Authority.
Typically, the usefulness of cookies lies in the possibility of obtaining information on visitor preferences through them, to improve the functionality and security of a website, to simplify navigation by automating procedures (e.g. Login, site language) and for analysis of the use of the site itself.
Below are the types of cookies used by the romaebraica.it website:
- Authentication and management of a browsing session;
- Optimizing the functioning of the Website;
- Best usability of the Website;
- Correct functioning of the connection.
THIRD PARTY COOKIES
The Website also allows the transmission to the user’s terminal of third-party cookies, with which the Community limits itself, as a technical intermediary, to sending these cookies, but does not manage their operations (therefore does not have control and access to the information provided/acquired) as their functioning is the responsibility of third parties. For these cookies, it is possible to access the information and the consent acquisition forms of the third parties by clicking on the links below.
The third parties are:
COOKIE CHOICE MANAGEMENT
The type of cookies used by the Website does not require the user’s consent; however, the user has the possibility to disable cookies at any time using the settings of the Internet browser used. Below are links to the guidelines of the most common browsers:
It should be noted that disabling technical cookies could lead to navigation problems and correct use of the services.