Privacy Notice on Personal Data Processing
In accordance with the Regulation EU 2016/679 ("GDPR") and the Legislative Decree 196/2003 as amended by the Legislative Decree 101/2018, the Fondazione Marea Philanthropic Entity ETS., with its registered office in Catania, 95131, Via Museo Biscari, 16, Fiscal Code and VAT Number 06145680879 (“Marea”, the “Foundation” or the "Data Controller") informs the users (the “Users”) of the website https://fondazionemarea.org/ (the “Site”) of the Foundation, about how their personal data will be processed.
Data Controller
The Data Controller is the Fondazione Marea Philanthropic Entity ETS., located at Via Museo Biscari, 16, 95131 Catania, Email: info@fondazionemarea.org.
Processed Data and Purpose of Processing
The Data Controller processes various categories of Users' personal data according to the specific purpose for which they are collected:
Personal data provided by Users
The Data Controller may process the personal data of the Site’s Users, such as:
Personal details, like first and last name;
Contact details, such as email address and/or business email, telephone number, residence, as well as information about the connection to Sicily and any payment data related to donations made.
Such personal data are collected through the Site and are provided by Users via any communications or emails sent directly to the Data Controller or through sections of the Site like “Contact Us” and “Contribute”, “Make Your Contribution”, and “Sign Up to the Newsletter”, made available to Users to support or become a pioneer of the Foundation.
The content of received communications, including any personal data contained therein, will be processed to respond to any inquiries and follow up on received requests.
Users are invited to provide the Foundation with accurate and relevant data, limited to what is necessary in relation to the purposes for which they are shared.
Browsing Data and Cookies
The Data Controller may collect the personal data of the Site’s Users in the following ways:
Through Users’ browsing activity on the Site;
Through cookies installed on the Site, for the purposes and according to the methods indicated in the cookie policy available at the following link
The personal data acquired through browsing the Site may consist, in particular, of information relating to the devices through which Users connect to the Site, IP address, log data, information about the browser used by the User, pages visited, date, time, and duration of each visit, as well as other parameters related to the User's operating system and IT environment etc. (“Browsing Data”).
This information, collected depending on context and given consents, will allow us to offer a better service and customise Users' experience, as well as to conduct analysis activities to continuously improve our website.
The personal data acquired through cookies are those strictly necessary to achieve the purposes indicated in the cookie policy provided at the above-mentioned link in section (ii) (“Cookie Data”).
The Personal Data provided by Users, Browsing Data, and Cookie Data (hereinafter collectively referred to as “Data”) will be processed in compliance with the principles of lawfulness, fairness, transparency, and minimisation as required by the GDPR.
Legal Basis of Processing
The personal data provided by the Users will be processed for the following purposes and legal bases:
Execution of a contract or pre-contractual measures (art. 6, para. 1, letter b of the GDPR):
For the provision of services requested by the User (e.g., fulfilling requests, sharing information about the Foundation and its activities, etc.);
To enable the User to contribute to the Foundation's activities by making a donation, offering skills or experiences, proposing an idea, and/or having interactions with it.
Consent (art. 6, para. 1, letter a of the GDPR):
For subscribing to the Foundation's newsletter and receiving informational and advertising material from it.
The Navigation Data and Cookie Data – and potentially, the personal data provided by Users, will be processed for the following purposes and legal bases:
Legal obligation (art. 6, para. 1, letter c of the GDPR):
To comply with regulatory, tax, accounting, and social security obligations.
Legitimate interest of the Data Holder or third parties (art. 6, para. 1, letter f of the GDPR):
To ensure and monitor the correct functioning of the Site and allow the Data Holder to make changes and improvements, as well as to resolve any operational issues;
To ensure the Site's IT security;
To protect its rights and interests in legal and out-of-court settings in cases where illicit activities might occur on the Site and/or through it.
A legitimate interest that does not infringe or jeopardize the rights and freedoms of the Interested Parties as the processing is necessary for carrying out the above-described activities, also in the interest of the User, as well as in the latter's reasonable expectation.
Methods of Treatment
The processing will be carried out both manually and with electronic tools, adopting adequate security measures to ensure the confidentiality and protection of the Data. Embracing Fondazione Marea's commitment to culture, community, environment, and innovation, we strive to safeguard your information with care and integrity, reflecting our vibrant Mediterranean spirit.
Recipients of Personal Data
The data may be shared, depending on the circumstances, with:
Authorised collaborators of the Foundation, who are thoroughly trained and appointed for processing and to whom the Foundation has provided detailed instructions, particularly regarding the implementation of suitable technical and organisational security measures;
External parties, such as communication agencies, website and social media managers (e.g.: Facebook®, Instagram®, TikTok®, YouTube®, Linkedin®, X®), organisational partners (e.g.: Isola Catania Impresa Sociale s.r.l.), IT service providers, appointed as data processors in accordance with Article 28 GDPR;
External entities acting as independent controllers, such as, by way of example, competent Authorities and supervisory and monitoring bodies for legal obligations and, in general, entities - including private individuals - authorised to request such Data (such as, for example, payment system providers, accounting consultants, legal advisors), Public Authorities requesting them expressly for administrative or institutional purposes, in compliance with current national and European legislation.
Transfer of Data to Third Countries
The Data will not be transferred outside the European Union. The processing of the Data will take place at the headquarters of the Data Controller, and the Data will be stored on servers and/or archives both within the European Union and, where necessary, in third countries for which an adequacy decision has been adopted by the European Commission, thereby providing adequate guarantees for the protection of personal data.
In cases of Data transfers outside the European Union to countries for which no adequacy decision has been adopted by the European Commission, the Data Controller will implement the appropriate safeguards referred to in Article 46 of the GDPR, specifically, the Standard Clauses prepared by the European Commission.
Duration of Preservation
The Data will be retained for the duration strictly necessary to achieve the indicated purposes, specifically:
In the case of Personal Data provided by Users and sharing of information through the contacts provided by the Holder on the Site referred to in art. 3, n. 1, of this Policy, for a period of 12 months from the last contact made and, in any case, where applicable, for the entire duration of any contractual and/or negotiable relationship established, as well as for the time necessary to (i) comply with regulatory and/or legal obligations provided for and (ii) ensure judicial protection of the Holder's rights, in compliance with the statutory terms provided. Specifically, in the case of supporters and donors, the data of the latter will be retained for the entire duration of the established contractual relationship and, upon expiration, for the subsequent 10 (ten) years, subject to any legal, fiscal, accounting, administrative obligations that may require further retention;
In the case of Personal Data provided by Users for the purpose of subscribing to the Foundation's newsletter referred to in art. 3, n. 2 of this Policy, the latter will be processed until the possible opt-out/unsubscription of the interested party and, in any case, for a maximum of 24 (twenty-four) months from the newsletter subscription and from the granting of the related consent;
In the case of Navigation Data and Cookie Data collected from the Site to comply with legal obligations referred to in art. 3, n. 3, of this Policy, for the entire time period provided by the legal regulations to which the Foundation must adhere;
In the case of Navigation Data and Cookie Data collected from the Site referred to in art. 3, n. 4, of this Policy, for the period necessary to ensure the proper maintenance and functioning of the Site, and until the time strictly necessary to resolve any IT bugs and malfunctions of the Site, as well as for the entire time period provided by the legal regulations to which the Foundation must adhere and—in the case of judicial protection of the Holder—and particularly in the case of legal disputes, for a period equivalent to the entire duration of such disputes, up to the reaching of the terms for appeals.
Rights of the Interested Party
As individuals concerned, Users have the right to:
Access their Data (art. 15 GDPR);
Request the rectification of their Data (art. 16 GDPR);
Request the deletion of their Data (art. 17 GDPR);
Object to processing or request restriction (arts. 18 and 21 GDPR);
Request the portability of their Data (art. 20 GDPR);
Where given, revoke consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise these rights, the Individual may contact the Controller at the e-mail address privacy@fondazionemarea.org or at the PEC address fondazionemarea@pec.it.
If you have any questions on how the Foundation handles personal data, you can always get in touch:
at the e-mail address privacy@fondazionemarea.org;
at the address Via Museo Biscari, 16, 95131, Catania (CT).
Appeal to the Supervisory Authority
The User, as the Data Subject, also has the right to lodge a complaint with the Data Protection Authority (www.garanteprivacy.it).
