This document describes the policies for the confidentiality of personal data processed by Aimpes Servizi s.r.l. a socio unico, with registered office in Milan, via Alberto Riva Villasanta no. 3, through the Mipel site, in its capacity as Data Controller pursuant to EU Regulation 2016/679 (hereinafter only the “Data Controller”) and aims to describe the methods for managing the processing of personal data of users and visitors to this site and to provide a general description of the processing of personal data.
Please also note that the Data Controller, at the end of this document, has included a specific information notice on the processing of personal data for all hypotheses in which the provision of data derives from contacts with the Data Controller either through brief contacts or following commercial/institutional contacts through e.g.: exchange of business cards, telephone calls, e-mail contacts… We invite you to read this information notice if you fall into this category of interested parties.
The website on which you are browsing is owned by the company Aimpes Servizi s.r.l. a socio unico and is managed by the company Zanni Advertising srl, which acts as the Responsible party pursuant to Article 28 GDPR and is hosted by Ergonet.
To get in touch with the Controller, current in Milan, via Alberto Riva Villasanta no. 3, simply send an e-mail to the following address: privacy@mipel.it
The Data Controller adopts as required by Art 12 EU Regulation 2016/679 (henceforth just GDPR) the following information notice as a measure to provide the data subject, a visitor to the site, with the information referred to in Art 13 GDPR and the notices referred to in Art 15 to 22 and 34 GDPR relating to the processing of the data provided. The information in this Privacy Policy describes how we collect, use and process your personal data, and how, in doing so, we provide services to you and fulfil our legal obligations to you. The information below is intended as a general policy to be read in accordance with and to the extent pertinent to the information provided by Iubenda pop-ups, which is provided to all those who interact with the site and with the web pages relating to the Association, and contains the essential policies on how we process personal data. If you enter the specific pages of the site relating, for example, to the possibility of becoming an exhibitor or visitor, of the Mipel fair, you will find specific web pages where the user can view specific information on the processing of personal data for the purposes indicated therein. In relation to the web pages, please note that the site uses social plug-ins (e.g. in relation to social networks such as Facebook and/or YouTube and/or Twitter and/or Istagram), for which the Data Controller is in no way responsible; therefore, please refer to the privacy policy of the owners of such plug-ins.
Regarding the processing of personal data carried out by the managers of the Social Media platforms used by the Owner or the You Tube channel, please refer to the information provided by them through their respective privacy policies. The Data Controller processes the personal data provided by the user through the pages of the Social Media platforms dedicated specifically to the Data Controller itself, in order to manage interactions with users (comments, public posts, etc.) and in compliance with the regulations in force.
This information does not apply to other websites that may be accessible via our links.
It is our practice to constantly update the site and adapt it to new legislation. Therefore, we may change this document and/or the privacy policy accordingly. For updates, please visit this page, on which we will post any changes. The Data Controller undertakes to respond to users who send formal written complaints to this address: privacy@mipel.it in order to investigate the problem reported, as well as to collaborate with the competent authorities to settle any complaints regarding the processing of personal data that are not resolved directly between the Data Controller and the individuals concerned.
Information on Data Processing ex art 13 GDPR
The Data Controller hereby informs you that the Personal Data you provide by browsing this site is carried out in accordance with the conditions of lawfulness provided for in Article 6 GDPR, for the purposes inherent to the relationship established with the Data Controller and therefore its legal basis as required by Article 13 letter c GDPR is justified in the reasons for which the relationship is established with the Data Controller, i.e. your access as a visitor or user of the site.
The processing of the data conferred will include: management, organisation, use, storage, consultation, processing throughout the EU territory, carrying out anonymous statistics, communication to the Owner’s staff members as authorised subjects and to Assopellettieri, the trade association that, at corporate level, wholly owns the Owner. The processing carried out will also include the destruction and modification of the data processed following notification by the data subject.
We collect certain data from visitors to our website in order to manage the services we provide (e.g. answering your enquiries, checking the documents you send us), to check your satisfaction with them and to provide you with new ones, only after your express consent and in order to provide you with more targeted services in line with your interests, we carry out profiling and targeted campaigns, including remarketing and lookalike campaigns (on this point, please see our cookie policy)
We also remind you that your optional sending of messages to the Controller’s contact addresses entails the acquisition of the sender’s contact data, which are necessary to reply, as well as any personal data included in the communication.
It is understood that some of your surfing data may be used to ascertain liability in the event of possible computer crimes against the site.
The data will be processed on paper and/or electronically by persons specifically authorised to do so. The Data Controller does not carry out any processing on the basis of automated decision-making processes; data will only be kept for the time necessary to fulfil the purpose of collection.
The data may be communicated to the company that carries out activities related to the maintenance of the technological part of the site. The data may also be communicated to parties specifically authorised to process the data in accordance with Article 27 of the GDPR and to data processors appointed for this purpose (in accordance with Article 28 of the GDPR).
The Data Controller also informs you that you are guaranteed the right to rectification pursuant to Article 16 GDPR, the right to be forgotten pursuant to Article 17 GDPR, the right to restriction of processing pursuant to Article 18 GDPR as well as the right of access to the personal data provided and to all consequential information as listed under Article 15 GDPR.
It is also entitled to:
To exercise the rights listed above or to obtain further information, simply send an e-mail to the following e-mail address: privacy@mipel.it indicating in the subject line: exercise of rights pursuant to the GDPR and entering the right you wish to exercise in the body of the e-mail. The Data Controller, once it has processed the information received, will send a reply within the terms indicated in Article 12 GDPR.
It is our right to refuse to comply with your request for only one of the following reasons:
In complying with a valid request for deletion of data, we shall take all reasonably practicable measures to delete the data in question.
Please note that the sending of electronic mail by visitors to the addresses indicated on this site, for the purposes specified from time to time, entails the acquisition and subsequent processing of the sender’s address and any other personal data included in the message in the manner and for the purposes already indicated in the above information note. Such sending will also imply knowledge of the privacy policy note.
Catalogue: Exhibitor List (Mipel)
The website also contains the list of Exhibitors at the Mipel trade fair with the relevant contacts. In this regard, the Data Controller, in line with the provisions of the Privacy Authority, points out that the personal data made public through the aforementioned pages cannot be used by site visitors for purposes other than those that gave rise to the online publication of the data (purpose: formation of the Exhibition Catalogue). In fact, please note that the fact that the e-mail address or other personal data may be known by a plurality of subjects does not make it freely usable for any kind of purpose (such as, for instance, sending commercial communications); the Italian Data Protection Authority emphasises that the possible availability of data on the net must be “related to the purposes for which they are published on the net” itself.
Use of photo and/or video footage
During our events of a public nature or of public importance (events, gatherings, conventions, parties, assemblies), shots and/or photographs will be taken at the location for the individual occasion in order to document the events and promote them. The images and videos will be used for journalistic articles, online posts, stories, brochures, catalogues, as well as for inclusion on our official websites and social profiles, and will never be detrimental to the honour and decorum of the person concerned. The Owner will not pay any compensation for them. Your images resulting from photographs and/or videos taken during events/manifestations open to the public do not require explicit consent from the person portrayed. On this point, however, the Owner undertakes to follow all the prescriptions issued by the Guarantor Authority in relation to the acquisition of images/videos taken during public events. It is understood that, should anyone wish to have their image removed or deleted, they may contact us at the following e-mail address: privacy@mipel.it and, following assessment, we will proceed accordingly. Should, on the other hand, photos/videos be taken during private events and/or including non-posed close-ups, it will be the responsibility of the Data Controller to provide suitable information and to collect the relevant consents from the persons concerned.
Processing of candidates’ personal data:
Through this site, the Data Controller does not carry out recruiting activities.
However, and in compliance with current privacy legislation, candidates who spontaneously send their CV to one of the addresses on the site, even if not specifically dedicated to it, will receive appropriate information on the processing of personal data at the time of the first useful contact following receipt of the CV spontaneously sent by the candidate.
Data Breach:
In the event that the Data Controller suffers a breach as configured in Art. 34 involving a risk for the rights and freedoms of natural persons (data breach), it will take steps – if appropriate – to notify all those concerned of the incident.
As anticipated, the following part of this online space is dedicated to providing interested parties with specific information on the processing of personal data for all hypotheses in which the conferment of data derives from contacts with the Data Controller that occurred either in the short term or following commercial/institutional contacts through e.g.: exchange of business cards, telephone calls, e-mail contacts…
The purpose of this document is to inform you that the data provided in order to remain in contact with the Data Controller (always Aimpes Servizi s.r.l. a socio unico) will be processed in accordance with the European Regulation 2016/679 (“GDPR”) and the national legislation currently in force (“Privacy Code” – i.e. Legislative Decree 196/03 for as amended by Legislative Decree 101/2018. The Data Controller adopts, as required by Art. 12 GDPR, the following information notice as a measure to provide the data subject with the information referred to in Art. 13 and the notices referred to in Articles 15 to 22 and 34 GDPR. Therefore, in relation to the above, the Data Controller hereby informs you that the personal data provided, data that do not fall within the special categories of personal data as listed under Art. 9 GDPR, concerning the data subject (even in the case of a person operating as a sole proprietor, small businessman, professional) or his employees, agents, representatives or collaborators (the “Data”), will be processed in accordance with the principles applicable to the processing of personal data as described in Art. 5 GDPR (i.e. principles of correctness, relevance, transparency, adequacy, protection of confidentiality and rights etc.). The processing is carried out on the basis of the conditions of lawfulness envisaged under Art. 6 GDPR with regard to the purposes inherent in the relationship established with the data controller; consequently, its legal basis, as required by Art. 13 lett. c GDPR, is justified by the reasons for which the relationship with the data controller is established, i.e., in this case, your free conferment of your data to us in order to remain in contact with the data controller (Art. 4, para. 11 GDPR – consent by means of an unequivocal positive action). In the light of this purpose, the processing of the data provided will include, among other things, management, organisation, use in the EU and non-EU territory (countries falling within the cases of Art. 45 and 46 GDPR), storage, creation of databases or inclusion in crm, consultation, registration, communication of our future initiatives, processing, modification light marketing (which you will be able to oppose at any time by using the “unsubscribe” function in the footer of the e-mails that will be sent to you or by writing to us at privacy@mipel.it ), the production of anonymous statistics, the use, destruction and modification of the data processed following notification by the data subject, communication to members of the organisational structure of the Data Controller, or to consultants of the same in the context of the management of the business activity. Data may be processed in both paper and electronic form only by persons specifically authorised to process them or by Data Processors. The Controller does not process data on the basis of automated decision-making processes only. The Controller points out that the data have been voluntarily provided by you on the basis of your expressed wish to remain in contact with us. The data will only be stored for as long as is necessary to fulfil the purpose of collection. The Data Controller informs you that you are guaranteed the rights expressed in Article 13 c. 2 GDPR and thus: – The right of access to personal data and related information listed under Art. 15 GDPR; – The right to rectification or erasure of the data provided or the restriction of processing; – The right to object to processing; – The right to data portability; – Where processing is based on Article 6(1)(a) or Article 9(2)(a), the right to withdraw consent at any time without prejudice to the lawfulness of processing based on consent given prior to the revocation; – The possibility to lodge a complaint with a supervisory authority. You may exercise the rights listed above, or obtain further information on the matter, by sending an e-mail to the following e-mail address: privacy@mipel.it , indicating in the subject line: “exercise of rights under the GDPR” and including in the body of the e-mail the right you wish to exercise, as well as your name, surname and the e-mail address where you wish to receive a reply from the Data Controller. In the event that the Data Controller suffers a breach as configured in Art. 34 involving a risk for the rights and freedoms of natural persons (data breach), it will take steps – if necessary – to notify all those concerned of the incident.
The data controller also warns that if it intends to further process the personal data for a purpose other than that for which they were provided, it will, prior to such further processing, provide the data subject with information regarding that other purpose and any further relevant information, obtaining consent where appropriate.