PRIVACY POLICY
1 – Information relating to the site’s privacy
- This section contains information relating to the management methods of CES-to.org, owned by the Associazione Christian English School of Torino ETS, with reference to the processing of data from users of the site itself.
- This information is also valid for the purposes of article 13 of Regulation (EU) no. 2016/679, concerning the protection of individuals with regard to the processing of personal data as well as the free movement of such data, for subjects who interact with CES-to.org.
- The information is provided only for CES-to.org and not for other websites that may be consulted by the user via links contained therein.
- The purpose of this document is to provide information on the methods, timing and nature of the information that the data controllers must provide to users when connecting to the CES-to.org web pages, regardless of the purpose of the connection itself, according to Italian and European legislation.
- The information may undergo changes due to the introduction of new regulations in this regard, the user is therefore invited to periodically check this page.
- If the user is under the age of fourteen, pursuant to article 8, c.1 of regulation (EU) 2016/679, and of the Art. 2 – Quinquies of Legislative Decree 196/2003, as amended by Legislative Decree 181/18, will have to legitimize its consent through the authorization of the parents or guardians.
2 – Owner of the treatment
- The data controller is the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of processing personal data. He also takes care of the security profiles.
- With regard to this website, the data controller is: Associazione Christian English School of Turin ETS, and for any clarification or exercise of the user’s rights, he can contact him at the following email address: info@CES-to.org.
3 – Place of data processing
- The processing of data generated by the use of CES-to.org takes place at Via Pio V, 19/1, Candiolo (TO) ITALY.
- If necessary, the data connected to the newsletter service can be processed by the data controller or subjects appointed by him for this purpose at the relevant office.
4 – Legal basis of the treatment
- The processing of personal data by CES-to.org is based on consent – pursuant to art. 6, par. 1, lit. a) of EU Regulation 2016/679 – expressed by the user by browsing this website and consulting it, thus accepting this information.
- Consent is optional and can be revoked at any time by request sent by email to info@CES-to.org specifying that, in this case, in the absence of consent, some services and navigation on the website cannot be provided or could be compromised.
5 – Cookies
- This section describes how this site and third parties use cookies and similar technologies. The use of cookies takes place in compliance with the relevant European legislation (directive 2009/136 / EC modified the directive 2002/58 / EC “E Privacy) and national (Provision Guarantor for the protection of personal data of 8 May 2014 and subsequent clarifications as well as Cookie Guidelines and other tracking tools of 10 June 2021 n.231).
- For complete information about cookies, visit our cookie policy: http://ces-to.org/.
6 – Type of data processing
- The processing of personal data is necessary for the pursuit of the legitimate interest of the data controller for the purpose of providing information about the activity of CES-to.org pursuant to art. 6, par. 1, lit. f) of EU Regulation 2016/679, in compliance with the provisions of the same Regulation.
- This site makes use of Log Files in which information collected in an automated manner is kept during user visits. The information collected could be the following:
– internet protocol (IP) address;
– type of browser and parameters of the device used to connect to the site;
– name of the internet service provider (ISP);
– date and time of visit;
– web page of origin of the visitor (referral) and exit;
– possibly the number of clicks.
- The aforementioned information is processed in an automated form and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons. This information will be treated on the basis of the legitimate interests of the owner.
- For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as the IP address, which could be used, in compliance with applicable laws, in order to block attempts to damage to the site itself or to cause damage to other users, or in any case harmful activities or activities constituting a crime. This data is never used for the identification or profiling of the user, but only for the purpose of protecting the site and its users, such information will be treated on the basis of the legitimate interests of the owner.
7 – Type of purchase data
- CES-to.org collects user data directly from the site or from third parties. The data is necessary for browsing the site.
- The data collected by CES-to.org is maintained by:
Paul Meiburger
Via Pio V, 19/1
10060 Candiolo (TO) ITALY
8 – Data provided by the user
- If the site allows the insertion of comments, or in the case of specific services requested by the user, including the possibility of sending the Curriculum Vitae for a possible working relationship, the site automatically detects and records some identification data of the user, including the email address. These data are intended to be voluntarily provided by the user at the time of requesting service provision.
- By inserting a comment or other information, the user expressly accepts the privacy policy. The data received will be used exclusively for the provision of the requested service and only for the time necessary for the provision of the service.
- The information that users of the site deem to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any liability regarding any violations of the law. It is up to the user to verify that they have permission to enter personal data of third parties or contents protected by national and international standards.
- The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site involves the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the message.
- Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.
9 – Purpose of data processing
- The data collected by the site during its operation are used for the purposes indicated above and for the following purposes:
Marketing, Partnerships, Membership, and other necessary things.
10 – Data Retention
- In accordance with the provisions of art. 5.1(c) of the Regulation, the information systems and computer programs used by CES-to.org are configured to minimize the use of personal and identification data; such data will be processed only to the extent necessary for the achievement of the purposes indicated in this Policy.
- The data will be kept for the period of time strictly necessary to achieve the purposes actually pursued and, in any case, the criterion used to determine the retention period is based on compliance with the terms permitted by applicable laws and by the principles of minimization of the treatment and limitation of the conservation.
- The data used for security purposes (blocking attempts to damage the site) are kept for the time strictly necessary to achieve the previously indicated purpose.
11 – Payments
- CES-to.org uses payment services to make payments by credit card, bank transfer or other instruments. CES-to.org does not collect or acquire payment data.
- Payment data is collected and acquired directly by the payment service manager, such as the credit card institution, Paypal, Stripe or similar. These services can send messages to the user, for example payment notification emails or text messages.
- The data acquired and the use of the same by third party services are governed by the respective Privacy Policies to which please refer.
PayPal, Service provider: PayPal, Inc. Purpose of the service: to make online payments Personal data collected: types of data as specified in the privacy policy of the service Place of processing: as specified in the privacy policy of the service Privacy Policy (https:/ /www.paypal.com/it/webapps/mpp/ua/privacy-full)
Stripe, Service provider: Stripe, Inc. Purpose of the service: to make online payments Personal data collected: types of data as specified in the privacy policy of the service. Place of processing: as specified in the privacy policy of the Privacy Policy service (https://stripe.com/it/privacy)
12 – Contact forms
- The user can fill out the contact/information request form/s, entering his/her data and consenting to their use to respond to requests of the nature indicated in the header of the form.
- Personal data that may be collected:
Name, surname, address, telephone number, email address, family and children information, other information necessary for school.
13 – User rights
- The user is guaranteed respect for his rights in the field of personal data protection. In line with what is taken up and affirmed by the GDPR, in relation to the processing of personal data, the user has the right to ask the Data Controller:
- Access: the user can request confirmation as to whether or not data is being processed concerning him, as well as further clarifications regarding the information referred to in this disclosure;
- Correction: you can ask to correct or integrate the data you have provided, if inaccurate or incomplete;
- Cancellation: you can request that your data be deleted, if they are no longer necessary for our purposes, in the event of withdrawal of consent or opposition to processing, in the event of unlawful processing, or there is a legal obligation to cancel or they refer to persons under the age of fourteen;
- The limitation: you can request that your data be processed only for conservation purposes, with the exclusion of other treatments, for the period necessary for the rectification of your data, in the event of unlawful treatment for which you oppose the cancellation, if you must exercising your rights in court and the data stored by the Data Controller may be useful to you and, finally, in the event of opposition to the processing and a check is in progress on the prevalence of the legitimate reasons of the Data Controller with respect to yours.
- Opposition: you can oppose the processing of your data at any time, unless there are legitimate reasons for the Data Controller to proceed with the processing that prevail over yours, for example for exercising or defending yourself in court.
- Portability: you can request to receive your data, or to have it transmitted to another holder indicated by you, in a structured format, commonly used and readable by an automatic device.
- Revocation: you can revoke your consent to the use of cookies (Cookie Policy) at any time, since in this case it constitutes the basis of the treatment. In any case, the withdrawal of consent does not affect the lawfulness of the processing based on the consent given before the withdrawal itself.
- At any time, the user can ask CES-to.org to exercise the aforementioned rights by contacting the email address: info@CES-to.org.
- Furthermore, the user has the right to lodge a complaint with the Italian Supervisory Authority: “Guarantor for the Protection of Personal Data” if he believes that his rights have been violated by CES-to.org or in the in the event that you do not find CES-to.org’s response to your requests satisfactory.
14 – Transfer to non-EU countries
- This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized and strictly regulated by article 45, paragraph 1 of Regulation (EU) 2016/679, for which no further consent is required.
- Data will never be transferred to third countries that do not comply with the conditions set out in article 45 and following of the (EU) Regulation.
- Data security provided
- This site processes user data in a lawful and correct manner, adopting the appropriate security measures aimed at preventing unauthorized access, disclosure, modification or unauthorized destruction of data. The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.
- In addition to the owner, in some cases, categories of persons involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (such as third-party technical service providers, couriers) may have access to the data. postal services, hosting providers, IT companies, communication agencies).
- Changes to this document
- This document, which constitutes the privacy policy of this site, is published at the address:
Privacy Policy
- It may be subject to changes or updates. Users are invited to periodically consult this page to stay up to date on the latest legislative news.
- Previous versions of the document will still be available on this page.
- The document was updated on 05/26/2023 to comply with the relevant regulatory provisions, and in particular in compliance with Regulation (EU) 2016/679.