The Municipality has appointed the following person as Data Protection Officer (DPO):
Municipality of Chiusdino
- C.F. 00074070525
- Tel. 0577 049305
- Email protocollo@comune.chiusdino.siena.it
- PEC comune.chiusdino@pec.consorzioterrecablate.it
The Data Protection Officer (DPO) is a figure provided for in Article 37 of EU Regulation No. 2016/679 and is the person designated to perform support and control, advisory, training and information functions in relation to the application of the regulation itself.
It cooperates with the Data Protection Authority and acts as the point of contact, including for data subjects, for matters relating to the processing of personal data (Articles 38 and 39 of the Regulation).
This Information on Data Processing, required by the new European Data Protection Regulation EU 679/2016, is intended for users of the portal and web services of the Municipality of Chiusdino (hereinafter referred to as the ‘Entity’) accessible electronically.
This policy is limited to browsing the websites mentioned and does not apply to websites outside the Organisation, even if accessed via links on the portal and thematic websites.
This policy describes how the web portal and thematic sessions of the municipality are managed in relation to the processing of personal data of users who consult it, choose to register and/or use online services.
Purpose of Processing
The data that the Data Controller will become aware of will be used exclusively to provide the services requested by the user and to perform the institutional functions assigned to it by law and regulations.
Data Processing
Consultation of the portal: navigation data
The IT systems and application functions of the portal acquire certain data whose transmission is implicit in the use of communication protocols.
This information is used to obtain statistical information on the use of the portal; however, by its nature, it could allow the identification of data subjects through their IP address. This data is removed from the systems after the statistics have been processed.
Online services
When registering on the portal, you will be asked to provide some personal data that will be used to identify you. When subscribing to online services, additional data, including sensitive data, may be requested, depending on the specific service chosen. The purposes of processing vary depending on the service and are described in detail on the relevant subscription pages.
The data acquired will be processed for the performance of the institution’s institutional activities, within the limits established by law and regulations, in compliance with the general principles of transparency, fairness and confidentiality.
Sending emails to addresses indicated on the portal
The optional, explicit and voluntary sending of emails to the addresses indicated on the website entails the subsequent acquisition of the sender’s address, which is necessary to respond to requests, as well as any other personal data included in the message.
The data requested for registration is necessary to allow access to services and, if not provided, will make it impossible for the Entity to proceed with the provision of such services.
The person registering gives their consent to the processing of their data, aware that without such consent, registration and subscription to services cannot take place.
Treatment methods
Personal data is processed using software applications for the time strictly necessary to achieve the purposes for which it was collected.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorised access. In addition to processing data in digital format, the entity may manage the information acquired in paper format following the printing of documents.
Use of cookies
Cookies are text files that are saved on users’ computers when they access the website to enable safe and efficient browsing of the website and to monitor its use.
The municipal website uses two types of technical cookies: session cookies for authentication (online services and restricted areas) and monitoring cookies. Profiling cookies are not used.
Communication and dissemination of data
The personal data of the data subjects may be processed by authorised personnel of the entity and may be disclosed for the purposes described above to external collaborators or public and private companies that perform activities and services on behalf of the Entity. Disclosure is necessary for the proper fulfilment of the institutional purposes of the Municipality.
Personal data will not be disclosed by this entity and will not be transferred to another country.
Rights of the Data Subject
The European Regulation grants the data subject specific rights, including the right to obtain confirmation from the data controller as to whether or not personal data concerning him or her exist and to have them made available in an intelligible form.
The data subject has the right to know the origin of the data, the purposes and methods of processing, the logic applied to the processing, the identification details of the data controller and the subjects to whom the data may be communicated.
The data subject also has the right to:
- obtain the updating, rectification and integration of data, deletion if not in conflict with regulations, transformation into anonymous form or blocking of data processed in violation of the law.
- to be informed if the data controller decides to change the methods of data processing and any transfer
- to lodge a complaint with the supervisory authority identified as the Data Protection Authority
Subjects involved in the processing
The organisation has also appointed a Data Protection Officer (DPO) who can be contacted by email by citizens wishing to exercise their rights regarding data processing.
Data Controller
The Data Controller is the Municipality with headquarters in Piazza del Plebiscito, 2, 53012 Chiusdino (SI). tel.0577 049305 fax 0577 750221 P.E.C: comune.chiusdino@pec.consorzioterrecablate.it in the person of its pro tempore legal representative, the Mayor.
