Privacy Policy

INFORMATION NOTICE PURSUANT TO ARTICLE 13 OF THE PRIVACY CODE

Pursuant to Regulation (EU) 2016/679 (hereinafter, “Regulation”) and Legislative Decree 196/2003, as amended by Legislative Decree 101/2018 (hereinafter, “Privacy Code”), this page describes the processing methods of personal data for individuals who visit the website https://www.safe-europe.eu (the “Website”) and those who have used SAFE’s services (hereinafter, “Users” or individually, “User”).

 

DATA CONTROLLER

The Data Controller is Fondazione SAFE (hereinafter, the “Controller”).
Any requests regarding the processing of personal data may be sent to the Controller by mail at the registered office or via certified email to the Fondazione SAFE’s legal address.

fondazionesafe@pec.it

 

TYPES OF DATA PROCESSED

Browsing Data

The IT systems and software procedures used to operate this Website acquire certain personal data as part of their standard operations. The transmission of such data is implicit in the use of Internet communication protocols and is necessary for navigation.

This category of data includes:

  • IP addresses or domain names of users computers and terminals;
  • URI/URL addresses of requested resources;
  • The time of the request;
  • The method used to submit the request to the server;
  • The size of the file obtained in response;
  • The numerical code indicating the status of the server response (success, error, etc.);
  • Other parameters related to the user’s operating system and IT environment.
  • These data are necessary for the use of web services and are also processed for the purpose of:
  • Gathering statistical information on service usage (e.g., most visited pages, number of visitors per time slot or geographical area, etc.);
  • Ensuring the proper functioning of the services provided.

Browsing data are stored for no longer than seven days, except when required for legal investigations.

 

Data Provided by the User

  • Users voluntarily provide personal data that uniquely identify them in the following cases:
  • Creation of an account on the Website;
  • Purchase of services;
  • Requests for information about the services offered by the Controller.
  • The personal data processed include:
  • Personal information (full name, residence address, date of birth);
  • Contact details (phone number, email address);
  • Financial data (credit/debit card details, payment information);
  • Login credentials (username and password);
  • Images from social media provided through interaction with the Controller.

If a User provides third-party personal data, they are responsible for informing those individuals and ensuring they receive a copy of this Privacy Policy.

Additionally, optional, explicit, and voluntary sending of messages to the Controller’s contact addresses or private messages via social media pages/profiles, as well as filling out and submitting forms on the Website, involve the collection of the sender’s contact details and any personal data included in such communications.

 

Cookies and Tracking Technologies

The Controller, along with its affiliates, analytics providers, service providers, and advertising companies, uses technologies such as Cookies, Web Beacons, tags, and scripts to analyze trends, administer the website, track user movements, and collect demographic data. The Controller receives individual or aggregated reports, including pseudonymized data, based on the use of these technologies.

  • The collected information includes:
  • Device information: IP address, Internet service provider or mobile network provider, operating system, browser type, and device type (PC, smartphone, etc.);
  • User activity data: Date and time of access, page views, browsing paths on the website, search terms used to reach the site, and general geographical location (country or city).
  • Session cookies (non-persistent) are also used, strictly limited to what is necessary for safe and efficient navigation.

For further details on cookie usage, refer to the Cookie Policy.

 

PURPOSES OF DATA PROCESSING

The Controller processes personal data for the following purposes:

  • Purchase and Delivery of Products and Services
  • User account registration and management;
  • Processing paid service transactions, withdrawals, and legal guarantees;
  • Electronic invoicing and administrative, accounting, and tax-related activities;
  • Completing sales transactions, including order processing and service provision.

 

(b) Customer Support Activities

Providing assistance and information when needed.

(c) Fraud Prevention, Credit Risk Management, and Legal Compliance

Preventing errors, fraud, and unauthorized transactions, including compliance with anti-money laundering regulations and sanctions;

Protecting, investigating, and deterring fraudulent, harmful, unauthorized, unethical, or illegal activities.

(d) Marketing Activities

Sending marketing communications via email, WhatsApp, and other instant messaging services regarding SAFE’s services, including surveys, event participation, and promotional activities.

Users can object to marketing-related processing at any time via the opt-out link in each communication.

(e) Statistical Analysis

Monitoring website performance and user behavior for troubleshooting and maintenance.

(f) Security Measures

Protecting the rights and privacy of the Controller and Users;

Enforcing terms and conditions governing service provision.

Any additional processing will be carried out in compliance with Articles 13 and 14 of the GDPR.

 

LEGAL BASIS FOR DATA PROCESSING

The legal basis for processing personal data depends on the purpose:

  • Contractual obligations (Article 6(1)(b) GDPR) for service fulfillment;
  • Legal obligations (Article 6(1)(c) GDPR) for regulatory compliance;
  • Legitimate interest (Article 6(1)(f) GDPR) for marketing communications regarding similar products or services previously purchased;
  • User consent (Article 6(1)(a) GDPR) for marketing activities and profiling.

Users have the right to withdraw consent at any time.

 

DATA RECIPIENTS

SAFE shares personal data only for the purposes described above with:

  • Service providers (e.g., payment processors, email distributors);
  • Business partners (if the user accepts a third-party offer).

SAFE does not share personal data with third parties for direct marketing purposes.

 

USER RIGHTS

Users have the right to:

  • Access, correct, or delete personal data (Articles 15-17 GDPR);
  • Restrict or object to processing (Articles 18, 21 GDPR);
  • Data portability (Article 20 GDPR);
  • Not be subject to automated decision-making (Article 22 GDPR);
  • File a complaint with a Supervisory Authority (Article 77 GDPR).
  • Requests can be sent via certified email to fondazionesafe@pec.it

 

DATA SECURITY AND RETENTION

SAFE implements technical and organizational security measures, including:

  • SSL encryption;
  • Access controls and firewalls;
  • Monitoring for security breaches.
  • Personal data is deleted or anonymized when no longer necessary.

 

CHILDREN’S PRIVACY

SAFE does not knowingly collect personal data from minors. If a parent or guardian believes a child has provided personal data, they should contact SAFE immediately for its removal.

 

CONSENT

By using this Website, you consent to this Privacy Policy and agree to its terms.

For further information, do not contact us at fondazionesafe@pec.it