PRIVACY NOTICE PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679 The General Data Protection Regulation (GDPR)
The information is given in compliance with article 13 of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation or GDPR) to individuals interested in supporting the implementation of B-THENET (G.A. 101059812), funded by Horizon Europe Programme and coordinated by IZSLT (mail to info@bthenet.eu). The information is given to carry out applications, registrations, and administrative management of users; store data subject’s personal data in a B-THENET EUSurvey Database or Controller database; receive an invitation to join the project Platform, be contacted again for further project surveys, profile the subject data for the research project activities, and receiving news, information, invitations to events and workshops, publications, announcements and newsletters relating to the activities conducted by B-THENET.
PRIVACY NOTICE PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679 The General Data Protection Regulation (GDPR)
The information is given in compliance with article 13 of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation or GDPR) to individuals interested in supporting the implementation of B-THENET (G.A. 101059812), funded by Horizon Europe Programme and coordinated by IZSLT (mail to info@bthenet.eu). The information is given to carry out applications, registrations, and administrative management of users; store data subject’s personal data in a B-THENET EUSurvey Database or Controller database; receive an invitation to join the project Platform, be contacted again for further project surveys, profile the subject data for the research project activities, and receiving news, information, invitations to events and workshops, publications, announcements and newsletters relating to the activities conducted by B-THENET.
Definitions
“Personal data” (article 4, paragraph 1 of the GDPR) means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Processing” (article 4, paragraph 2 of the GDPR) means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Profiling” (article 4, paragraph 4 of GDPR) means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.
“Controller” (article 4, paragraph 7 of GDPR) means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
“Consent”’ (Article 4, paragraph 11 of GDPR) the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;
Data Controller
For the purposes of the GDPR (article 24), the Data Controllers are:
IZSLT- Istituto Zooprofilattico Sperimentale Lazio e Toscana
Via Appia Nuova 1411 – 00178 Rome- Italy
Data Protection Officer: Fabrizio Corzani
e-mail: privacy@izslt.it , PEC: izslt@legalmail.it
APRE – Agenzia per la Promozione della Ricerca Europea,
Data Protection Officer: Renato Fà
Via Cavour 71 – 00184 Rome – Italy
e-mail: privacy@apre.it - Tel +39 6 48939993
Type of data processed
As part of our activities, the Controller collects and processes personal data provided by you, the data subject, in particular, Name, Surname, Country, Image (optional), and Email to the extent that is needed and helpful to attain the purposes set out below.
Purpose of processing and profiling
We may collect and use personal data for the following purposes:
- Applications, registrations, and administrative management of Users;
- Storing data subject’s personal data in B-THENET EUSurvey Database or Controller Database • Receiving an invitation to join the project Platform
- To be contacted again for further project surveys
- Profiling of the subject data for the project research activities
- Receiving news, information, invitations to events and workshops, publications, announcements, and newsletters relating to the activities conducted by B-THENET
Enabling the Service Provider to address and handle claims or litigations.
According to Art. 22 of GDPR, personal data may be collected also for profiling purposes (off by default). Specifically, we may ask you to give information about your name, surname, image (optional), and country.
Moreover, personal data collected on B-THENET EUSurvey Database or Controller Database are not subject to automated decision-making or profiling. Some online services and tasks can be automated, such as registrations of responses to surveys, but they are not based on analysing the personal profile of the data subject.
Legal basis for processing personal data
For the purposes set out above, the legal basis of processing is the consent you, the data subject, give to the processing of your personal data, [article 6.1.a of the GDPR] and for the legitimate interest of the Service Provider (i.e. security monitoring) [article 6.1.f of the GDPR]
Data Subject Rights
In relation to your personal data you can exercise your rights as data subject under the GDPR, namely: • Right of access [article 15 of the GDPR];
- Right to rectification [article 16 of the GDPR];
- Right to erasure (‘right to be forgotten’) [article 17 of the GDPR];
- Right to restriction of processing [article 18 of the GDPR];
- Right to data portability [article 20 of the GDPR];
- Right to object [article 21 of the GDPR].
You have the right to withdraw your consent at any time.
The rights set out above can be exercised in writing by sending an email to info@bthenet.eu.
You as data subject have also the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali).
Data storage and retention
The personal data will be collected through the compilation of surveys. These consist in a first mandatory survey to allow for rating the most relevant practices and innovations to be applied in beekeeping (in 2023 the Survey includes two themes: the Apiary set-up and management/maintenance and Varroosis) and two optional surveys where opinion on preferred means of communication is collected, and the opportunity to describe in detail a beekeeping practice is given. Moreover, if you consent, images that illustrate the step-by step procedure of the practice that you described, can be processed as project material (e.g. published in the project platform to illustrate step-by-step procedures; used as dissemination and communication tools in the project website and social media). All information collected about you will be kept strictly confidential. Your data will be stored in a safe and lockable place at the B-THENET EUSurvey Database or Controller database. Only the B-THENET Controller will have access to this information.
If the Data subject doesn’t exercise the right to withdraw, data shall be stored in B-THENET EUSurvey Database or Controller database for as long as required by the purpose they have been processed for, and no longer than the duration of B-THENET. Personal data will be processed by IZSLT and APRE and used to reach the project aims.
Any longer storage periods remain unaffected, in the event that they are required due to legal, accounting and/or fiscal obligations.
If a publication is not finished by storage period, the data may continue to be used until the work is finalized. Processed data might survive the project, as it may become part of publications and other dissemination activities in pseudonymization or anonymization. The sole purpose of storing your data is for project activities.
Consent to data processing
You are free to give or withhold your consent to the processing of your personal data for the purposes above. We need your freely given consent to carry out applications, registrations, and administrative management of users; store data subject’s personal data in B-THENET EUSurvey Database or Controller Database; receive an invitation to join the project Platform, be contacted again for further project surveys, profile subject data for the research project activities and receiving news, information, invitations to events and workshops, publications, announcements and newsletters relating to the activities conducted by B-THENET.
Disclosure of data outside of B-THENET
Your personal data may be disclosed outside of the project for specific reasons. In particular, your personal data may be made available to entities providing IT system management on behalf of controllers, competent authorities and/or public bodies, European Commission, and supervisory authorities to comply with statutory requirements. Moreover, the Controller will share the subject’s data with the B-THENET Partners once the Joint Controllers Agreement will be signed. Requests by data subjects to exercise their data protection rights shall be handled in a coordinated manner through the
e-mail address info@bthenet.eu which shall be identified as a contact point for data subjects in the data protection information provided to them by each Party.
How data is processed
Your data will be processed by our controller’s employees and other authorized individuals. Said employees, and other authorized individuals may consult, use, process, compare the data as well as carry out any other appropriate action, including using automated means, always in compliance with statutory requirements that ensure, inter alia, protection of the confidentiality and security of the personal data, as well as data accuracy, update and appropriateness to the purposes for which the data is collected and used, as stated above.
Data re-use
The data stored will be used for the activities relating to the B-THENET. Moreover, the data could be shared and used for other EU projects that may benefit from them after pseudonymization or anonymization and in accordance with the purpose of the consent given (Art. 25 of GDPR). This includes their processing for research purposes and dissemination activities. Your data will, under no circumstances, be sold to any third party.
Transfer of data outside of the EU
Your Data will not be transferred outside the European Union.
Changes and updates
IZSLT and APRE may make changes and/or additions to this privacy notice as a result of regulatory changes. As consequence, the Controllers suggest reading frequently the present privacy policy on the splash page (https://www.bthenet.eu/privacy-policy.html ).
Data Breach
In case of a data breach, each beneficiary will immediately inform the Coordinator, IZSLT and APRE. In any situation, the event will be handled as per art. 33-34 of the EU 2016/679 GDPR. Together they will undertake all steps necessary to minimize any possible negative consequences.
General Information about cookies
Cookies are short fragments of text (letters and/or numbers) that allow the web server to store in regard to the client (the browser, e.g. Internet Explorer, Chrome, Firefox, Opera, etc.) information to be reused during visits to the site (session cookies) or later, even after days (persistent cookies). Cookies are stored, according to user preferences, by the single browser on the specific device used (computer, tablet, etc.).
Based on the characteristics and use of cookies, various types of cookies can be distinguished:
Technical cookies strictly necessary. These cookies are essential for the proper functioning of a website that are used to manage various services related to websites (for example, logins or access to the reserved functions in the sites). The duration of cookies is strictly limited to the work session Deactivation of strictly necessary cookies may compromise the user experience and navigation of the website.
Purposes of the processing and purposes of technical session cookies. The cookies used on the Site are for the sole purpose of performing computer authentication or the monitoring of sessions and the
storage of specific technical information concerning users accessing the servers of the Data Controllers that manage the Site. In this view, some activities on the Website cannot be performed without the use of cookies, which in such cases are therefore technically necessary.
For more information, please read the EUSurvey cookie policy (https://commission.europa.eu/cookies policy_en) for filling in the survey or project cookie policy (https://www.bthenet.eu/cookies policy.html).
CONSENT REQUEST PURSUANT TO ARTICLE 6 OF THE GDPR
By clicking on the "Register and Profiling" button in the subscription form you give your consent to our processing and profiling of your personal data in accordance with the purposes described above.
The binding text of the PRIVACY NOTICE PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679 shall be in the English language. It shall be the principal text for all evaluations, discussions and interpretations