Privacy notice pursuant to article 13 GDPR on the processing of personal data performed by the Pontifical Athenaeum Regina Apostolorum
Pontifical Athenaeum Regina Apostolorum, with registered office in Rome, at Via degli Aldobrandeschi no. 190, in his capacity of Data Controller (hereinafter also “APRA” or “Data Controller”) pursuant to Article 13 of the Regulation (EU) no. 2016/679, bearing the so-called “General Data Protection Regulation” (“GDPR”), hereby informs You on how your personal data are processed in order to receive information about the Course “JOINT DIPLOMA LEADERSHIP: SERVICE THROUGH VIRTUESy”.
The Data Controller is, pursuant to Article 4 GDPR, Pontifical Athenaeum Regina Apostolorum, with registered office in Rome, at via degli Aldobrandeschi no. 190.
Data Protection Officer
In order to offer You an easier contact point for exercising the rights by GDPR, the Data Controller has appointed its own Data Protection Officer (“DPO”), the Attorney Elena Maggio, who can be contacted to the following email address [email protected] or by calling the telephone number +39 346.0145547, as well as writing, with a communication addressed to the head office of the Data Controller, to the attention of the DPO.
Personal Data processed
Data Controller request or spontaneously receive from You, when filling the request form in order to receive information about the Course, the following kind of personal data, and therefore processes and stores:
common data: i.e. personal data such as name, surname;
contact data: i.e. personal data such as email address.
The provision of such data (i.e. name, surname and email address) is necessary in order to satisfy the request for information.
Purposes of the processing and legal basis of the processing
Personal data requested by the Data Controller in order to be able to encounter Your request for information are common and contact data.
Pursuant to Article 6, paragraph 1, lett. b) GDPR, in these cases Your consent is implicit, being necessary to find out Your request for information.
Pursuant to Article 6, paragraph 1, lett. f) GDPR Data Controller will process Your common and contact data for sending communications aimed at promoting further courses and projects of Your possible interest; as well as for sending the newsletter of APRA (or its internal institutions).
You may still object to the processing of Your personal data at any time, in the manner described in the “Rights of the Data Subject“, section of this privacy notice and revoke the consent given, without prejudice to the processing performed until then by the Data Controller.
Way of processing
Data Controller processes Your personal data in compliance with the guarantees of confidentiality and adequate security measures provided by the current legislation, with and without the aid of IT tools, with logic strictly related to the purposes of the processing.
Your personal data will be processed, in particular, by the Communication and Promotion Office.
Disclosure of personal data to third parties
Data Controller in no case will communicate Your common and contact data to third parties.
Transfer of personal data
Your personal data will be processed within the European Union and stored on server situated inside the European Union or in countries where an adequacy decision has been taken pursuant to art. 45 GDPR.
The same data may be processed in countries outside the European Union only for administrative purposes within companies, foundations, associations, even religious, to which the APRA belongs.
Retention of personal data
All Your personal data processed for the afore mentioned purposes, will be retained as long as You don’t revoke your consent.
Data Subject’s rights
In connection with the personal data provided by You, pursuant to Articles 15-22 GDPR, You have the right to:
For exercising Your rights or for revoking Your consent, You can contact the DPO, the Attorney Elena Maggio, sending an email to the following email address [email protected] or by calling the following telephone number +39 346.0145547, as well as writing with a communication addressed to the head office of the Data Controller, to the attention of the DPO.
Your request will be detected as soon as possible and, however, in the terms of GDPR.
Last reviewed of this Privacy Notice was on 18 of July, 2022.