Privacy Policy

Last updated: 01/08/2025

This Privacy Policy explains how the Consiglio Nazionale Architetti Pianificatori Paesaggisti Conservatori (CNAPPC) collects, uses, stores, and protects your personal data in accordance with the EU General Data Protection Regulation (GDPR – Regulation (EU) 2016/679).

1. Data Controller

CNAPPC – Consiglio Nazionale Architetti Pianificatori Paesaggisti Conservatori
 Via di Santa Maria dell’Anima, 10, 00186 Rome, Italy
 Email: contact@cnappc.it

2. Types of Personal Data We Collect

We may collect the following categories of personal data when you interact with our website:

  • Contact information (e.g., name, email address, phone number)

  • Technical data (e.g., IP address, browser type, device information)

  • Cookie and tracking data (e.g., browsing behavior, preferences)

  • Information you provide via forms (e.g., contact form, newsletter signup)

3. Purposes and Legal Bases for Processing

Purpose

Legal Basis (GDPR Article 6)

Responding to inquiries via contact forms

Consent or legitimate interest (Art. 6(1)(a), (f))

Managing subscriptions (e.g., newsletters)

Consent (Art. 6(1)(a))

Website analytics and improvement

Consent for analytics cookies (Art. 6(1)(a))

Ensuring website security and functionality

Legitimate interest (Art. 6(1)(f))

Legal or regulatory compliance

Legal obligation (Art. 6(1)(c))

4. Cookies and Tracking Technologies

We use cookies to enhance user experience, analyze traffic, and manage preferences.
 You can accept, reject, or customize cookie settings via our cookie banner, powered by Complianz.

5. Data Retention

We retain personal data only as long as necessary for the purposes for which it was collected, including:

  • Contact form data: up to 12 months

  • Cookie consent logs: up to 12 months

  • Newsletter data: until you unsubscribe

  • Technical logs (e.g., IPs for security): up to 12 months unless required longer for legal reasons

6. Data Sharing and Processors

Your data may be processed by trusted service providers acting as data processors, including:

  • OVH (hosting provider)

  • Email or newsletter tools (e.g., MailerLite, Mailchimp)*

  • Analytics providers (e.g., Google Analytics)*

(*Only when explicitly accepted via cookie consent.)

All third-party processors are bound by Data Processing Agreements (DPAs) as required by Article 28 of the GDPR.

7. International Data Transfers

CNAPPC does not transfer personal data outside the European Union.
 All data is stored and processed on servers located within the EU.

8. Your Rights Under GDPR

You have the right to:

  • Access your personal data

  • Rectify inaccurate or outdated data

  • Request deletion (“right to be forgotten”)

  • Restrict or object to data processing

  • Withdraw your consent at any time

  • Request data portability in a structured format

  • Lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali)

To exercise any of these rights, contact us at contact@cnappc.it.

9. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • SSL encryption (HTTPS)

  • Access control and authentication

  • Secure hosting via OVH

  • Regular backups and data minimization practices

10. Data Breach Procedure

In the event of a personal data breach, we will notify the Italian Data Protection Authority within 72 hours, and affected individuals when legally required, as per Articles 33 and 34 of the GDPR.

11. Updates to This Policy

We may update this Privacy Policy from time to time.
 The latest version is always available on this page. Please check it periodically for any changes.

Contatti

Compila il modulo per segnalare il contatto.

it_ITIT
en_USEN fr_FRFR it_ITIT