Please take the time to read this notice carefully.
The Italian Chamber of Commerce and Industry UK (the Chamber) recognises that protecting Personal Data, including special categories of data (sometimes referred to as sensitive Personal Data), is very important to you.
We have published this document to clearly outline, in a transparent way, how we will collect, use, store, protect and retain your Personal Data.
Data Protection Laws means (i) any applicable legislation in force from time to time which implement European Community Directive 95/46/EC and Directive 2002/58/EC and (ii) the General Data Protection Regulation (Regulation (EU) 2016/679) (GDPR) and any applicable legislation in force from time to time which implement the GDPR and any amendments, revisions or replacement in respect of the foregoing, including the Data Protection Act 2018 and the UK GDPR;
“Personal Data”, “Data Subject”, “Processing”, “Data Controller”, Supervisory Authority and “Data Processing” shall have the same meaning ascribed to them under applicable Data Protection Laws.
For the purposes of Data Protection Laws, the Chamber is the Data Controller for Personal Data in scope of this notice.
Identity of the Data Controller
The Italian Chamber of Commerce in UK
1 Princes St,
London W1B 2AY
Tel: +44 (0)20 74958191
VAT Number: 510352988.
The Chamber has not appointed a Data Protection Officer but has a data protection team that can be contacted in relation to any data protection queries. The privacy team can be contacted at: firstname.lastname@example.org
Save for employee (including interns) related data processing, the Chamber does not process special categories of data.
The Chamber may collect and process the following data about you:
Categories of Data
Source of Data
For the ongoing management of our business and for business operation, we may share your data with the following recipients:
UK and Italian businesses, professionals, and organisations
Note: You have the right to withdraw your consent at any time for any processing activities that you have consented to.
In certain situations, we may obtain, collect, and process your Personal Data to send you marketing communications. We will only send you such materials if you have consented and in accordance with your preferences for receiving marketing communications. You may withdraw your consent at any time by contacting us at email@example.com .
You have data rights which allow you to address any concerns or queries regarding the processing of your Personal Data. Please contact us if you have any queries in relation to your rights.
You have the following rights (subject to limitations depending on the processing).
We will respond to your request within 1 (one) month of receipt of your request.
All your rights may be exercised freely and at no cost.
Please contact firstname.lastname@example.org
If you feel that the processing of your Personal Data is not in line with our data protection obligations, you can complain to a Data Protection Supervisory Authority. The Chamber is registered as a Data Controller with the Information Commissioners Office (ICO).
Information Commissioner’s Office,
Cheshire SK9 5AF,
+44 0303 123 1113
We have implemented technical and organisational measures to ensure the security of your personal data. This includes technical measures such as encrypting data in transit and at rest, anti-virus, access controls and firewalls. We also require our vendors to implement robust security measures to ensure the safety of personal data.
The Chamber will only retain your Personal Data for as long as necessary and in accordance with our retention policy.
Member details will generally be retained for 18 months post account inactivity.
Employee details will be retained as long as is necessary under Employment Law and other related acts (Taxes, Companies etc.)
Marketing contacts can be erased upon request from individuals.
Personal Data is primarily processed within the EU/EEA. Where personal data is transferred outside of the EU to Data Processors, we will implement data processing agreements and standard contractual clauses to safeguard data protection rights. Currently, data transfers between the UK and the EU are covered under the GDPR and the transition arrangement between the two parties. Depending on the outcome of the UK withdrawal negotiations, the UK and the EU may not share the same data protection regime. In the event of no data protection agreements between the UK and the EU, we will implement appropriate safeguards, such as standard contractual clauses for data transfers.
We may change and update this notice from time to time, in whole or in part, at our sole discretion or to fulfil a legal obligation. We encourage you to check our website periodically to view the most recent version of this statement.
If, at any time, we decide to use your Personal Data for a purpose that is different from the original purpose of collecting it, you will be advised of this change.