IRCCS G.B. Bietti Foundation for the Study and Research in Ophthalmology – ONLUS with registered office in Rome – Via Livenza n. 3 – 00198 Codice Fiscale 07864670588 e VAT n. 01891741009 (hereinafter, the “Owner“), owner of the website http:/www. fondazionebietti.it/ (hereinafter, the “Site“), as data controller of the personal data of users who browse the Site (hereinafter, the “Users“) provides below the privacy information pursuant to art. 13 of EU Regulation 2016/679 of 27 April 2016 (hereinafter, the “Regulation” and/or the “Applicable Law“).

The Owner takes the utmost account of the right to privacy and the protection of personal data of its Users. For any information in relation to this privacy statement, Users can contact the Owner at any time, using the following methods:

• By sending a registered letter with return receipt to the Data Controller’s registered office (Via Livenza, 3 00198 Rome);
• By sending an e-mail message to privacy@fondazionebietti.it
• By sending a fax to no. 06 84242333

Users can also contact the Data Protection Officer (RPD or DPO) of the Owner, whose contact details are listed below: the company Shibumi S.r.l. – email: dpo@fondazionebietti.it

1. Purposes of the processing

Users’ personal data will be processed lawfully by the Data Controller pursuant to art. 6 of the Regulation for the following processing purposes:

a) provision of the service, or to allow the User to browse the Site. The User data collected by the Data Controller for this purpose includes all personal data whose transmission is implicit in the use of Internet communication protocols, which the computer systems and software procedures used to operate the Site acquire during their normal exercise: the IP addresses or domain names of the computers used by the Users, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User’s operating system and IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to allow its correct functioning. Without prejudice to the provisions elsewhere in this privacy statement, in no case will the Data Controller make the Users’ personal data accessible to other Users and/or third parties.

b) administrative-accounting purposes, or to carry out activities of an organisational, administrative, financial and accounting nature, such as internal organizational activities and functional activities for the fulfillment of contractual and pre-contractual obligations;

c) legal obligations, or to fulfill obligations established by law, by an authority, by a regulation or by legislation and to ascertain responsibility in the event of hypothetical computer crimes against the Site.

2. Data processing and storage methods

The Data Controller will process the Users’ personal data using IT tools, with logic strictly related to the purposes themselves and, in any case, in order to guarantee the security and confidentiality of the data.

The personal data of the Users of the Site will be kept for the time strictly necessary to carry out the primary purposes illustrated in the previous paragraph 1, or in any case according to what is necessary for the protection in civil law of the interests of both the Users and the Owner.

3. Scope of communication and dissemination of data

The employees and/or collaborators of the Data Controller in charge of managing the Site may become aware of the Users’ personal data. These subjects, who are instructed by the Data Controller pursuant to Article 29 of the Regulation, will process the User’s data exclusively for the purposes indicated in this information and in compliance with the provisions of the Applicable Regulations.

The personal data of Users may also be disclosed to third parties who may process personal data on behalf of the Data Controller as “External Data Processors“, such as, by way of example, suppliers of IT and logistics services functional to the operation of the Site, service providers in outsourcing or cloud computing, professionals and consultants.

Users have the right to obtain a list of any data processors appointed by the Data Controller, by making a request to the Data Controller in the manner indicated in paragraph 4 below.

4. Rights of the Data Subjects

Users will be able to exercise the rights guaranteed to them by the Applicable Regulations by contacting the Owner in the following ways:

• By sending a registered letter with return receipt to the Data Controller’s registered office (Via Livenza, 3 00198 Rome);
• By sending an e-mail message to privacy@fondazionebietti.it
• By sending a fax to no. 06 84242333

Pursuant to the Applicable Law, the Owner informs that Users have the right to obtain the indication (i) the source of the personal data; (ii) the purposes and methods of processing; (iii) the reasoning applied in the event of processing carried out with the aid of electronic instruments; (iv) the identification details of the data controller and data processors; (v) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of it in their capacity as data processors or persons in charge of processing.

Furthermore, Users have the right to obtain:

a) access, updating, rectification or, when interested, integration of data;

b) delete, process in anonymous way or block all data that violates laws currently in force, including these data whose storage is not required by the purposes they have been collected and/or processed for;

c) the certification that the operations referred to in letters a) and b) have been made known to those to whom the data has been communicated or distributed, except in the event in which such compliance proves to be impossible or leads to the use of manifestly disproportionate means in respect of the right defended.

Furthermore, Users have:

a) (where applicable) the right to withdraw consent at any time, if the treatment is based on their consent;

b) (where applicable) the right to data portability (right to receive all personal data concerning them in a structured format, commonly used and readable by an automatic device), the right to limit the processing of personal data and the right to cancellation (“right to be forgotten”);

c) the right to object:
in whole or in part, for legitimate reasons, to the processing of personal data concerning them, even if pertinent to the purpose of the collection;

d) if they believe that the processing that concerns them violates the Regulation, the right to lodge a complaint with a Supervisory Authority (in the Member State in which they usually reside, in the one in which they work or in the one in which the alleged violation has occurred ). The Italian Supervisory Authority is the Guarantor for the protection of personal data, with headquarters in Piazza di Monte Citorio n. 121, 00186 – Rome (http://www.garanteprivacy.it/).

The Owner is not responsible for updating all the links that can be viewed in this Information, therefore whenever a link is not functional and/or updated, Users acknowledge and accept that they must always refer to the document and/or section of the websites referred to by this link.

---

Information on Cookies

(version 1.0 dated 07/24/2018)

This Internet site (https://www.fondazionebietti.it/) (hereinafter, the “Site“) is owned by IRCCS Fondazione G.B. Bietti for the Study and Research in Ophthalmology – ONLUS with registered office in Via Livenza, n. 3, 00198 – Roma, VAT n. 01891741009 (hereinafter, “Owner” or the “Foundation“).

Since cookies for different purposes, with this information the Foundation wants to explain what cookies are and how they are used on the Site.

Some cookies (so-called own or first-party cookies) are conveyed and controlled directly by the Foundation. Through these cookies, the Foundation collects and processes some personal data concerning you. In this information, pursuant to art. 13 of EU Regulation 2016/679 of 27 April 2016 concerning the protection of natural persons with regard to the processing of personal data (hereinafter, “Regulation“), the Foundation explains how it collects this data, for what purposes and what are yours rights.

Other cookies (so-called third-party cookies), are, on the other hand, conveyed and controlled by third parties. In this disclosure you will find links to the disclosures published by these third parties, which we ask you to read carefully.

If you are not familiar with cookies, please read this information and the general privacy information of the Site carefully, so that you can be aware of your choices.

The Owner takes the utmost account of the right to privacy and protection of personal data of its Users. For any information relating to this Cookie Policy, Users can contact the Owner at any time, using the following methods:

• By sending a registered letter with return receipt to the Data Controller’s registered office (Via Livenza, n. 3, 00198 – Rome);
• By sending an email to privacy@fondazionebietti.it.

You can also contact the Data Protection Officer (RPD or DPO) of the Data Controller at this e-mail address dpo@fondazionebietti.it.

A. What are cookies and what are they for

Cookies are small text files that the sites visited by the user send directly to his terminal (usually to the browser), where they are stored before being re-transmitted to the same sites on the next visit by the same user (so-called first-party cookies). While browsing a site, the user can also receive cookies from different sites or web servers on his terminal ( third-party cookies); this happens because on the website visited there may be elements such as, for example, images, maps, sounds, specific links to web pages of other domains that reside on servers other than the one on which the requested page is located. In other words, they are those cookies that are set by a website other than the one you are currently visiting.

Cookies may have a limited duration for a single browsing session on the browser (so-called session cookies), and in this case they are deactivated automatically when the user closes the browser; or they may have a predetermined expiration date and, in this case, they will remain memorized and active on your hard disk up to that expiration date, continuing to collect information during different browsing sessions on the browser ( permanent cookies).

Cookies are used for various functions. Some are necessary to allow you to browse the site and take advantage of its features (so-called technical cookies). Others are used to obtain statistical information, in aggregate or otherwise, on the number of users who access the Site and on how the Site is used (so-called tracking or analytics cookies). Finally, others are used to trace your consumer profile and display advertisements on the Site that may be of interest to you, as they are consistent with your tastes and consumption habits (so-called profiling cookies).

To learn more about these different categories of cookies, continue reading this information. Find out how they work and what they are for, and freely choose whether to consent to their use or to prevent it.

B. Technical cookies

Technical cookies are used on the Site for the sole purpose of making your navigation on the Site possible and allowing you to use its functions. These are always first-party cookies, as they are conveyed directly by the Foundation on the Site.

Some technical cookies are essential to offer you an optimal browsing experience or to allow you to authenticate yourself on the site, for example to make a purchase on the site or enter your private area (so-called navigation cookies). Navigation cookies are normally session cookies and, therefore, once the navigation browser is closed, they are automatically deactivated.

Other technical cookies are useful to allow you to memorize some of your preferences (for example, the language or the country of origin) without having to reset them during subsequent visits (so-called functionality cookies). For this reason, functionality cookies are often persistent cookies, as they remain stored on your computer even after the browser is closed, until their expiry date or until you decide to delete them.

The following technical cookies are currently used on the Site:

Cookie name	Category of the cookie	Function of the cookie
has_js	– of session	Records whether or not the user has JavaScript enabled in the browser

As required by current legislation on privacy, your prior consent is not required for the installation of these cookies. Naturally, you are free to block the installation of technical cookies by modifying the settings of your browser (read paragraph E, n. 1 to find out how to do it). Consider, however, that by blocking the installation of technical cookies, or subsequently eliminating them, the ability to access the Site, to use all or part of it, to enable or disable certain functions or to receive certain services could be wholly or partially compromised.

C. Monitoring or “analytics” cookies

Analytics cookies are used on the Site to collect statistical information, in aggregate or non-aggregated form, on the number of users who access the Site and on how they visit the Site itself.

The analytics cookies of this site are third-party cookies, since they are not conveyed directly by the Foundation but by third parties. Therefore, they are not installed directly by the Foundation but by third parties.

The following third-party analytics cookies are installed on the Site without your prior consent, because they are less invasive as they are anonymous, as third parties cannot access disaggregated analytics data at the IP address level (in other words, using these cookies , third parties cannot trace your identity):

Cookie name	Category of the cookie	Link to information / Opt-out instructions
Google Analytics [_ga]	– third-party analytics cookies – permanent – anonymized	www.google.it/policies/privacy/partners/
Google Analytics [_gat _gid]	– third-party analytics cookies – of session – anonymized	www.google.it/policies/privacy/partners/

Other third-party analytics cookies are, on the other hand, installed on the Site only with your prior prior consent, because they are not anonymous, as third parties can access disaggregated analytics data at the IP address level (in other words, using these cookies , third parties could theoretically trace your identity through the IP address):

Cookie name	Category of the cookie	Link to information / Opt-out instructions
Vimeo	– third-party analytics cookies – permanent	https://vimeo.com/cookie_policy

For this reason, when you access the Site, a special banner is displayed, informing you that (i) third-party analytics cookies are used on the Site and that (ii) by closing the banner, scrolling the home page or clicking any element of the home page outside the banner, you are consenting to the use of cookies. Should you express your consent to the installation of cookies in this way, we will keep track of your consent through a specific technical cookie. In this way, we will avoid displaying the cookie banner during your subsequent visits to the Site. Please consider that, should you delete this technical cookie from your browser in the manner described in the following paragraph E, n. 1), the trace of your consent would be lost and, therefore, during your next visit to the Site, the cookie banner will be displayed again.

Naturally, you are free to block the installation of analytics cookies at any time, without compromising the possibility of visiting the Site and using its contents in any way. To find out how to do this, carefully read the information on third-party cookies by following the links in the table above.

D. Profiling cookies

Profiling cookies are used to create your user profile, based on the preferences and tastes you manifest while browsing the Internet, and display advertising messages consistent with your profile. In this way the advertising messages that you will see on our site will be more interesting for you.

As required by current legislation on privacy, your prior consent is required for the installation of these cookies. For this reason, when you access the Site, a special banner is displayed, informing you that (i) profiling cookies are used on the Site and that (ii) by closing the banner, scrolling the home page or clicking any element of the home page outside the banner, you are consenting to the use of cookies. Should you express your consent to the installation of cookies in this way, we will keep track of your consent through a specific technical cookie. In this way, we will avoid displaying the cookie banner during your subsequent visits to the Site. Please consider that, should you delete this technical cookie from your browser in the manner described in the following paragraph E, n. 1, the trace of your consent would be lost and, therefore, during your next visit to the Site, the cookie banner will be displayed again.

The Site does not implement profiling cookies either from first or from third parties.

E. How to manage cookies and oppose their useE. How to manage cookies and oppose their use

There are several options for managing, disabling and deleting cookies.

(1) Change your browser settings

Follow the instructions provided by the manufacturer of the browser you use to find out how to manage, disable or delete all cookies (technical, analytics and profiling):

• Explorer: https://support.microsoft.com/en-us/kb/196955/it
• Chrome: https://support.google.com/chrome/answer/95647?hl=it
• Firefox: https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
• Safari: https://support.apple.com/kb/PH17191?locale=it_IT
• Opera: http://help.opera.com/Windows/10.00/it/cookies.html

Make your choices carefully. By indiscriminately blocking the reception of all cookies, including technical ones, without providing for a specific exception for the Site, you may, in fact, no longer be able to browse the Site or use all or part of its features. Furthermore, by deleting all cookies from the browser, technical cookies could also be removed and, therefore, you could remove the preferences you have set using the Site or you could no longer find the products or services added to your shopping cart.

(2) Use our interactive tools or those provided by third parties

To disable third-party cookies, consult the privacy policies of third parties who install analytics cookies (see paragraph C above) to find out about the other tools at your disposal to manage, disable and delete cookies, and more generally to oppose their use. usage. Remember that by disabling third-party cookies, (i) you oppose their use not only on the Site but on all Internet sites on which these cookies are used e (ii) the ability to browse the Site and use its features will not be affected in any way. When you disable third-party cookies, you will still see the banner on the home page of the Site relating to cookies; in this case, however, by closing the banner, scrolling the home page or clicking any element of the home page outside the banner, you will not receive any third-party cookies that you have correctly disabled.

(3) Use the website www.youronlinechoices.eu/it/

Your Online Choices is an Internet site managed by the non-profit association European Interactive Digital Advertising Alliance (EDAA), the English version of which can be reached at www.youronlinechoices.eu, which provides information on behavioral advertising based on profiling cookies (http://www.youronlinechoices.com/it/a-proposito) and allows Internet users to easily oppose (opt-out) the installation of the main profiling cookies installed by advertising operators and used on Internet sites (http://www.youronlinechoices.com/it/le-tue-scelte). Before using this tool, we advise you to carefully read the general conditions of service of the Your Online Choices site (http://www.youronlinechoices.com/it/condizioni-generali-di-servizio), the frequently asked questions (FAQ) ( http://www.youronlinechoices.com/it/faqs) and the user guide (http://www.youronlinechoices.com/it/help).

Use Your Online Choices consciously. Although, in fact, Your Online Choices brings together many of the most important companies in the advertising world that use cookies, some of the third parties who install cookies through the Site may not have joined Your Online Choices. Therefore, the use of Your Online Choices does not guarantee that you will receive third-party cookies while browsing the Site. Also remember that by deleting all cookies from your browser, even the technical cookies issued by Your Online Choices to remember your choices could be deleted, making third-party cookies active again.

F. Processing methods and data storage times

As highlighted in the introduction to this information, the Foundation collects and processes some of your personal data through the cookies that it conveys directly on the Site (first-party cookies). The Foundation acts as data controller of this data, in compliance with the provisions of the Regulation. We will process your data only with electronic tools, in a totally automated way and without human intermediation. Therefore, any employees and/or collaborators of the Data Controller will never access the content of your personal data obtained through cookies, which means that they will never be able to access and/or have direct personal identification information (IPI).
Some of the employees and collaborators, appointed as data processors, could carry out maintenance work on the computer systems that host your data, without ever being able to access their actual content. Personal data could be stored on servers managed by third parties (e.g. IT system suppliers) or could be managed by subjects specialized in online advertising, who act as external data processors on the basis of a specific appointment in writing by part of the Foundation. We inform you that, in compliance with the assumptions and guarantees established by the Regulation, your data could be transferred to countries not belonging to the European Economic Area, which may not offer a level of protection of privacy and personal data protection comparable to that guaranteed by Italian and European laws on privacy, but as owner we will take the utmost consideration of data security, therefore we will proceed in the management of such transfers with all due caution and guarantees. Your personal data will not be disclosed to third party data controllers nor will they be disclosed.

G. Your rights

To exercise your rights, or obtain any further information or clarification in relation to this Cookie Policy, please contact the Owner in the following ways:

• By sending a registered letter with return receipt to the registered office of the Data Controller (Via Livenza, no. 3, 00198 – Rome);
• By sending an e-mail message to privacy@fondazionebietti.it.

Pursuant to the Regulation, the Owner informs that Users have the right to obtain information (i) the source of the personal data; (ii) the purposes and methods of processing; (iii) the reasoning applied in the event of processing carried out with the aid of electronic instruments; (iv) the identification details of the data controller and data processors; (v) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of it in their capacity as data processors or persons in charge of processing.

Furthermore, Users have the right to obtain:
a) access, updating, rectification or, when interested, integration of data;
b) delete, process in anonymous way or block all data that violates laws currently in force, including these data whose storage is not required by the purposes they have been collected and/or processed for;
c) the certification that the operations referred to in letters a) and b) have been made known to those to whom the data has been communicated or distributed, except in the event in which such compliance proves to be impossible or leads to the use of manifestly disproportionate means in respect of the right defended.

Furthermore, Users have:
a) the right to withdraw consent at any time, if the treatment is based on their consent;
b) (where applicable) the right to data portability (right to receive all personal data concerning them in a structured format, commonly used and readable by an automatic device), the right to limit the processing of personal data and the right to cancellation (“right to be forgotten”);
c) the right to object:
i) in whole or in part, for legitimate reasons, to the processing of personal data concerning them, even if pertinent to the purpose of the collection;
ii) in whole or in part, to the processing of personal data concerning them for the purpose of sending advertising materials or direct sales or for carrying out market research or commercial communication;
d) if they believe that the processing that concerns them violates the Regulation, the right to lodge a complaint with a Supervisory Authority (in the Member State in which they usually reside, in the one in which they work or in the one in which the alleged violation has occurred ). The Italian Supervisory Authority is the Guarantor for the protection of personal data, with headquarters in Piazza di Monte Citorio n. 121, 00186 – Roma (http://www.garanteprivacy.it/).

***

The Owner is not responsible for updating all the links that can be viewed in this Cookies Policy, therefore whenever a link is not functional and/or updated, Users acknowledge and accept that they must always refer to the document and/or section of the sites internet referred to by this link.