Informative for the protection of personal data GDPR

Informative for the protection of personal data GDPR

Information pursuant to Articles 13 and 14 of the European Regulation 2016/679 and the Italian harmonisation legislation.

Pursuant to Articles 13 and 14 of the European Regulation 679/2016 (hereinafter also referred to as the “GDPR”) and the Italian harmonisation legislation, please be advised that the personal data of the data subject are collected and processed by the Western Ligurian Sea Port Authority, in its capacity as the data controller (hereinafter referred to as the “Controller” or “Authority”), which therefore provides the following information concerning the processing of your personal data.

Events may be held in person or delivered via web conferencing platforms. In the latter case, unless the nature of the event requires otherwise, it is not compulsory to activate your webcam or microphone in order to participate remotely, nor is it compulsory to access the platform using your full name: you may use a nickname, which will be visible to all participants (in the chat if it is visible, or in the frame if the webcam is deactivated). During events (both in person and online), the Controller may record and/or film the event.

  1. Purpose and Legal Basis for processing

       The data are processed for the following purposes:

    1. registration for and participation in the event/conference/course/seminar/webinar, as well as transmission of slides and/or other relevant materials. For these processing activities, the legal basis is the pre-contractual and contractual relationship between you and the Authority (Article 6(1)(b) of the GDPR) and the performance of public interest tasks assigned to the Controller by Law 84/1994 (Article 6(1)(e) of the GDPR);
    2. to assess the level of interest and satisfaction of participants in relation to the activities carried out, including after the event/conference/course/seminar/webinar. For this further processing, the legal basis is the performance of public interest tasks assigned to the Controller by Law 84/1994 (Article 6(1)(e) of the GDPR);
    3. audio/photo/video recordings may be made during the event/conference/course/seminar/webinar. The legal basis for these processing activities is the performance of public interest tasks assigned to the Controller by Law 84/1994 and by Law 150/2000 (Article 6(1)(e) of the GDPR), the legitimate interest of the Controller in documenting the event and promoting its image to the public (Article 6(1)(f) of the GDPR), as well as the consent of the data subject (Article 6(1)(a) of the GDPR), which will in any case be requested.
  2. Categories of data collected. Provision of data and consequences of refusal

    The data collected and processed by the Controller for the purposes outlined in points a) and b) of paragraph 1 include:

    personal identification and contact details of the data subject (such as, for example: first and last name; landline and/or mobile phone number; e-mail address, etc.).

    For the purposes indicated in point 1.c., the data collected and processed consist of images, video recordings, and audio.

    The provision of such data is essential for participation in the event. Any refusal to provide such data, or the provision of inaccurate and/or incomplete information, will prevent the achievement of this purpose. For these processing activities, the consent of the data subject is not required, pursuant to Article 6(1)(b) and (c) of the GDPR and the Italian harmonisation legislation. Further data may be requested on a voluntary basis, always for the same purposes.

    The data subject may, at any time and pursuant to Article 21(1) of the GDPR, object to the processing of their personal data by notifying the photographer/operator present at the event or by contacting the Controller, without this affecting the lawfulness of processing based on consent given prior to withdrawal.

  3. Methods of processing and data retention

    The data collected will be processed and stored both on paper and using automated tools, following procedures strictly related to the purposes outlined above and in a way that ensures data security and confidentiality.

    The data will be retained for the time strictly necessary to enable participation in the event, as well as to comply with any legal obligations to which the Controller is subject.

  4. Scope of disclosure, international transfers and dissemination of personal data

    Personal data will be processed by the Controller’s internal staff, in their capacity as persons authorised to process the data.

    In addition, personal data may be processed by parties providing services or functions of a technical or organisational nature, in their capacity as external data processors.

  5. Rights of the data subject

    In relation to the processing of personal data, you have the rights provided for in Articles 15 to 22 of the GDPR, including the right to obtain from the Controller access to, rectification or erasure (so-called “right to be forgotten”) of your personal data; the right to restrict processing and the right to data portability; the right to object to processing, including profiling; and finally, the right to lodge a complaint with the Italian Data Protection Authority.

    To exercise these rights, you may contact the Data Controller by sending a written communication to the address below, or by sending a certified email to: This email address is being protected from spambots. You need JavaScript enabled to view it..

  6. Data Controller and Data Protection Officer

    The Data Controller is the Western Ligurian Sea Port Authority, with its registered office at Via della Mercanzia 2 – 16124 - Genoa, Italy.

    The Data Protection Officer (DPO) may be contacted by sending an e-mail to: This email address is being protected from spambots. You need JavaScript enabled to view it..

";