Privacy policy

The protection of personal data is, for us, a matter of trust and responsibility. With this privacy notice we wish to explain transparently what personal data we collect through the website congresso-omega3.it, the purposes for which we process it and the rights available to data subjects under Regulation (EU) 2016/679 (the “GDPR”).

This notice relates in particular to the organisation, management and communication of the International Congress on omega-3 fatty acids.

1. Data Controller

The controller of your personal data is:

Norsan Srl
Via Innsbruck 31
39100 Bolzano, Italy
Telephone: +39 0471 181 7989
E-mail: info@norsan.it

For any question concerning the processing of personal data, or to exercise your rights, you can contact us using the details above.

2. Categories of data processed

In connection with your browsing of the website and the organisation of the congress, we may process the following categories of personal data:

2.1 Data provided voluntarily by the user

We may collect personal data when you complete contact forms, registration forms, requests for information or other forms available on the website.

Such data may include, by way of example:

first name and surname;
e-mail address;
telephone number;
profession, role or affiliated institution;
data required for registration to the congress;
any organisational preferences communicated by the user;
any billing details, where applicable;
the content of communications sent by the user.

2.2 Data relating to participation in the congress

For the management of the event we may process data relating to participation, such as:

registration confirmation;
attendance at the event;
participation in sessions, workshops or scientific excursions;
organisational or logistical requests;
any certificates of attendance;
communications concerning the programme, schedule and updates of the event.

Where professional accreditation procedures, CME (Continuing Medical Education) or similar are provided for, the data necessary to comply with the obligations connected to such procedures may be processed.

2.3 Browsing data

During your visit to the website, the IT systems may automatically collect certain technical information, including:

IP address;
browser type and version;
operating system;
date and time of access;
pages visited;
referring website;
technical data relating to the device used.

This data is used to ensure the proper functioning of the website, improve its security and obtain aggregate statistics on the use of the pages.

3. Purposes of the processing

Personal data is processed for the following purposes:

3.1 Management of registration and participation in the congress

The data provided by the user is used to:

register the participant for the congress;
send confirmations of participation;
manage organisational communications;
prepare badges, participant lists or certificates;
provide information on the programme, schedule, venue and related activities;
handle any requests relating to the event.

3.2 Responding to contact requests

Data sent through contact forms or by e-mail is used to respond to the user's requests and provide the information requested.

3.3 Administrative, tax and legal compliance

Where necessary, data may be processed to comply with administrative, accounting, tax or legal obligations connected to the organisation of the event.

3.4 Informational communications relating to the event

We may use the e-mail address provided by the user to send communications strictly connected to the congress, such as programme updates, logistical information, changes to the schedule or post-event communications.

3.5 Newsletter and promotional communications

Only with the user's prior consent, data may be used to send newsletters, informational or promotional communications relating to initiatives, events, scientific content or activities of Norsan Srl.

The user may withdraw consent at any time, without affecting the lawfulness of processing carried out before the withdrawal.

3.6 Security and improvement of the website

Technical browsing data may be used to ensure the security of the website, prevent abuse, resolve technical issues and improve the browsing experience.

4. Legal basis for the processing

The processing of personal data is based, depending on the case, on the following legal bases:

the performance of pre-contractual or contractual measures, in order to manage registration and participation in the congress;
the data subject's consent, for newsletters, promotional communications or specific activities that require it;
compliance with legal, tax or administrative obligations;
the legitimate interest of the controller, for example for the security of the website, the organisational management of the event and the protection of its rights.

5. Disclosure of data to third parties

Personal data may be disclosed to third parties only where necessary for the purposes set out in this notice.

Such parties may include:

technical and IT service providers;
hosting providers;
providers of registration management platforms;
tax, administrative or legal advisers;
organisational partners involved in the management of the congress;
any accreditation bodies, where applicable;
payment service providers, where a registration fee is provided for;
e-mail or newsletter service providers, subject to consent where necessary.

Third parties process the data in accordance with the controller's instructions or as independent controllers, in compliance with applicable law.

Personal data is not sold to third parties.

6. Photographs, video and recordings during the congress

During the congress, photographs, video footage or audio recordings may be made for documentary, communicative, scientific or promotional purposes relating to the event.

Such materials may be used, for example, on the website, on social media channels, in newsletters, presentations or informational materials relating to the congress.

Where footage or photographs are taken in which participants are clearly identifiable, processing will be carried out in compliance with applicable law. Where necessary, specific consent will be requested.

Participants who do not wish to be filmed or photographed may notify the congress organisation.

7. Transfer of data outside the European Union

Where some service providers used by the website or by the congress organisation process data outside the European Economic Area, the transfer will take place in compliance with the safeguards provided for by the GDPR, such as adequacy decisions of the European Commission, standard contractual clauses or other appropriate measures.

8. Data retention period

Personal data is retained only for the time necessary to achieve the purposes for which it was collected.

In particular:

data relating to registration and participation in the congress is retained for the time necessary to manage the event and any subsequent obligations;
administrative, tax or accounting data is retained for the period provided for by law;
data processed for newsletter or promotional purposes is retained until consent is withdrawn;
technical browsing data is retained for the time necessary for the security and functioning of the website, subject to legal obligations.

When the data is no longer necessary, it is securely deleted or anonymised.

9. Cookies

The website uses cookies and similar technologies to ensure the proper functioning of the pages, improve the browsing experience and, subject to consent, collect statistics on the use of the website.

Cookies may be:

technical cookies, necessary for the functioning of the website;
analytics cookies, used to understand how users interact with the website;
third-party cookies, for example for embedded content, maps, videos or analytics tools.

The user can manage their cookie preferences through the banner on the website or through their browser settings.

Refusing certain cookies may limit some functionalities of the website.

10. Analytics tools and third-party services

The website may use analytics tools, such as Google Analytics or similar services, to collect aggregate statistical information on the use of the website.

Where applicable, such tools are used with anonymisation of the IP address and in compliance with the preferences expressed by the user through the cookie banner.

The website may also include third-party content or services, such as maps, videos, forms or external links. Such services may collect data in accordance with their respective privacy notices.

11. Data security

We adopt appropriate technical and organisational measures to protect personal data against loss, unauthorised access, misuse, alteration or unauthorised disclosure.

The transmission of data through the website takes place, where possible, by means of a secure SSL/TLS connection.

12. Rights of the data subject

Under the GDPR, the data subject has the right to:

obtain information on the processing of their personal data;
access their data;
request the rectification of inaccurate or incomplete data;
request the erasure of data, in the cases provided for by law;
request the restriction of processing;
object to the processing;
withdraw the consent given, without affecting the lawfulness of processing prior to the withdrawal;
receive their data in a structured, commonly used and machine-readable format, where applicable;
lodge a complaint with the competent supervisory authority.

To exercise these rights you can contact us using the following details: