Privacy Policy e Protezione Dati - ILTHA

PRIVACY POLICY (GDPR COMPLIANT)

Data Controller

The Data Controller is: Giacomo Bagni - Personal Data Collected

The Association collects personal and business data necessary for the registration of members, participants in training programs, courses, events, and related institutional activities.

This data may also be stored and processed for inclusion in the official members’ register (albo/directory) of the Association.

The types of data collected may include:

Personal identification data (name, surname, date of birth where applicable)

Contact details (email address, phone number, postal address)

Professional and company information (organization name, role, sector of activity)

Registration and participation data related to events, courses, and programs

Any additional information voluntarily provided by the data subject

Purpose of Data Processing

Personal data is collected and processed for the following purposes:

Registration and management of members and participants

Organization and administration of training programs, certifications, and educational activities

Management of events, conferences, and institutional initiatives

Communication of updates, opportunities, and relevant information related to the Association

Maintenance and publication of the official members’ register (where applicable and authorized)

Development of networking, collaboration, and partnership opportunities within the medical tourism and wellness sector

Legal Basis for Processing

The processing of personal data is based on:

The consent of the data subject

The performance of a contract or pre-contractual measures (membership, registration, participation in activities)

Compliance with legal obligations, where applicable

Legitimate interests of the Association in relation to its institutional and organizational activities

Data Retention

Personal data will be retained only for as long as necessary to fulfill the purposes for which it was collected, and in compliance with applicable legal and regulatory requirements.

Members’ and participants’ data may be retained for the duration of their association or participation and for a reasonable period thereafter for administrative, legal, and operational purposes.

Data Sharing and Disclosure

Personal data may be shared only when necessary with:

Authorized internal staff and collaborators

Service providers involved in event organization, IT systems, and administrative support

Institutional partners or accredited organizations strictly for purposes related to Association activities

Data will not be sold or unlawfully disclosed to third parties.

Data Subject Rights (GDPR Articles 15–22)

Data subjects have the right to:

Access their personal data

Request rectification or update of inaccurate data

Request deletion (“right to be forgotten”), where applicable

Restrict or object to processing

Request data portability

Withdraw consent at any time, without affecting the lawfulness of processing based on consent before withdrawal

Requests may be submitted to the Data Controller at the contact details provided by the Association.

Data Security

The Association adopts appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.

Contact Information

For any questions regarding this Privacy Policy or the processing of personal data, please contact:

Giacomo Bagni (Data Controller)

Information icon

Abbiamo bisogno del vostro consenso per caricare le traduzioni

Per tradurre i contenuti del sito web utilizziamo un servizio di terze parti che potrebbe raccogliere dati sulla vostra attività. Si prega di rivedere i dettagli nell'informativa sulla privacy e accettare il servizio per vedere le traduzioni.