Login

Privacy Policy

Information on the processing of personal data

This page describes how personal data of users visiting the Sentiero Italia CAI (SICAI) website are processed.

This privacy notice is provided pursuant to Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and applicable data protection legislation.

This notice applies only to this website and not to other websites that may be accessed via external links.

Data Controller

Following consultation of this website, data relating to identified or identifiable persons may be processed.

The Data Controller is:

CAI – Club Alpino Italiano

Via E. Petrella 19

20124 Milan – Italy

Contact details:

Email: info@cai.it

Privacy email: privacy@cai.it

Certified email (PEC): cai@pec.cai.it

Data Protection Officer (DPO)

The Data Controller has appointed a Data Protection Officer (DPO) pursuant to Article 37 of the GDPR.

The DPO can be contacted at:

dpo@cai.it

Place of data processing

Processing related to the web services of this website is carried out by authorized personnel of the Data Controller or by external service providers responsible for maintenance, hosting or technical support.

Data are processed at the Data Controller’s premises and at the locations of the service providers involved in the operation of the website.

Purpose and legal basis of processing

Personal data may be processed for the following purposes:

  • enabling users to access and browse the website;

  • responding to information requests or reports sent by users;

  • ensuring the proper technical functioning and security of the website;

  • obtaining anonymous or aggregated statistical information about website usage.

The legal basis for processing is:

  • the performance of pre-contractual measures or responding to user requests;

  • compliance with legal obligations;

  • the legitimate interest of the Data Controller in ensuring the security and proper functioning of the website;

  • the consent of the user where required by applicable legislation regarding tracking technologies.

Types of data processed

Navigation data

The computer systems and software procedures used to operate this website automatically acquire certain personal data during their normal operation.

This information includes:

  • IP addresses;

  • domain names of the devices used by users;

  • URI addresses of requested resources;

  • date and time of requests;

  • method used to submit requests to the server;

  • size of files obtained in response;

  • server response status codes;

  • other parameters relating to the user’s operating system and IT environment.

These data are used solely to obtain anonymous statistical information on website usage and to ensure its proper functioning.

Navigation data are stored for no longer than seven days, unless required for the investigation of cybercrime.

Data voluntarily provided by the user

The voluntary sending of emails to addresses listed on this website or the completion of contact forms may result in the acquisition of personal data such as:

  • name and surname

  • email address

  • content of the message

These data are used exclusively to respond to user requests.

Third-party services

This website may integrate services provided by third parties. The use of such services may involve the processing of personal data by the respective providers.

WordPress

This website is developed using the WordPress content management system (self-hosted).

WordPress may process technical data necessary for the operation of the website.

Privacy policy:

https://wordpress.org/about/privacy/

Typeform

The website may use Typeform forms to collect contact requests or reports.

Personal data entered in the form may include name, email address and the content of the message.

Privacy policy:

https://admin.typeform.com/to/dwk6gt

YouTube

Some pages of the website may embed videos via YouTube using iframe technology.

Viewing these videos may allow YouTube or Google to collect usage data, device information and tracking technologies.

Google Privacy Policy:

https://policies.google.com/privacy

YouTube Privacy Policy:

https://www.youtube.com/t/privacy

OpenStreetMap

Some pages may display maps provided by OpenStreetMap.

Using this service may involve the processing of technical data such as the user’s IP address.

Privacy Policy:

https://osmfoundation.org/wiki/Privacy_Policy

Data recipients

Personal data may be processed by:

  • authorized personnel of the Data Controller;

  • technical service providers involved in website management;

  • third-party providers whose services are integrated into the website;

  • public authorities where required by law.

Personal data are not publicly disclosed.

Data transfer outside the EU

The use of third-party services may involve the transfer of personal data to countries outside the European Economic Area.

Such transfers take place in accordance with the safeguards provided by the GDPR.

Data subject rights

Under Articles 15–22 of the GDPR, data subjects have the right to:

  • access their personal data;

  • request rectification of inaccurate data;

  • request deletion of data;

  • request restriction of processing;

  • object to processing;

  • receive their data in a portable format where applicable;

  • withdraw consent at any time;

  • lodge a complaint with a supervisory authority.

Requests may be sent to:

privacy@cai.it

cai@pec.cai.it

or to the DPO:

dpo@cai.it