BIBLIOTECA DELLA

Biodiversità

Privacy Policy

1. Data Controller

The Data Controller is NBFC – National Biodiversity Future Center,
VAT number IT07058500823 – C.F. 07058500823,
registered office at Piazza Marina, 61 – 90133 Palermo, Italy.
Contact e-mail: hub@nbfc.it

2. Purpose of Data Processing

Personal data collected through the Biblioteca della Biodiversità website are processed for the following purposes:

  • to ensure the correct technical functioning and navigation of the website;

  • to handle requests for information sent via contact forms or e-mail;

  • to send communications about NBFC’s activities, research, and projects (only with the user’s consent);

  • to comply with legal or regulatory obligations.

3. Categories of Data Processed

The website may collect the following types of data:

  • Browsing data: IP address, browser type, operating system, date and time of access, and pages visited.
    These data are collected automatically and used anonymously for technical, security, and statistical purposes.

  • Data voluntarily provided by the user: such as name, surname, e-mail address, and any other personal data included in contact or subscription forms.

4. Processing Methods

Data are processed both electronically and manually, in compliance with the principles of lawfulness, fairness, transparency, and data minimization.
NBFC adopts appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of personal data.

5. Legal Basis for Processing

Processing of personal data is based on:

  • the performance of a contract or pre-contractual measures requested by the user (Art. 6(1)(b) GDPR);

  • compliance with legal obligations (Art. 6(1)(c) GDPR);

  • consent given by the user for specific purposes such as newsletter subscription (Art. 6(1)(a) GDPR);

  • NBFC’s legitimate interest in maintaining website security and improving services (Art. 6(1)(f) GDPR).

6. Data Retention

Personal data are stored only as long as necessary to achieve the purposes for which they were collected and in compliance with applicable legal obligations.

7. Data Sharing and Disclosure

Data may be accessed by NBFC personnel authorized to process them and by external service providers (e.g., hosting services, IT support), acting as Data Processors pursuant to Article 28 GDPR.
Data are not shared or transferred outside the European Union unless appropriate safeguards are ensured.

8. Rights of Data Subjects

Under Articles 15–22 of the GDPR, users may exercise the following rights:

  • access their personal data;

  • request rectification or erasure;

  • restrict or object to processing;

  • withdraw consent at any time;

  • lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) – www.garanteprivacy.it.

Requests should be sent to: hub@nbfc.it

9. Cookies

This website uses technical cookies and, with user consent, analytical and profiling cookies.
For more information, please consult the Cookie Policy.

10. Updates

This Privacy Policy may be updated periodically. Any modifications will be published on this page with the new effective date.

Last update: 10/11/2025

Torna in alto