Information on the processing of personal data in the case of QRCode or Electronic Identity Card scanning
According to art. 13 of the Regulation (EU) 679/2016 (GDPR) We inform you that the data collected by the staff of the facility will be processed by PromoTurismoFVG, the data processor, to prove acceptance of compliance with the safety and prevention measures of the infection risk of COVID19 described in the appropriate signs, and in any case for the purposes of tracking and preventing the spread of the Covid-19 virus in the context of tourist and cultural activities and in the access procedures to beach resorts, accommodation facilities, hotels, beaches, museums, archaeological areas, nature areas etc., (below “Facilities”)
In the case of scanning of the QRCode, the software generates a Unique Code with date, time of registration and name of the Facility, which will be transmitted in encrypted form to PromoTurismoFVG and will be associated with your registration data to the Spiaggiafvg2020 portal. Please note that the Facility is technically not able to link the registration data, so it will only store the unique code (pseudonymization).
In any case, the identification data associated with the Unique Code is stored for 14 days (+ 30 days for technical reasons), i.e. for the time within which it may be necessary to retrace close contacts for the purpose of tracking and preventing the spread of the Covid-19 virus. Subsequently, this data will be permanently deleted from the database of the IT provider of the Service.
In the event of a proven need related to the health emergency, cases of infection or other epidemiological risks, PromoTurismoFVG may transmit your personal data associated with the Unique Code to the Health or Administrative Authority or The Facility, which will process it for the same purposes or the protection of health and safety in the workplace.
The collected data is processed through computer and hard-copy tools and a refusal to submit the data may result in the inability to securely access the Facilities.
The processing of the above information does not require the consent of the person concerned and is permissible as part of the acceptance of the general terms of contract that govern the access to the Facility under art. 6 par. 1 lett. (b) of Reg. 679/16, and in any case, it is permissible under art. 6 par. 1 lett. C) of Reg. 679/16 that is, this processing implements the obligations referred to at Dpcm June 11, 2020, and national legislation, Ordinance No. 16 Friuli Venezia Giulia Region and related implementation guidelines/protocols, the “Shared Protocol for The Regulation of Measures to Combat and Contain the Spread of the Covid-19 Virus in Workplaces between the Government and the Social Partners” and in general by art. 2087 c.c. and Decree-law 81/08 on the protection of health and safety in the workplace. The processing of particular data (e.g. health) takes place under art. 9 par. 2 lett. (b) of the GDPR, that is, to fulfil the obligations and exercise the specific rights of the data processor or person concerned in matters of employment law and social security and social protection.
We inform you that the data collected will be processed through the SafeFVG IT platform and www.spiaggiafvg2020.it made available by PromoTurismoFVG and qualified suppliers, duly appointed responsible for processing under art. 28 GDPR, exclusively for IT-based technical aspects.
You have the right to ask the data processor for access to personal data and the correction or cancellation of the personal data or the limitation of the processing concerning you or to object to the processing (Art. 15 and ss. of the GDPR). The request to the organization is submitted using the appropriate forms on the PromoTurismoFVG official website, where you can find the contact details of the Personal Data Protection Officer (DPO) and more information on the processing of your data. The data processor is PromoTurismoFVG – via Carso No. 3 – 33052 Cervignano del Friuli, Tel. 39 0431 387111 e-mail: firstname.lastname@example.org