Privacy Policy

Information pursuant to EU Regulation n. 679/2016


Who are the Data Controllers?

DAN Europe Foundation
Registered Office Sir Ugo Mifsud Street Ta’Xbiex, XBX 1431 - Malta
Continental Operations Office C/da Padune, 11 - 64026 Roseto - Italy
Tel +39-085-893-0333 • Fax +39-085-893-0050

IDA Insurance Limited
Dan Building, Level 1, Sir Ugo Mifsud Street,
Ta’ Xbiex XBX 1431 - Malta
Company Registration Number: C 36602
Value Added Tax Registration Number: MT1968-5634.

The joint controller agreement is available to the interested party by requesting it from one of the owners

 

What are the purposes for which we process this information?

1- Purposes strictly connected and necessary for registration to the site DAN Diving Insurance | DAN Europe , for use of relative services, for execution of the contract, and for legal compliance.

Without such data, it will not be possible to offer the requested services. Therefore, refusal to supply such data may determine the inability to take advantage of such services.

What is the legal basis for these treatments?

Contract which the party has signed.

How long do we process your information?

Terms for legal record keeping obligations (at present 10 years from the moment the contract ends).

 

What are the purposes for which we process this information?

2- Purposes connected to administration, accounting, and payment management.

What is the legal basis for these treatments?
Legal obligation.

How long do we process your information?
Terms for legal record keeping obligations (at present 10 years from the moment the contract ends).

 

What are the purposes for which we process this information?

3- Purposes connected to the handling of data concerning health aimed at diagnoses, cures, and therapies, as well as scientific knowledge, and communication of appropriate data to third parties for identification of state of health in case of an emergency.
 

What is the legal basis for these treatments?
Consent art.9 section 2, subsection a – EU Reg. 679/2016 - GDPR.

How long do we process your information?
Terms for legal record keeping obligations (at present 10 years from the moment the contract ends).
 

What are the purposes for which we process this information?

4- Purposes related to the management and instruction of the practice for the purpose of liquidation/reimbursement of medical expenses incurred

What is the legal basis for these treatments?
Contract which the party has signed.

How long do we process your information?
Terms for legal record keeping obligations (at present 10 years from the moment the contract ends).

 

What are the purposes for which we process this information?

5- Business related purposes, whether direct or indirect marketing, as well as market research.

What is the legal basis for these treatments?
Consent art.22, section 2, subsection c – EU Reg. 679/2016 - GDPR.

How long do we process your information?
10 years

 

What are the purposes for which we process this information?

6- Profiling purposes for consumption analysis and choices.

What is the legal basis for these treatments?
Consent art.22, section 2, subsection c – EU Reg. 679/2016 - GDPR.

How long do we process your information?
10 years

 

After the above retention periods have expired, and subject to the above, the information you have provided to us will be destroyed.

 

Why do you provide your data to the owner?
The data required in points 1-2-3-4 are necessary and must be provided to correctly execute the report. The refusal to provide such Data makes it impossible (total / partial) to establish the contractual relationship and / or fulfill the related obligations deriving from it. The data requested in points 5-6 below are optional and their failure to process will not affect the necessary processing described above. We remind you that you may, in any case, request cancellation in the manner indicated below at any time.

 

To whom do we communicate your data?
The data may be processed, on behalf of the Data Controllers, by external parties appointed as data processors (for example, the Diving Center, doctors). The data are not subject to disclosure.

The data may be disclosed to external parties operating as independent data controllers (e.g. authorities and supervisory and control bodies and, in general, public or private subjects entitled to request data).

 

Who are the subjects authorized to process data?
The data may be processed by employees of the company departments responsible for carrying out the activities described above and authorized to process, who have received adequate operating instructions and are committed to confidentiality.


Do we transfer your data outside the E.U?
The data could be subject to transfer, if the interested party is outside the waters of European competence. In any case, the transfer of data takes place in protected mode, taking every precaution (compatible with the required urgency)

 

Who is the Data Protection Officer (DPO)?
The Data Protection Officer ("DPO") appointed by the Data Controller pursuant to Article 37 et seq. of the GDPR is Warren Ciantar. You can contact her by e-mail at: wciantar@daneurope.org.

 

What are your rights and how can you exercise them?
By contacting the owner by sending an email to the address XXXX, the interested parties may ask the Company for access to personal data, or the rectification or cancellation of personal data, and also have the right to limit the processing of data in the cases referred to in Article 18 of the GDPR, and oppose the processing in case of legitimate interests of the data controller.

Data subjects have the right to lodge a complaint with the competent supervisory authority of the Member State in which they reside or work or of the Member State in which the alleged infringement occurred.

Data subjects have the right to withdraw consent at any time in relation to data processed for marketing purposes and to object to the processing of data for such purposes. Data subjects have the possibility to declare a preference to be contacted for the aforementioned purposes through conventional methods and to oppose receiving communications only through automated methods.

For more information about your rights, visit the page Data protection

This policy was revised in August 2023.