Privacy policy

Any personal information provided to or gathered by is controlled by Upform SrlS, Via Villani, 2, 26900 Lodi LO, – Italy.

IPAM is committed to accompany and guarantee the security and confidentiality of your personal data.

This Privacy Policy describes how we collect, use, share, store or otherwise process the information we hold about you. We are dedicated to ensuring the personal data we retrieve is used for it’s original purpose and is kept secure.

For any information or exercise of your rights on the processing of personal data managed by IPAM, you can contact our Data Protection Officer (DPO) at any time:



  • Why do we collect information: In order to personalise and to continually enhance your experience, on we gather information from users that visit this website. We use the information to deliver educational services, process payments, correspond with you about orders, provide other services and offers, update our records, maintain your accounts with us, display content such as feedback and other services that might be of interest to you. This information allows us to provide the services you have asked for or might need, as well as enables us to improve those services by understanding your interests and preferences.
  • What information we collect: we receive, store and treat information that you enter on our website or give us by any other means. You can choose not to provide certain information but then you may not be able to take advantage of a number of our features. We only retrieve data related to the core of our activity, i.e. Organization of medical congresses and medical education. See examples of the information you give us:
    • Personal information: contact details such as your name, postal address, e-mail address and phone number. We collect this data to inform and direct to you of our latest services and promotions. Example of data you may receive: IPAM congress programs, medical aesthetics market news.
    • Payment and billing information: we may also receive and process information about you when you subscribe to our services and add it to our database.
  • How we collect information
    • Indirect collection: Whenever you interact with us, we receive and store certain types of information. For example, like a lot of websites, we use “cookies” and we obtain certain types of information when your web browser accesses or advertisements and other content served by or on behalf of on other websites.
    • Direct collection: when you participate to one of our events, sign up to a mailing list, fill in forms on the website, purchase services, payment and billing transactions with us, contact us by telephone, email or otherwise, give us feedback or enter a poll.

Our websites are not directed to individuals under the age of 13, and we do not knowingly obtain Personal Data from such individuals.


purposes and needs for processing

We process your Personal Data for the purposes to the extent necessary to perform our contract with you or to take steps at your request prior to entering into a contract with you. The Personal Data collected as part of the services offered on are processed according to secure protocols and allow us to manage the information received. We ensure, before and throughout the processing, compliance with the obligations set out in the General Data Protection Regulation (GDPR).

Purposes to use Personal Data:

  • Administrative and legal means: to keep internal records of our operations and carry out our obligations arising from any contract settled.
  • Marketing purposes: we may use your Personal Data to provide you with marketing information, special offers, and promotions via various means including e-mail and postal mailings, in accordance with the applicable regulations.
  • Personalize our service: to improve our offering – monitoring and analysing the information we hold about you and our customers in order to make informed decisions about our content, products, services, websites and advertising.
  • Notify: notify you about changes or updates to our services or in your account.
  • Business development: to determine our client’s needs and objectives and improve/renovate our service options.

We may use information to communicate with you regarding any inquiry you initiate or request; your participation status to one of our events, or changes to the terms or features of any of our membership programs to which you belong.


We do not sell your information to third parties, but we may, with your permission, for marketing and or contractual purposes, transmit your information to third party partners.

  • Your information may be transferred outside your country or region of residence to countries for processing and storage in accordance with applicable regulations.
  • Your information may be transferred outside your country or region of residence to provide the requested services only.


  • Third party service providers: we employ other companies and individuals to perform certain functions on our behalf. Examples include hotel reservations, sending postal mail and e-mail, processing payments, website management. The third party service providers have access to personal information needed to perform their functions, but are not permitted to use it for other purposes. Moreover, they must process the personal information in accordance with this Privacy Policy and as permitted by applicable data protection laws.
  • Promotional offers made by partners: we may occasionally send you promotional offers on behalf of our partners. If you do not want to receive these offers, please adjust your preferences in your account.
  • Business transfers: we may merge or develop joint ventures with other businesses and legal entities. In such operations, customer information may be a part of one of the assets transferred but will always remain bound to the promises made in any pre-existing Privacy Policy, unless otherwise accepted by the data subject.
  • Cookies: by using cookies our systems are able to recognise your device and to provide features to you. For more information about cookies and how we use them, please read our Cookies & Internet Advertising Policy.


Whenever we transfer personal information as set out above to countries outside of the European Economic Area, we will ensure that the information is transferred in accordance with this Privacy Policy and within the scope of the terms expressed by the applicable EU provisions on data protection and data transfer.


We maintain at all times the appropriate physical, electronic and procedural safeguards that guarantee the collection, storage and disclosure of personally identifiable user information.
What are our measures?

  • Database storage: your information is stored in a dedicated professional and encrypted server. Access to the server is permitted only with private log in details.
  • Security procedures: we may, on occasions, request a proof of identity before we disclose any personal information to you.
  • Access to private password and to your computer is your responsibility, make sure to sign out when you finish using a shared computer and to report any unauthorised activity you detect back to us.
  • Physical security measures: we restrict the access to personal information only to IPAM employees. To prevent unauthorised access or misuse of this information, close tracking and secured access is put in place. Anyone with this access is subject to strict contractual confidentiality obligations.


We retain data for one of the following purposes:

  1. Consented use
  2. To fulfil a contract or service
  3. Achieving legitimate educational objectives
  4. Compliance of legal obligations
  5. Public interest

We will retain your information for as long as necessary for the uses set out in this Policy. The period of time is stablished by several applicable laws including the General Data Protection Regulation (GDPR) for EU members, and will be kept for legitimate business or legal purposes, or where it is in the public interest. If you ask us to delete your information before this time frame, we will be required to keep the necessary data for technical, legal, regulatory or contractual constraints.



Our business constantly evolves and so does our Privacy Policy. Our current policy applies to all information that we have about you and your account, unless otherwise stated. We stand behind our promises and will never change our policies and practices to make them less protective of user information collected in the past without the consent of the affected users. We will always display clearly when the Privacy Policy was last updated and when appropriate, notify you of any changes.

Examples of collected information

You give us

You provide information when you create an account, register for a congress, submit an abstract, submit a visa request, reserve a hotel or contact any of our departments. For example, you provide information when you: register for a congress; provide information in your account; communicate with us by phone, e-mail or post mail; use our services; and participate in community features. As a result of these actions, you might supply us with such information as: your name; address and phone number; content of e-mails to us; personal description and photograph; and financial information.

Automatic information

Some examples of the automatic information that we collect and analyse include: the Internet protocol (IP) address used to connect your computer to the Internet; login; e-mail address; password; cookie number; computer and connection information such as browser type and version; and time zone setting, browser plug-in types and versions; purchase history; operating system and platform; the full Uniform Resource Locators (URL) clickstream to, through and from our website (including date and time); media you viewed or searched for. We may also use browser data such as cookies, or similar data on certain parts of our website for fraud prevention and other purposes. During some visits we may use software tools such as JavaScript to measure and collect session information, including page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page. We may also collect technical information to help us identify your device for fraud prevention and diagnostic purposes.

Information from other sources

Some examples of information that we receive from other sources include: learned society membership; professional data; updated delivery and address information from our carriers or other third parties, which we use to correct our records and deliver our next communication more easily; account information, purchase, payment or redemption information and page-view information.