Internet privacy management
The Foundation respects the privacy of anyone visiting its websites; any collected information will be used to provide the services requested by the user which interacts with the internet services of the Foundation, and allow the Foundation to improve the quality of the services themselves, or in order to register the user to benefit from certain services or to participate to particular initiatives. The term “personal data” means any information relating to an identified or identifiable natural person (the “interested subject”); an identifiable person is a person who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more specific elements of his physical, physiological, mental, economic, cultural or social identity. The Foundation applies the Code regarding the protection of personal data (Legislative Decree 196/2003): contents and services are provided only to those who explicitly request it and authorize the Foundation to process their personal data.
The following briefing note is provided, pursuant to art. 13 of Legislative Decree 196/2003, both to those who interact with the Internet services of the Foundation, and to users of this website who consult it and use its services. This information is also provided in the name and on behalf of the other independent data controllers who, as part of the treatment described below, are involved in the processing itself.
Type of processed data
Questi dati vengono utilizzati al solo fine di ricavare informazioni statistiche anonime sull’uso del sito e per controllarne il corretto funzionamento. I dati potrebbero essere utilizzati per l’accertamento di responsabilità in caso di presunti reati informatici ai danni del sito.
Browsing data (“log file”). The computer systems and software procedures designated to the functioning of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This kind of information is not collected to be associated with identified interested parts. However they could, by their very nature, allow users to be identified through processing and association with data held by third parties. This category of data includes the IP addresses and the domain names of the computers used by the users connecting to the website, the addresses in the Uri (Uniform resource identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the file size obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters concerning the operating system and the IT environment used by the user. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the website and to check its correct functioning. The data could be used to ascertain responsibility in case of alleged computer crimes against the website.
Cookies. “Cookies” are short strings of text that websites can send to the user’s browser. We distinguish between persistent cookies (they remain stored in the user’s computer after the closure of the program or “browser” used to access the website), statistical cookies or “analytics” (used to statistically analyze website accesses / visits), cookies session (they are not stored permanently on the user’s computer and vanish with the closing of the “browser”) and technical cookies (for authentication, for multimedia content such as flash player for language customization or similar, etc.). This website does not use persistent cookies but only analytics, session and technical cookies, which pursue only statistical purposes and collect information in aggregate form. The use of session cookies is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow the safe and efficient exploration of the website: session cookies used on this website avoid the use of other computer techniques that are potentially damaging to the confidentiality of users’ browsing and do not allow the acquisition of personal identification data. Cookies cannot retrieve other data from the user’s hard drive or get his e-mail address: if the user simply browses the website, a cookie can be used to identify the user’s browser and find out if he has visited the website previously. The user can change the settings of his browser to accept all cookies, receive a warning when a cookie is sent or reject all cookies.
Data voluntarily provided by the user. The optional, voluntary and explicit transmission of e-mails to the addresses indicated in the different access channels of this website or the compilation of specifically prepared forms entails the subsequent acquisition of the address as well as any other personal data of the sender / user, necessary to respond to the requests and / or provide the demanded service.
Nature of the data provision
Purposes of data processing
The Foundation carries out processing of personal data within the limits of what is strictly necessary for the performance of its statutory purposes, preferring methods that allow identification of the interested parts only in case of need. Specific purposes, related to individual treatments, can be reported in detail in the various access channels: the user can find additional information on the processing of personal data within those channels. In any case, the processing of data is based on principles of correctness, lawfulness, transparency and protection of the privacy of users.
Methods of data processing
This site does not collect any “sensitive data” of the user as defined by the law (state of health, religion, political affiliation, etc.). Personal data are processed using manual and automated tools, for the time strictly necessary to achieve the purposes for which they are collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access; however, no data transmission over the Internet can be guaranteed as 100% secure and therefore the Foundation, while engaging in the protection of users’ personal data, cannot guarantee or guarantee the security of every information transmitted by and to users. Within the Foundation, access to the user’s personal data will be restricted to personnel who need information for the normal performance of their work. The user’s data may be processed by the technical staff responsible for the maintenance of the information systems of the Foundation, by persons in charge of orders, marketing, customer service and may be communicated to the companies of the group to which the Foundation belongs, even if operating outside the European Union, to professionals and external partners with whom the Foundation collaborates or to companies in charge of sending promotional material, for information on initiatives and commercial offers, for the detection of the quality of services provided and for statistical processing.
Your data may eventually be transferred to countries other than that in which they were collected, even outside the European Union. In the event that the user voluntarily chooses to register to the website, by communicating their e-mail addresses or other personal or contact data, he may request information, view information material and / or software demonstrations of the products and services of the Foundation or of the group to witch the Foundation is part. By registering, the user gives his consent so that the Foundation can (a) communicate the personal data of the user to persons, companies or entities for the detection of the quality of services and third-part companies for the purposes of commercial information, market research and company of the group or connected or cooperating actively with the Foundation, with the possibility that they process data for direct offers of products or services, (b) process data for commercial information and market research, for commercial and promotional purposes, for offers of products or services, all by the same or by group companies or third parties (c) manage personal data through “CRM”, i.e. programs for managing customer contact information. Under no circumstances will personal data be sold or rented to third parties.
Communication and data dissemination
No personal data deriving from this website is disseminated. Apart from the data processing described above and in exceptional cases, personal data may be disclosed to third parties if this is assessed in good faith as strictly necessary to (a) fulfill legal or regulatory obligations, (b) protect and defend the rights or property, (c) apply the terms and conditions for the use of this site or (d) act to protect the rights of users or others.
Owner of data processing
The owner of the data relating to identified or identifiable people who looked at this site is the Foundation itself, in the person of its legal representative pro-tempore, domiciled at the registered office of the company.
The data controller – which are related to identified or identifiable persons who have consulted this website – is the Foundation itself, in the person of its pro-tempore legal representative, domiciled at the registered office of the company.
Rights of the concerned
Every interested party has the right – at any time – to obtain confirmation of the existence or otherwise of the same data and to know its content and origin, verify its accuracy or request its integration or updating, or the correction to pursuant to art. 7 of Legislative Decree no. 196/2003. Pursuant to the same article, the interested parties also have the right to request cancellation, transformation into anonymous form or blocking of data concerning them, treated in violation of the law, and to oppose in any case – for legitimate reasons – their processing.