Terms & Conditions
INFORMATION ON THE PROCESSING OF PERSONAL DATA FOR THIS WEB SERVICE PURSUANT TO ART. 13 EU REG. 679/2016
Dear user, the current regulations require us to provide information regarding the processing of personal data for this web service (hereinafter also referred to as the “Service”) concerning the processing of personal data of users/visitors who consult and use it.
This information is provided pursuant to EU Regulation 2016/679 (hereinafter also "Regulation" or “GDPR”) and its subsequent amendments, to all users interacting with the Service. The validity of the information contained on this page is limited to the Service itself and does not extend to other external websites that may be accessed via hyperlinks.
For the Regulations on the Processing of Personal Data:
a) We, the entity whose data is listed on the institutional website linked to this service, are the "Data Controller";
b) You are the "Data Subject," and you have the rights and obligations described below.
1. PROCESSING
1.1. The Data Controller, whose data are indicated on the institution's official website, will process the data according to the principles of lawfulness, fairness, transparency, limitation of purposes and retention, data minimization, accuracy, integrity, and confidentiality.
2. CATEGORIES OF DATA PROCESSED
2.1. Navigation Data – The computer systems and software programs used for the operation of the site collect certain personal data whose transmission is implicit in the use of Internet communication protocols (e.g., IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, time of the request, method used in making the request to the server, file size obtained in response, numerical code regarding the status of the response provided by the server – successful, error, etc., and other parameters related to the user's operating system and environment). Although this data is not collected to be associated with identified subjects, it could, through processing and association with data held by third parties, allow users to be identified. This data is used only to obtain anonymous statistical information on the use of the Service and to monitor its proper functioning. It is emphasized that this data could be used to establish responsibility in case of cybercrimes committed against the Service or other websites connected or linked to it. However, except in this case, web contact data do not persist for more than 7 days.
2.2. Cookies – A cookie is a small text file in which brief information related to a user's activity on a website is collected and stored on the device that accessed the web service. In accordance with provisions n. 229 of May 8, 2014 and 231 of June 10, 2021 by the Data Protection Authority, we inform you that this web service only uses technical cookies (which DO NOT require consent): these are necessary for the proper functioning of the web service and allow access to its functions (so-called browsing cookies) and are mostly session cookies whose use is limited to the transmission of session identification data in the form of numbers automatically generated by the server necessary for ensuring secure and efficient site navigation and managing authentication for online services and reserved areas. They are also used for setting preferences, such as language, and for analytical/monitoring functions to collect information, in aggregate form, about the number of users and how they visit the site, in order to conduct anonymous statistical analysis for site optimization, without using analytical cookies. Session cookies are not stored permanently on the user's computer and are deleted once the browser is closed. The session cookies used on this site avoid the use of other potentially harmful computer techniques that might affect the confidentiality of users' browsing, and do not allow the acquisition of users' personal identifying data. Other technical cookies have a longer duration as specified in the list below. No use is made of cookies to transmit personal data. No profiling cookies are used.
The technical cookies used are:
ASP.NET_SessionId: User session data, used only by the server to ensure continuity. Does not contain personal identifying information - session expiry.
SPID_SessionId: SPID session data, used only by the server to ensure continuity. Does not contain personal identifying information - expiry 1 hour.
2.3. Data Provided Voluntarily by the User – Accessing the website does not require the provision of personal data from the user. However, any contact with the Data Controller, for example, by requesting information via a form, or the spontaneous sending of messages, email, or traditional mail to the contact details of the Data Controller will result in the subsequent acquisition of such personal data, necessary to respond to requests, as well as any other personal data voluntarily entered by the user in their communications (communication of personal data relating to a minor must be made by both parents or by someone who holds parental responsibility).
3. PURPOSES AND LEGAL BASES OF PROCESSING
3.1. The Data Controller processes the data for the following purposes:
a) To allow you to navigate and use the Service;
b) To perform the Service or requested provision;
c) To fulfill administrative, financial, accounting, and/or fiscal obligations;
d) To comply with any legal obligations and/or orders from Public Authorities;
e) Potentially, to assert or defend a right in court;
f) Your data may also be processed to make communications of public interest or utility.
3.2. The legal bases for processing are as follows:
a) The necessity of allowing you to navigate and access the requested Web Service, as well as to provide the service itself;
b) To perform the activities mentioned in points 3.1 a-f;
c) Processing is necessary for the performance of a task of public interest or in connection with the exercise of public powers vested in the Data Controller;
d) Any fiscal data: necessity to fulfill obligations as per points 3.1 c-e.
4. COMMUNICATION TO RECIPIENTS AND DISCLOSURE
4.1. Data may be communicated to third parties (including Public Authorities or Judicial Authorities) only to the extent strictly necessary in relation to the above purposes or for the legal or mandatory fulfillment of obligations, or by order of the Authority.
4.2. The categories of recipients are:
a) Entities necessary for executing activities related to and resulting from the provision of the Service, bound by a data processing agreement (external data processors);
b) Appointed and authorized individuals by the Data Controller who have committed to confidentiality or have a legal obligation of confidentiality (e.g., employees and collaborators of the Data Controller);
4.3. The Data Controller may also be required to communicate data to comply with legal obligations or orders from public authorities, including the judicial authority.
4.4. Data will not be disseminated.
5. DATA RETENTION PERIOD
5.1. The Data Controller retains your data for the time strictly necessary to achieve the purposes outlined in section 3.5.2. This data will be deleted when it is no longer necessary for the aforementioned purposes, except for any further legal retention obligations.
6. NATURE OF DATA COMMUNICATION
6.1. The provision of Personal Data in section 2.1 is necessary for browsing: failure to provide it would make it impossible.
6.2. The provision of Personal Data in section 2.3 is optional.
7. CONSEQUENCES OF REFUSING TO COMMUNICATE DATA
7.1. As specified in point 6.1, it is technically impossible to refuse the communication of Navigation Data (to the extent that they are Personal Data).
7.2. Refusing to communicate the Personal Data as per section 2.3 will prevent us from responding to requests and/or providing the service.
8. RIGHTS OF THE DATA SUBJECT
8.1. You, as the Data Subject, have the right to:
a) Access your data held by the Data Controller and obtain a copy;
b) Request correction and/or deletion, where and to the extent that the conditions are met;
c) Request limitation of processing, where and to the extent that the conditions are met;
d) Object, for reasons related to your particular situation, to the processing of your personal data;
e) File a complaint with the Data Protection Authority (www.garanteprivacy.it).
9. DATA PROTECTION OFFICER
9.1. The Data Controller has a Data Protection Officer (DPO) whom you can contact via the contact details provided on the institutional website of the entity linked to this Service.
10. UPDATES OF THE INFORMATION
10.1. This information refers to the processing of personal data during navigation and use of the web service. The introduction of new regulations or the constant review and updating of the Service may require modifications to these practices over time. Therefore, we encourage you to regularly check this page. For this purpose, this document indicates the date of the last update.
Last update: January 20, 2025
Dear user, the current regulations require us to provide information regarding the processing of personal data for this web service (hereinafter also referred to as the “Service”) concerning the processing of personal data of users/visitors who consult and use it.
This information is provided pursuant to EU Regulation 2016/679 (hereinafter also "Regulation" or “GDPR”) and its subsequent amendments, to all users interacting with the Service. The validity of the information contained on this page is limited to the Service itself and does not extend to other external websites that may be accessed via hyperlinks.
For the Regulations on the Processing of Personal Data:
a) We, the entity whose data is listed on the institutional website linked to this service, are the "Data Controller";
b) You are the "Data Subject," and you have the rights and obligations described below.
1. PROCESSING
1.1. The Data Controller, whose data are indicated on the institution's official website, will process the data according to the principles of lawfulness, fairness, transparency, limitation of purposes and retention, data minimization, accuracy, integrity, and confidentiality.
2. CATEGORIES OF DATA PROCESSED
2.1. Navigation Data – The computer systems and software programs used for the operation of the site collect certain personal data whose transmission is implicit in the use of Internet communication protocols (e.g., IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, time of the request, method used in making the request to the server, file size obtained in response, numerical code regarding the status of the response provided by the server – successful, error, etc., and other parameters related to the user's operating system and environment). Although this data is not collected to be associated with identified subjects, it could, through processing and association with data held by third parties, allow users to be identified. This data is used only to obtain anonymous statistical information on the use of the Service and to monitor its proper functioning. It is emphasized that this data could be used to establish responsibility in case of cybercrimes committed against the Service or other websites connected or linked to it. However, except in this case, web contact data do not persist for more than 7 days.
2.2. Cookies – A cookie is a small text file in which brief information related to a user's activity on a website is collected and stored on the device that accessed the web service. In accordance with provisions n. 229 of May 8, 2014 and 231 of June 10, 2021 by the Data Protection Authority, we inform you that this web service only uses technical cookies (which DO NOT require consent): these are necessary for the proper functioning of the web service and allow access to its functions (so-called browsing cookies) and are mostly session cookies whose use is limited to the transmission of session identification data in the form of numbers automatically generated by the server necessary for ensuring secure and efficient site navigation and managing authentication for online services and reserved areas. They are also used for setting preferences, such as language, and for analytical/monitoring functions to collect information, in aggregate form, about the number of users and how they visit the site, in order to conduct anonymous statistical analysis for site optimization, without using analytical cookies. Session cookies are not stored permanently on the user's computer and are deleted once the browser is closed. The session cookies used on this site avoid the use of other potentially harmful computer techniques that might affect the confidentiality of users' browsing, and do not allow the acquisition of users' personal identifying data. Other technical cookies have a longer duration as specified in the list below. No use is made of cookies to transmit personal data. No profiling cookies are used.
The technical cookies used are:
ASP.NET_SessionId: User session data, used only by the server to ensure continuity. Does not contain personal identifying information - session expiry.
SPID_SessionId: SPID session data, used only by the server to ensure continuity. Does not contain personal identifying information - expiry 1 hour.
2.3. Data Provided Voluntarily by the User – Accessing the website does not require the provision of personal data from the user. However, any contact with the Data Controller, for example, by requesting information via a form, or the spontaneous sending of messages, email, or traditional mail to the contact details of the Data Controller will result in the subsequent acquisition of such personal data, necessary to respond to requests, as well as any other personal data voluntarily entered by the user in their communications (communication of personal data relating to a minor must be made by both parents or by someone who holds parental responsibility).
3. PURPOSES AND LEGAL BASES OF PROCESSING
3.1. The Data Controller processes the data for the following purposes:
a) To allow you to navigate and use the Service;
b) To perform the Service or requested provision;
c) To fulfill administrative, financial, accounting, and/or fiscal obligations;
d) To comply with any legal obligations and/or orders from Public Authorities;
e) Potentially, to assert or defend a right in court;
f) Your data may also be processed to make communications of public interest or utility.
3.2. The legal bases for processing are as follows:
a) The necessity of allowing you to navigate and access the requested Web Service, as well as to provide the service itself;
b) To perform the activities mentioned in points 3.1 a-f;
c) Processing is necessary for the performance of a task of public interest or in connection with the exercise of public powers vested in the Data Controller;
d) Any fiscal data: necessity to fulfill obligations as per points 3.1 c-e.
4. COMMUNICATION TO RECIPIENTS AND DISCLOSURE
4.1. Data may be communicated to third parties (including Public Authorities or Judicial Authorities) only to the extent strictly necessary in relation to the above purposes or for the legal or mandatory fulfillment of obligations, or by order of the Authority.
4.2. The categories of recipients are:
a) Entities necessary for executing activities related to and resulting from the provision of the Service, bound by a data processing agreement (external data processors);
b) Appointed and authorized individuals by the Data Controller who have committed to confidentiality or have a legal obligation of confidentiality (e.g., employees and collaborators of the Data Controller);
4.3. The Data Controller may also be required to communicate data to comply with legal obligations or orders from public authorities, including the judicial authority.
4.4. Data will not be disseminated.
5. DATA RETENTION PERIOD
5.1. The Data Controller retains your data for the time strictly necessary to achieve the purposes outlined in section 3.5.2. This data will be deleted when it is no longer necessary for the aforementioned purposes, except for any further legal retention obligations.
6. NATURE OF DATA COMMUNICATION
6.1. The provision of Personal Data in section 2.1 is necessary for browsing: failure to provide it would make it impossible.
6.2. The provision of Personal Data in section 2.3 is optional.
7. CONSEQUENCES OF REFUSING TO COMMUNICATE DATA
7.1. As specified in point 6.1, it is technically impossible to refuse the communication of Navigation Data (to the extent that they are Personal Data).
7.2. Refusing to communicate the Personal Data as per section 2.3 will prevent us from responding to requests and/or providing the service.
8. RIGHTS OF THE DATA SUBJECT
8.1. You, as the Data Subject, have the right to:
a) Access your data held by the Data Controller and obtain a copy;
b) Request correction and/or deletion, where and to the extent that the conditions are met;
c) Request limitation of processing, where and to the extent that the conditions are met;
d) Object, for reasons related to your particular situation, to the processing of your personal data;
e) File a complaint with the Data Protection Authority (www.garanteprivacy.it).
9. DATA PROTECTION OFFICER
9.1. The Data Controller has a Data Protection Officer (DPO) whom you can contact via the contact details provided on the institutional website of the entity linked to this Service.
10. UPDATES OF THE INFORMATION
10.1. This information refers to the processing of personal data during navigation and use of the web service. The introduction of new regulations or the constant review and updating of the Service may require modifications to these practices over time. Therefore, we encourage you to regularly check this page. For this purpose, this document indicates the date of the last update.
Last update: January 20, 2025