Regulation EU 2016/679, the “General Data Protection Regulation” (GDPR), provides that everyone has the right to the protection of personal data concerning him or her.
Pursuant to article 13 of the GDPR, the University of Trento provides users (hereinafter, the “data subjects”) who visit the website neqst-he.eu with the information below.
The data controller is the University of Trento, via Calepina 14, 38122 Trento, Italy,
Contacts of the data protection officer
The Data Protection Officer can be contacted at the following email address: firstname.lastname@example.org
Purpose of the processing and legal basis
The data are processed by the University of Trento in the performance of its institutional tasks for teaching, research and administrative activities pursuant to article 6, paragraph 1, point e) of the GDPR and, in particular, to provide and improve the web services offered.
Categories of processed data
The personal data collected through the website are:
When navigating, the site collects some personal data whose transmission is implicit in the use of Internet communication protocols.
This data category includes: the IP addresses or domain names of the computers used by the users who connect to the site, the addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
These data are used in order to obtain anonymous statistical information on the use of the site and to check its correct functioning; they may also be used to investigate any computer crimes committed to the detriment of the site or other other University computer systems.
The data are not collected to identify the data subjects, but considering their nature, they could, through processing and association with data held by third parties, allow the data subjects to be identified.
Data provided voluntarily by the user
As part of the user’s request for information addressed to the web services connected to the site, the Data Controller acquires the personal data voluntarily provided by the user in the request, including the e-mail address, which will be processed for the sole purpose of replying to the request itself.
Cookies are small text files that the websites visited by the data subject can send to the browsing terminal, where they are memorized in order to be sent back to the same websites when the user visits the website again.
While browsing the Internet, data subjects may receive two different types of cookies:
those from the same site visited by the data subject (so-called “First-party cookies”), or those from different sites or web servers (so-called “Third-party cookies”).
Cookies set by this website
This website does not use any first-party cookies.
How to disable cookie
To disable all cookies
The following links are provided to explain how to disable cookies for the most popular browsers (for other browsers you may use, we suggest looking for this option in the software help):
- Instructions for Google Chrome
- Instructions for Google Chrome (mobile)
- Instructions for Mozilla Firefox
- Instructions for Internet Explorer
- Instructions for Microsoft Edge
- Instructions for Opera
- Instructions for Apple Safari
- Instructions for Apple Safari (mobile)
How to disable third-party cookies
The disabling of third-party cookies is also possible through the methods described in the respective disclosures and/or made available directly by the third-party company that is data controller of the processing.
How to delete cookies already stored on the computer
Even if permission to use third-party cookies is revoked, before that revocation cookies may have been stored on the user’s terminal.
For technical reasons it is not possible to delete those cookies, however, the user’s browser allows their deletion among the privacy settings.
In fact, the browser options contain the option “Delete browsing data” that can be used to delete cookies, site data and plug-ins.
Nature of the provision of data
The submission of personal data is essential for the use of all the features of the web services offered by the site.
The failure to submit personal data may result in the impossibility of using all the features of the site and/or the impossibility of processing a request submitted by the data subject.
Data processing methods
The processing of personal data shall be carried out by automated means by authorised staff, according to their tasks. Personal data shall be processed lawfully, fairly and transparently, confidentially, in a manner that is adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (GDPR, article 5(1)). No profiling is carried out, and decisions are not taken by automated means
Categories of recipients of personal data
Personal data will be processed by personnel authorized to pursue the above-mentioned purpose; it may also be disclosed to third parties in the event of a legal obligation and/or a court order.
Data storage period
The data will be stored as long as necessary to fulfill the purposes for which they were collected, and in any case for a period not exceeding 14 days.
Rights of the data subjects
At any time the data subject can exercise the rights referred to in article 15 et seq. of the GDPR towards the Data Controller, at the contact details indicated above, and in particular:
- the access to his/her own personal data and to other information as mentioned in art. 15 of GDPR;
- the request of rectification of his/her own personal data when inaccurate and/or their integration when incomplete;
- the erasure of his/her own personal data, except when the University is obliged to data storage to comply with article 17 (3) point b of the GDPR;
- the restriction of processing as per article 18 of the GDPR;
- the object to processing of personal data concerning him or her when allowed as per art. 21 GDPR.
To exercise their rights, data subjects can write an email to the Data Controller (see contact details above). It is also possible to use the appropriate form named “Modulo esercizio diritti interessato” found on the Privacy e protezione dei dati personali page of the University portal and send it to the above contact details of the Data Controller.
In case there is an infringement of the GDPR on the processing of personal data, data subjects have the right to lodge a complaint with a data protection authority by virtue of article 77 of the GDPR or to engage in legal proceedings.