Accesso

General information privacy institutional website

​Art. 13 EU Regulation n. 679/2016 (GDPR)

 

Dear User,

This notice is provided in compliance with Art. no. 13 of the EU Regulation no. 679/2016 (G.D.P.R. "General Data Protection Regulation") and with the other current regulations for those who interact ("Users" or "data subjects") with Padova's ESU – A.R.D.S.U. (Regional Agency for the Right to University Education) web services, which you can access via the following link: http://www.esupd.gov.it/it which corresponds to Padova's ESU – A.R.D.S.U. official website home page.

The present notice describes the processing terms of the personal data provided by those who interact with Padova's ESU institutional website.

The notice does not comprise any other external websites which the user can access via links, and therefore which are not directly managed by Padova's ESU.

In accordance with the indicated regulation, personal data processing shall be based on fairness, lawfulness, transparency and protection of users' privacy and rights principles.

Additional information may be provided in ESU's different access channels, divided according to the subjects discussed (Subject Areas).

 

1)      THE DATA CONTROLLER

The Data Controller is Padova's ESU based in via San Francesco no. 122, 35121 Padova,

Certified email account: esu@cert.esu.pd.it

 

2)      D.P.O. (Data Protection Officer)

Data subjects can contact the DPO for any issue concerning their personal data processing and the exercise of their GDPR rights via the following address:

dpo@esu.pd.it

 

3)    TYPES OF DATA PROCESSED

Browsing data

During their normal operation, the computer systems and software procedures used to operate this website acquire certain personal data, the transmission of which is implicit in the use of Internet communication protocols.

This information is not collected with the intent of associating it with identified data subjects, but, by its nature, it may lead to the identification of users through processing and association with data held by third parties.

This category of data includes the IP addresses or domain names of the computers used by users, and other parameters relating to the operating system and the user's computer environment.

These data are used only to obtain anonymous statistical information about the use of this website and to check that it functions correctly.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of e-mails to the contact addresses indicated on this website, as well as the use of restricted areas and the compilation of specifically designed forms, involve the subsequent acquisition and processing of the user's data needed to offer the service required and/or respond to the users' requests.

Specific notices may be provided or seen on the website pages designed for the access to services on the user's request.

Where accessing to particular services is subject to subscription, upon communication of the personal data, the following general provisions apply:

  • The personal data, collected and kept in databases, shall be processed by employees appointed by the Data Controller, and shall not be disseminated or communicated to third parties, except in cases provided for by the law and under the terms permitted by that law;
  • The data subject can exercise the rights set out in the present notice.

 

4)    OPTIONAL NATURE OF THE DATA PROVISION

The user is free to provide the personal data indicated on the request forms of the various services that the website offers.

The non-provision of mandatory data (marked with an asterisk on the fields) shall entail the impossibility to obtain the service.

 

5)    DATA PROCESSING PURPOSE, LEGAL BASIS AND TERMS

Personal data are processed only for the purposes included in the Administration's institutional tasks or for the requirements provided for by the law or regulation.

In the context of such purposes, the data processing can concern the data required to manage relationships with Padova's ESU, including the data provided when the user subscribes or uses the online services.

Personal data are processed with automated equipment for the time strictly necessary to fulfil the purposes for which they are collected.

Upon the data subject consent, the data provided may be processed to send information and/or advertising on products and initiatives of companies and/or associations which can be useful for the user or ESU for educational or research purposes.

The Data Controller adopts technical and organisational measures in order to guarantee a security level which suits the types of data processed.

 

6)    DATA RECIPIENTS

The data are processed for the exclusive use of Padova's ESU by internal subjects and may be communicated to external subjects operating as electronic equipment management or maintenance officers or other external subjects where the communication is provided for by the law or regulation or it is necessary for the institutional tasks and purposes priority development.

 

7)   DATA RETENTION PERIOD

The data collected and processed according to the present notice shall be retained by the Data Controller for the time necessary to provide its service and in any case for the time needed by the Administration to complete its institutional tasks or for the requirements provided for by the law or regulation.

 

8)   DATA SUBJECT RIGHTS

The data subject can, at any time, exercise the following rights:

  1. of access to personal data;
  2. to update, rectification and integration of incomplete data;
  3. to erasure of data, conversion of data in an anonymous form or block the data processed in violation of the law;
  4. to attest that potential changes or deletions are communicated, also in their content, to the data recipients, unless otherwise required by the law;
  5. to restriction of data processing;
  6. to object to data processing;
  7. to withdraw consent to personal data processing previously expressed, without prejudice to the fairness of the processing based on the consent given before withdrawal;
  8. to lodge a complaint to the Italian Data Protection Authority (Guarantor Privacy).

     

9)   GARANTE PRIVACY

Data subjects can lodge a complaint to the Italian Data Protection Authority, based in Piazza di Monte Citorio no. 121, 00186, Rome or lodge a complaint to the Competition Authority namely other European competent supervisory authorities, in accordance with Art. no. 77 of the Regulation 2016/679/EU.

For further information on privacy laws and rights, you can visit the Italian Data Protection Authority website via the following link: www.garanteprivacy.it

 

10) OTHER PRIVACY INFORMATION

Other information on Padova's ESU's privacy organisation is available on the page http://www.esupd.gov.it/it/Documents/ENESUPD_Informazioni_privacy.pdf  "Privacy Information".