Privacy e Cookie ENG

Privacy policy

Overviews
In accordance with Article 13 of Regulation (EU) 2016/679 (the General Data Protection Regulation or GDPR of the European Parliament and of the Council concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data and which repeals Directive 95/46/EC, as well as Legislative Decree no. Lgs 196/2003 and ss. mm. ii., in this notice the University of Milan – also referred to below as the “University” and represented by the Rector pro tem) provides users of the site https://dottorati.unimi.it/vas/en/ with information on how their personal data will be used.
This notice only applies to the internet site referred to above. It follows that the information in this document does not apply to websites other than those referred to above, including where accessed via links provided in the same. This is without prejudice to compliance by the University with the legislation in force on transparency and on the compulsory disclosure of data and documents.

1. Data Controller, Data Protection Officer (DPO) and Data Processor
   The Data Controller is the University of Milan, represented by the Rector pro tem, Via Festa del Perdono 7, 20122 Milan e-mail infoprivacy@unimi.it.
   In accordance with Article 37 et seq. of Regulation EU 2016/679 (the GDPR), the University has appointed the DPO: e-mail: dpo@pec.unimi.it.
   For information or further information on the use of personal data by the site, please contact ICT Direction, via Colombo 46, MIlano.
2. Purpose of the processing
   The personal data that may be processed are:
3. IP address;
4. browser type and parameters of the device used to connect to the site;
5. name of the internet service provider (ISP);
6. date and time of visit;
7. the visitor’s web page of origin (referral) and exit;
8. number of clicks, if any;
9. provided voluntarily by the user when using online services offered on the site;
10. data provided from time to time by users in relation to the specific service requested.
    The aforementioned information is processed automatically and collected in aggregate form in order to verify the proper functioning of the site and for security reasons. This information will be processed on the basis of the legitimate interest of the owner.
    For security purposes (anti-spam filters, firewalls, virus detection), automatically recorded data may possibly include personal data such as the IP address, which could be used, in accordance with the law in force, in order to block attempts to damage the site or cause damage to other users, or in any case harmful or criminal activities. In any case, such data will never be used for the purpose of profiling the site’s users, but only for the purpose of protecting the site and its users. The legal bases of the processing are therefore compliance with legal and contractual obligations, the fulfilment of specific requests by the data subject prior to the conclusion of the contract, and the processing of data connected with the management of any complaints or disputes and for the prevention and repression of fraud and any illegal activity.
11. Type of data processed
    Personal data are collected for the following purposes and using the following services. The computer systems and application procedures used to operate the site acquire, during their normal operation, certain data whose transmission is implicit in the use of Internet communication protocols. This information is used to obtain anonymous statistical information on the use of the site and to check its correct functioning and is not associated with identified users; however, due to its nature and through association with data held by third parties, it could allow the identification of the interested parties. This category includes, for example, the IP address of the system used to connect to the portal. This data is removed from the systems after the statistics have been processed and is stored off-line exclusively for the purposes of ascertaining liability in the event of computer offences and can only be consulted at the request of the judicial authorities. For the use of online services that require authentication, registration or the sending of e-mails, personal data freely provided by users are used in various ways. The optional, explicit and voluntary sending of e-mails to the addresses indicated on the website entails the subsequent acquisition of the sender’s address, which is necessary in order to reply to requests, as well as any other personal data included in the message by the user. The website uses the following services:
12. Data traffic analysis via Google Analytics (Privacy Policy)
    For further information, please refer to section 6 and its sub-sections.
13. Optional supply of data
    Some of the data requested (e.g. those for registration) are compulsory and failure to provide them will make it impossible to provide the requested service. Similarly, failure to provide certain data that may be required to subscribe to online services may result in the impossibility of using the chosen service. Registration and subscription data are provided voluntarily. The person who registers freely gives his or her consent to the processing of data, being aware that in the absence of such consent, registration and subscription to services cannot take place. Processing carried out prior to the revocation of consent by the person concerned shall nevertheless remain valid.
14. Manner of processing
    The personal data captured is processed in accordance with the principles of lawfulness, fairness and transparency established in Article 5 of the GDPR, including with the use of IT and telecommunications tools that can store and manage the said data and, therefore, can guarantee its security and ensure maximum confidentiality for the data subject.

    Elenco dei cookie

    Un cookie è una piccola porzione di dati (file di testo) che un sito Web, se visitato da un utente, chiede al browser di memorizzarlo sul dispositivo per ricordare le sue informazioni, quali la lingua preferita o i dati di accesso. Questi cookie sono da noi impostati e denominati cookie di prima parte. Utilizziamo inoltre cookie di terza parte – ovvero i cookie di un dominio diverso da quello del sito Web che si sta visitando – per i nostri tentativi pubblicitari e di marketing. In particolare, utilizziamo i cookie e altre tecnologie di tracciamento per i seguenti scopi:

    Cookie strettamente necessari

    Questi cookie sono necessari per il funzionamento del sito e non possono essere disattivati nei nostri sistemi. Di solito vengono impostati solo in risposta alle azioni effettuate dall’utente che costituiscono una richiesta di servizi, come l’impostazione delle preferenze di privacy, l’accesso o la compilazione di moduli. È possibile impostare il browser per bloccare o avere avvisi riguardo questi cookie, ma di conseguenza alcune parti del sito non funzioneranno. Questi cookie non archiviano informazioni personali.

15. How to opt out cookies
    Preferences in relation to cookies can be managed directly within the browser used in order to prevent third parties from capturing data indiscriminately (for example). By using browser preferences, cookies that have been installed can be deleted; this includes cookies in which consent (if granted) to the installation of cookies by this site is stored. Information on how to handle cookies with some of the more popular browsers can be found on the following web pages:
16. Google Chrome
17. Mozilla Firefox
18. Internet Explorer
19. Microsoft Edge
20. Apple Safari (desktop)
    Alternatively, it is possible to disable only the cookies of Google Analytics, using the opt-out add-onprovided by Google for major browsers. In this way, you will also be able to use the services.
21. Rights of the interested party
    In the appropriate cases, data subjects have the right to obtain, from the University of Milan, access to their personal data and to have that data rectified or erased or to restrict the processing data concerning them or object to such processing (Article 15 et seq. of the Regulation).
    Requests should be submitted to the Data Protection Officer (Data Protection Officer, Via Festa del Perdono 7, 20122 Milan – e-mail: dpo@pec.unimi.it.
22. Changes to this notice
    This information may be changed over time. You should therefore check that you are looking at the latest version by visiting this web page.