This page describes the procedures for managing the www.exscalate.eu site in relation to the processing of personal data of the users who consult it, or who register with it (“the Portal” or “site”).
This information is also provided pursuant to Art. 13 of Legislative Decree of 30 June 2003 No. 196 “Personal data protection code” for those who interact with the web services provided through the aforementioned Portal.
“Processing” of personal data must be understood as the various processing operations of personal data, such as the collection, processing, comparison, cancellation, modification, communication or disclosure of the aforementioned data.
The information is also based on Recommendation No. 2/2001 that the European authorities for the protection of personal data, gathered in the Group established by Art. 29 of Directive No. 95/46/EC, adopted on 17 May 2001 to identify some minimum requirements for collecting personal data online and, in particular, the manner, timing and nature of the information that data controllers must provide to users when they link to web pages, regardless of the purposes of the connection.
The information is provided only for the EXSCALATE site and not for other websites that may be consulted by the user through links.
No data deriving from the web service may be communicated or disseminated, except in cases expressly provided for by law.
The personal data provided by the users are only used to perform the service or provision requested and are only disclosed to third parties if necessary for said purpose.
The data controller is EXSCALATE. EXSCALATE has appointed several data processors for different types of processing. To find out the names of the various data processors you can write an e-mail to the following address: email@example.com
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This is information that is not collected to be associated with identified interested parties, but which, by their very nature, could, through processing and associations with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of the computers utilized by the users who connect to the site, the URI (Uniform Resource Identifier) addresses, the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the response from the server (successful, error, etc.), and other parameters relating to the operating system and the user’s IT environment.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check the proper functioning and is maintained for the minimum period required by current legislation.
This data could be used to establish liability in hypothetical computer crimes against the site.
Data provided voluntarily by the user
The optional, explicit and voluntary act of sending electronic mail to the addresses indicated in this site entails the subsequent acquisition of the sender’s address, necessary in order to reply to the requests, as well as of any other personal data entered. The processing of sensitive and legal data is excluded and if provided by the User will be cancelled. Specific summary information dedicated to particular services on request will be provided or displayed on the website pages.
Cookies are small text files stored on the user’s computer from the sites that the user visits. They are used in order to make the websites work and operate more efficiently, and to provide information to the owners of the site.
The site uses technical cookies, Google Analytics cookies and third-party cookies.
These will be installed directly by the Data Controller. They can be divided into browser or session cookies and ensure the normal browsing and use of the website (allowing, for example, to define a browsing session, choose the site language or the font size).
Usage of the IP address of the visitor by Google Analytics Cookies
Each computer and device connected to the Internet is assigned a unique number as an Internet protocol (IP) address. Since these numbers are usually assigned to countries in blocks, an IP address can often be used to identify the country, the province and the city from which a computer connects to the Internet. Google Analytics collects the IP address of the website visitors to provide an indication of their geographic location. This method is known as IP geolocation. Google Analytics does not report information related to the actual IP addresses of the visitors. Due to the use of a method known as IP masking, Google Analytics communicates information so that only a part of the IP address is used for geolocation, instead of the whole address. Google may disclose information to third parties where required by law or where such third parties process the information on Google’s behalf.
Browser add-on for deactivating Google Analytics Cookies
Third party cookies
This is about cookies installed through the site by third parties. With regard to these cookies, the owner and editor of the site is just a technical intermediary and cannot define the procedures and purposes of the operation of said cookies. For information on third-party cookies in use, the reference is to what is shown on the sites of third-party suppliers.
Summary table of cookies required for technical purposes
|COOKIE NAME||PRESET EXPIRATION||COOKIE DESCRIPTION|
|HP3_USER||60 minutes||The purpose of this cookie is to preserve certain data regarding the users connected and their navigation session|
|ASP.NET_SessionID||At the end of the session||Cookie session used to maintain anonymous navigation|
|cookie-compliance-user-response||At the end of the session||Memorize your choice about the use of optional cookies. Memorize your choice whether to accept or decline the use of optional cookies. No personal data is collected through this Cookie.|
Accepting or not accepting cookies can be decided by modifying the browser security settings.
Personal data are processed through automated systems for the time that is strictly necessary to attain the purposes for which they have been collected and in order to fulfil any legal obligations. The data collected through the Portal can be processed by the staff - even occasionally - appointed by EXSCALATE.
The personal data of third parties conferred through the registration procedure present in some areas of the Portal will be processed by EXSCALATE for the exclusive purpose of perfecting the user’s registration and activating the services that the user requires. Personal and/or identification data necessary for accessing the Portal and its services are limited to the minimum necessary to be able to reach the user by e-mail and/or to carry out the services that the user requires.
The personal data provided by users through requests for information material (brochures, information material, etc.) are used for the sole purpose of perfecting the service requested and are communicated to third parties only if necessary for said purpose.
Moreover, in case you want to use the communications services, such as the e-newsletter, for example, you will have the right to cancel your registration at any time by following the instructions given in each individual communication. If you decide to cancel your subscription to a service or communication, EXSCALATE will immediately delete your data.
The Data Controller may be required to communicate data referred to in this information in case the Police Forces collect information by carrying out legitimate investigation and/or judicial police activities (on their own initiative in the case of preliminary investigations or under the direction of the Public Prosecutor). Apart from these cases and the hypotheses expressly governed by the individual information present on the various pages of the site, the data will not be disclosed or transferred to any party. No data deriving from the web service will be disclosed.
EXSCALATE ensures the application of appropriate security measures to prevent access by unauthorized parties, loss, dissemination or improper use of the same, as required by the Privacy Code.
It is the responsibility of the users, however, to ensure that their computer is properly secured and protected from harmful software such as viruses, worms and “Trojan horses”: in fact, without adequate security measures (for example, a secure configuration of the web browser, updated antivirus, software firewall, the use of software of doubtful origin), there is a risk that the data and passwords used to prevent access to their own data are disclosed to unauthorized third parties.
The subjects whom personal data refer to have the right to obtain at any time confirmation as to whether or not personal data relating to them are being processed and to obtain access to such data and know their content and origin, verify the accuracy of the same or request their updating, integration or correction (Article 7 of D.lgs. No. 196/2003 and Articles 15 and subsequent of EU Regulation 679/2016).
The interested party has the right to request the limitation of the processing, portability, cancellation, transformation into anonymous form or the blocking of data processed in breach of the law and to oppose in any case to the processing of such data, for legitimate reasons.
Requests should be addressed by writing an email to firstname.lastname@example.org