Data Controller

The Data Controller is the University of Gastronomic Sciences, located in Piazza Vittorio Emanuele, 9, Pollenzo – 12042 Bra – Italy

Applicable Standard

The processing of personal data related to the site applies to the European legislation, Reg. (EU) 2016/679, Italian, Legislative Decree 30 June 2003, n. 196 and subsequent amendments and additions, as well as the provisions of the Authority for the protection of personal data.

Rights of the concerned parties

At any time the interested party may: exercise his / her rights (access, rectification, cancellation, limitation, portability, opposition, absence of automatic decision-making processes) when foreseen towards the data controller, pursuant to the articles from 15 to 22 of the GDPR; to propose a claim to the Guarantor (www.garanteprivacy.it); and if the treatment is based on consent, to revoke the given consent, taking into account that the withdrawal of such consent does not affect the lawfulness of the treatment based on the given consent before the revocation.

Data Protection Officer

The requests must be addressed to the Data Protection Officer who is responsible for data protection, to the address privacy@unisg.it  to the attention of the Engineer Mr. Massimiliano Bonsignori.

The disclosure of the information is a general obligation that must be fulfilled before or at the latest when initiating the direct collection of personal data. In case of personal data not being collected directly from the concerned party, the information must be provided within a reasonable time or at the time of communication (not of registration) of the data (to third parties or to the concerned party). Following are the information for the various categories of the concerned parties.

This page describes how to manage the website related to the processing of its users personal data who consult and use it. The disclosure of information concerns the methods, timing and nature of the information that the data controllers must provide to users when they connect to web pages, regardless of the purposes of the connection.

 

Place of Data Processing and assigned personnel

The processing operations connected to the web services of this website take place at the offices of the Data Controller through the internet service provider of this site who created and made the site available.

The data are processed by the personnel in charge only, also for any maintenance and administration of processing systems.

 

Types of data processed

 

Navigation and technically indispensible data
During the normal operation, the computer systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to associate with identified concerned parties, but by their very nature this could help to process and associate data held by third parties, to allow its users to be identified. This category of data includes elements such as  IP addresses or domain names of the computers used by users who connect to the site, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request and ping time, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s computer environment. These data are used for the sole purpose of obtaining anonymous statistical information for the use of the site and to check its correct functioning and they are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

 

Data provided voluntarily by users
It can also process the data of an identified or identifiable persons on the basis of additional information provided by the data subject: for example, with the optional, explicit and voluntary sending of e-mails to the addresses indicated on this site, which implies the subsequent acquisition of the address of the sender, necessary to respond to requests, as well as any other personal data included in the communication.

 

Cookies

Cookies are small text strings of the sites visited by the user  who sends this strings d to his terminal (usually to the browser) where they are stored before being re-transmitted to the same sites at the next visit of the same user. Two macro-categories are identified: “technical” cookies and “profiling” cookies. This site uses “technical” cookies only for the purpose of “transmitting a communication over an electronic network, or as strictly necessary for the provider of a service which is explicitly requested by the user. In order to provide this service” (as per Article 122, paragraph 1), of the Code): cookies can be divided into navigation or session cookies, which guarantee the normal navigation and use of the website (for example, allowing to make a purchase or authenticate to access restricted areas). And there is analytics cookies, those are integrated to technical cookies where used directly by the site operator to collect information in an aggregate form on the number of users to analyse how they visit the site and / or cookies of functionality- which allow the user to browse the site using of a series of selected criteria (for example, the language, the products selected for purchase) in order to improve the service provided. The use of “technical” cookies (session variables whose values ​​stored on the hard disk of the device can still be deleted and it is also possible to disable cookies following the instructions provided by the main browsers) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) and of software usage data necessary to allow the safe and efficient exploration of the site. The session variables (so-called cookies) can avoid the use of computer techniques potentially prejudicial or harmful to the confidentiality of navigation of the users and do not allow the acquisition of personal identification data of the user. This site does not in any way use cookie Profiling  (aimed at creating profiles related to the user and later used to send advertising messages using the previous preferences expressed by the same user in the context of surfing the net).

This site uses “Third-party” cookies during the navigation on a site which are cookies designed to receive on their device sent from different sites or web servers (the storage of information takes place at third parties). An example of this is the presence of ” social plugins ” you see on websites for Facebook, Twitter, Google+ and LinkedIn (these are parts of the page visited generated directly by the aforementioned sites and integrated into the page of the host site) whose use is aimed at sharing content on social networks (the presence of these” plugin “involves the transmission of cookies from and to all sites managed by third parties. The management of information collected by” third parties “is governed by the relevant information to which reference should be made).

Complete list of Privacy Policy third-party cookies used:com: www.addthis.com/privacy

How Can I disable cookies?
Most browsers (Internet Explorer, Firefox, etc.) are configured in a way to accept cookies. However, most browsers allow you to control and even disable cookies through browser settings as you prefer. However, we remind you that disabling Navigational or Functional cookies can cause the site to malfunction and / or in some way limit the services offered to you.


Purposes of processing, communication and dissemination of data

The personal data collected are used only to perform the services or services requested and are communicated to third parties only if this is deemed necessary for this purpose. The services include: consultation and mere materialization of the site and its contents; access to the reserved area; reports; contact request; etc. In any case, no data deriving from the web services is widespread or published without the prior consent of the concerned party. Finally, please note that in some cases (not subject to ordinary management) the Public Authorities may request news and information of a personal nature, to which the Data Controller is obliged legally to follow up.

 

Optional Provision of data

Apart from the specified navigation data which is technically essential, the user is free to provide personal data also for specific requests on products and / or services. The failure to provide such indispensible data may make it impossible to the user to obtain what has been requested.

 

Legal Basis. Management of user consent

When necessary, apart from the cases in which the legitimate interest of both the owner and third parties applies, where upon reading the information, the user is required to give his consent to the processing and disclosure of his data for the purposes and within the limits described above, otherwise it is impossible for the Data Controller to process the data in order to carry out and implement the services requested by the interested party or proposed to him.

 

Methods of data usage

The processing of personal data, intended as collection, registration, organization, storage, processing, modification, cancellation and the destruction or the combination of any of the above two or more of these operations takes place using manual, computerized and telematics tools, even in an automated way, with logic strictly related to the stated purposes. In any case, to guarantee the security and confidentiality and the time strictly necessary to achieve the purposes for which they were collected.
The data are processed lawfully and fairly collected and recorded for specific, explicit and legitimate, exact, and if necessary updated, relevant, complete usage and not excessive in relation to the purposes of the processing. It is used in in compliance with the minimum security standards and rights and fundamental freedoms, as well as the dignity of the person concerned, with particular reference to keep the privacy and personal identity. Specific security measures are strictly observed to prevent data loss, illicit or incorrect usage of data and unauthorized access. The data will be kept until the end of the legal prescription to defend oneself or to make use of a right in the judicial court, after the purpose (treatment purpose) for which the data had been collected.

Personal data collected will not be transferred or shared to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA)

 

Data Controller

The Data Controller is the University of Gastronomic Sciences, located in Piazza Vittorio Emanuele, 9, Pollenzo -12042 Bra – Italy.

 

Applicable Standards

The processing of personal data related to the site applies the European legislation, Reg. (EU) 2016/679, and Italian, Legislative Decree 30 June 2003, n. 196 and subsequent amendments and additions, as well as the provisions of the Authority for the protection of personal data.

 

Rights of the interested parties (Users)

At any time the interested party may: exercise his / her rights (access, rectification, cancellation, limitation, portability, opposition, absence of automated decision-making processes) when intimated towards the data controller, pursuant to article 15 to 22 of the GDPR; to propose a claim to the Guarantor (www.garanteprivacy.it). And if the treatment is based on consent, he or she can revoke the consent given, taking into account that the withdrawal of such consent does not affect the lawfulness and legitimacy of the treatment based on consent before revocation.

 

Data Protection Officer

The requests must be addressed to the Data Protection Officer, responsible for data protection, to the address privacy@unisg.it  to the attention of the Engineer. Massimiliano Bonsignori.

In accordance with Reg.(UE) 2016/679 (GDPR)  and Italian law 196/03 pertaining to the treatment of personal data, the Associazione Amici dell’Università di Scienze Gastronomiche (Association of Friends of the University of Gastronomic Sciences) and the University of Gastronomic Sciences, both having headquarters at 9 Piazza Vittorio Emanuele, Pollenzo (12042 Bra, Cuneo, Italy), in their role as independent data treatment managers, are obligated to provide some information concerning the use of said data.

The person in charge of data processing is the Administrative Director.

 

Source of personal details

Students’ and prospective students’ personal data acquired by the university, i.e. private or sensitive information concerning their physical condition and personal habits, information about citizenship and country of origin, photographs and filmed documents acquired through the application and enrollment procedures, during events, classes, courses, seminars and/or through any subsequent academic procedures such as results of examinations and tests, paperwork for fee-exemption applications is collected directly from the student or prospective student and is freely provided by him or her.

 

Use of data

Personal data is handled within the context of regular academic, organizational, operative, administrative, and selection activities of the university on the basis of legal conditions identified in articles 6 to 9 del GDPR, including:

  • uses strictly related to the fulfillment and implementation of academic services and educational aids, and particularly to student-selection procedures for enrollment purposes, formalities pertaining to the academic activities of the university, to enable students to use the services provided by the university, including job-placement and/or post-graduation programs, for courses with legal value and amateur, professional or business courses with no legal value
  • uses strictly related to student-university relations, such as the acquisition of application and pre-application information, implementation of contracts with businesses or organizations providing student services, job inquiries, interviews concerning experiences at said University and current working conditions,
  • uses related to law-enforcement activities or for fulfillment of obligations from law-enforcement authorities
  • purposes related to the carrying out of the University’s institutional functions, such as the need to transmit the information to other public bodies (for example, the Ministry of Education, Universities and Research, the Regional Agency for University Studies, the Regional University Observatory, the Ministry of Finance) that manage the granting of research funds and/or fellowships for study and research purposes, projects for the development of the university and services in support of students’ rights
  • purposes related to regular University activities (ex: drawing up of teaching/learning materials and their distribution, brochures and fliers, publications, audio/photo/video recordings made during the training and study courses, etc.) for which the interested party is in some cases asked to give (or deny) his/her specific consent (ex: the promotion and sale of products and services, customer satisfaction surveys, etc.);
  • purposes related to the activities of the Association, for which the interested party is asked to give (or deny) his/her specific consent (ex: communication to interested third parties, promotion and participation in initiatives linked to the world of food and nutrition, etc.)
  • UNISG promotional activities including publication of books, CVs, images, CDs, websites, etc., to which the interested party has the option of giving or withholding consent;
  • purposes connected with the realization of photographs and videos in the buildings and exteriors on the University campus or other University premises, used by the University and/or the Association solely for promotional and/or informative-journalistic purposes;
  • statistical data processing of aggregate and individual anonymous data.

 

Confidentiality of personal data

Personal data may only be processed for institutional purposes that could not be carried out otherwise, and only to comply with or require compliance with specific requisites, or to carry out specific obligations required by law as part of the institution’s functions. Said data is processed using modalities designed to prevent the violation of the interested parties’ rights, fundamental freedoms and personal dignity.

Data handling methods

Data handling includes collecting, recording, organization, filing, processing, updating, cancellation, and destruction, or the combination of two of more of these actions.

Based upon the above-listed actions, and according to the required procedure, handling of personal data will be done manually or using IT tools, always ensuring that safety and privacy are safeguarded. Personal details will be correctly and lawfully handled; must be collected and filed for specific, clear, legal purposes; must be accurate, up to date, thorough, pertinent and not exceeding the purpose of the data handling procedure,, with adequate measures of security and protection.

Transfer data to a recipient in a third country or to an international organization outside of the european union (eu) or the european economic space (see)

By default, personal data will not be transferred to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA), except in specific cases such as travel training. In these cases where personal data will be transferred to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA), the Data Controller will make sure to ensure that, in the absence of a decision of adequacy of the European Commission, there are adequate guarantees for the fundamental rights and freedoms of the interested parties. However, to transfer any strictly necessary personal data, explicit consent is required according to the directions of the Travel Regulations and without prejudice to the possibility of restricting the transfer for well-grounded reasons.

 

Duration

Personal data will be filed and handled in such a way that the individual to whom the data pertains is identified for a period of time not exceeding that needed to complete the purpose for which the data were collected or subsequently handled in the first place and to the legal prescription for the exercise of rights or defense in judicial court.

Compulsory provision of data and consequences of non-compliance

If the person to whom the data pertains does not communicate his or her personal data and does not allow the handling thereof, except in the cases where this is optional, it will be impossible to complete any university-enrollment procedure. In this event, the candidate’s application will be void.

 

Personal data circulation (limited to information strictly necessary to achieve specific purposes)

Personal data may be circulated to:

  • external institutions governing and monitoring university activities
  • university staff and consultants working for the person in charge of data handling procedures
  • external individuals involved in undergraduate/postgraduate internship projects and other universities in the case of student transfers or enrollment in courses in Italy or abroad
  • external individuals, acting on behalf of UNISG, in charge of specific undertakings in the above-mentioned areas. The list of external individuals to whom personal data is transferred is available at the Registrar’s Office
  • banks in charge of returns and payments
  • to the founders of the University, among which Slow Food;
  • agencies and/or companies that support the University;
  • agencies and/or companies that collaborate in the teaching and research activities carried out at the University;
  • external individuals authorized by the student to carry out specific purposes
  • external or internal individuals in all cases authorized by Italian law.

Some identification information not considered confidential and videos and photographs may be posted on the University’s web portal, or other communication supports, unless permission is specifically denied.

 

Rights of the concerned parties

At any time the interested party may: exercise his / her rights (access, rectification, cancellation, limitation, portability, opposition, absence of automated decision-making processes) when intimated towards the data controller, pursuant to article 15 to 22 of the GDPR; to propose a claim to the Guarantor (www.garanteprivacy.it). And if the treatment is based on consent, he or she can revoke the consent given, taking into account that the withdrawal of such consent does not affect the lawfulness and legitimacy of the treatment based on consent before revocation.

We hereby underscore that, due to the special nature of the relationship and the public nature of the University, students may not request that their data be cancelled, but may at any time request that their personal data be updated.

With reference to photographs and videos, every precaution shall be taken to protect the right of the interested party to not appear, establishing, where possible, suitable areas that will not be photographed or filmed.

 

Data protection officer

The requests must be addressed to the Data Protection Officer, responsible for data protection, to the address privacy@unisg.it  to the attention of the Engineer. Massimiliano Bonsignori.

 

Authorization for the handling of data

In its role as a public non-profit body, the University is not required to request consent in order to carry out all the processing strictly necessary to the fulfillment of its institutional role, in compliance with the applicable public norms and regulations (laws, decrees, etc.).

Therefore, regarding the information indicated above and data circulation for other than strictly institutional purposes, and to the Association of Friends of the University of Gastronomic Sciences, the promoter of the University, and to Slow Food, founding member of the Association itself, and the various groups it is connected to, I hereby give my express consent, including the transfer and circulation in Italy and abroad of my personal data for the purposes and according to the modalities specified above, also with respect to the eventual treatment of sensitive information, which is covered by the confidentiality clause.

This information supplements the general information, in accordance with Reg. (EU) 2016/679 (GDPR) and Italian Legislative Decree 30 June 2003, no. 196 (Personal Data Protection Code, hereinafter referred to as “Code”) and subsequent amendments and additions.

It relates to the personal data collected through the “Presences” procedure, based on a web app, which allows students and university lecturers to transmit and collect data about classroom attendance and/or participation in initiatives organized by the University through computer support and online connections throughout the duration of their studies, managed by the University. We would like to inform you of the following:

  1. The processing of your personal data, collected from you exclusively through electronic devices such as smartphones, tablets, PCs and their connection to the Internet, is carried out by those in charge of and responsible for the processing of the data through electronic or automated means. It is used (a) to determine the attendance rate of courses and participation in examinations according to the conditions set by the lecturer responsible for the “attending students”; (b) the data may also be used for the purpose of performing checks and monitoring students. Should these checks show that any of the data are false; the University may initiate disciplinary action.
  2. Personal data collected will not be transferred or shared to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA)
  3. The data collected will be kept until the end of the legal prescription to defend oneself or to make use of a right in the judicial court, after the purpose (treatment purpose) for which the data had been collected.
  4. Personal data may be communicated to those responsible for processing, both internal and external to the organization, who carry out specific tasks and operations as permitted by law. Personal information that is individually reported will not be disclosed.
  5. See also the specific Cookie Policy for the application.
  6. The provision of personal data is optional, but it is essential to access the services referred to in paragraph 1, point (a). Indeed, refusal to provide the data may result in limited access to the exams as an “attending student.” Regardless, the data transmitted through the online procedure must be accurate and real; otherwise, the student may face the disciplinary action cited in paragraph 1, point (b).
  7. Consenting to the processing of the provided data is not necessary as the “Presences” procedure was approved on 30/05/2017 and as a contractual obligation is the only admissible method for attendance registration.
  8. At any time the interested party may: exercise his / her rights (access, rectification, cancellation, limitation, portability, opposition, absence of automated decision-making processes) when intimated towards the data controller, pursuant to article 15 to 22 of the GDPR; to propose a claim to the Guarantor (www.garanteprivacy.it). And if the treatment is based on consent, he or she can revoke the consent given, taking into account that the withdrawal of such consent does not affect the lawfulness and legitimacy of the treatment based on consent before revocation.
  9. The owner of the processed data is the University of Gastronomic Sciences (unisg.it), Piazza Vittorio Emanuele II, 9, Pollenzo,12042 Bra (Cn), Italy.
  • The Manager of the collected data is the Administrative Director.
  • The requests must be addressed to the Data Protection Officer, responsible for data protection, to the address privacy@unisg.it to the attention of the Engineer. Massimiliano Bonsignori.
“Presences” Cookie Policy

 

WHAT ARE COOKIES?

Cookies are small strings of text that a website can send to your device while browsing (whether you are using a PC, notebook, smartphone or tablet, they are generally stored directly on the browser). The same website that transmitted them can then read and record cookies found on the same device to gather different types of information.

 

COOKIE ORIGIN

By visiting a website, you may receive cookies either from the visited site (“proprietary” or “own” cookies), or from sites managed by other organizations (“third party cookies”) that have plugins, widgets and specific embedded features on the website/application pages you are browsing.

The presence of these plugins involves the transmission of cookies to and from all sites managed by third parties.

 

TYPE OF COOKIES

Technical cookies

Navigation, functionality and session cookies are strictly used to ensure the proper functioning of a site.

Analytics cookies gather aggregated information about the number of users, as well as how often they visit the site. Their goal is the continuous improvement of the functionality, content organization and support of different platforms and browsers.

Cookie widgets. This category includes all the graphic components whose purpose is to facilitate the user’s interaction with the system. For example, Google Maps, Sharethis, etc. are widget cookies. More information regarding individual privacy policies can be found directly on the websites themselves.

 

Profile cookies

These are permanent cookies used to identify (whether anonymously or not) the user’s preferences and enhance their navigation experience.

 

THE “PRESENCES” PROCEDURE

The “Presences” procedure is based on a web application (wedo.unisg.it) that uses only proprietary and third party cookies. There are neither profile cookies nor third party profile cookies on the site.

The management of information collected by “third parties” is governed by the relevant information to which reference is made. To ensure greater transparency and convenience, listed below are the web addresses of the sites that provide information with regard to managing cookies (see the “GOOGLE ANALYTICS COOKIES” section below).

It is not necessary to consent to the processing of technical data regarding cookies. However, you can change your browser options to disable cookies according to the procedures detailed by each browser (see the next paragraph on “HOW DO I DISABLE COOKIES?”). Keep in mind, however, that disabling cookies can also disable some of the features on the application.

Interested users may exercise their rights under Article 7 of the Privacy Code (see the general Privacy Policy) by contacting the person responsible for data processing indicated below.

The owner of the collected data is the University of Gastronomic Sciences (www.unisg.it), Piazza Vittorio Emanuele II, 9, Pollenzo,12042 Bra (Cn), Italy.

The Manager of the collected data is the Administrative Director.

 

GOOGLE ANALYTICS COOKIES

Google Analytics is a web analytics service provided by Google, Inc. (“Google”), which uses “cookies” through which it collects user information that is transmitted to and deposited in Google servers in the United States.

The service has been configured so that the user’s IP address cannot be traced.

Google uses this information to track and review your site usage, compile site activity reports for website operators, and provide other services related to website activities and Internet usage. Google does not associate the user’s IP address with any other data held by Google. Any refusal to use cookies by selecting the appropriate setting on your browser may prevent you from using all the features of this website.

Google Analytics cookies can also be disabled by following the procedure outlined by Google:

https://tools.google.com/dlpage/gaoptout?hl=it

 

HOW CAN I DISABLE COOKIES?

You can change your browser to disable cookies by following some very simple steps.

To delete cookies from your smartphone/tablet browser, refer to the device’s operating manual.

Warning: Turning off cookies can disable some features of the website.

Safari:

  1. Open Safari.
  2. Choose “Preferences” in the toolbar, then select the “Security” panel in the dialog box that follows.
  3. In the “Accept cookies” section, you can specify whether and when Safari should save cookies from websites. For more information, click the Help button (marked with a question mark).
  4. For more information about cookies that are stored on your computer, click on “Show cookies.”

Firefox:

  1. Open Firefox
  2. Press the “Alt” button on the keyboard.
  3. In the toolbar at the top of your browser, select “Tools” and then “Options”.
  4. Then select the “Privacy” tab.
  5. Go to “History settings” and then “Use custom settings”. Uncheck “Accept cookies from sites” and save your preferences.

Internet Explorer:

  1. Open Internet Explorer
  2. Click on the “Tools” button and then on “Internet Options”
  3. Select the “Privacy” tab and move the slider up or down according to the privacy level you want to set (move it up to lock all cookies, or down to allow them all).
  4. When you are done, click “OK.”

Google Chrome:

  1. Open Google Chrome
  2. Click on the “Tools” icon
  3. Select “Settings” and then “Advanced Settings”
  4. Select “Content Settings” under “Privacy”
  5. By clicking on the “Cookies” tab, you can clear cookies and save your preferences.