Dear user,
pursuant to Article 13 of EU Regulation No. 679/2016, we wish to provide you with clear and simple information on how we will process the personal data that you provide directly when you register online for one of the training events promoted by the Foundation, as well as any requests for disclosure/information that you send us via the contact options available on our website. This privacy notice is also provided in order to clarify how we process the data that we receive when you browse our website.
Data Controller
The Data Controller is ITS MAKER
(Istituto Tecnico Superiore Meccanica, Meccatronica, Motoristica, Packaging)
Registered office: Via S. Bassanelli 9/11 – 40129 Bologna
Tel: +39 051 4165701
Mail: segreteria@itsmaker.it
Pec: fondazioneitsmeccanica-er@pec.itsmaker.it
What is the life cycle of personal data? Personal data processed, purposes and legal basis
For website visitors
| Which personal data do we process? | Why do we process them (purpose and legal basis)? | What happens if we are not allowed to process the data? | How long do we keep the data? |
| Identification data Contact data |
The personal data provided by users are used in order to:
The legal basis for processing is your consent. |
Except for browsing data (see Cookie Policy), providing data is optional.
However, if you refuse to provide your data, we will not be able to fullfill the purposes of processing described above. |
Except for browsing data (see Cookie Policy), the personal data provided will be stored only for the period necessary to respond to any requests, in line with the purposes for which they were collected. |
For individuals interested in online registration
| Which personal data do we process? | Why do we process them (purpose and legal basis)? | What happens if we are not allowed to process the data? | How long do we keep the data? |
| Identification data
Contact data Data relating to education/training Tax data |
Data subjects may provide their personal data in order to register in the reserved area and thus enrol for the admission tests to the various training courses.
Processing for the purpose of registering for the specific admission test is justified by the need to carry out the training activities requested from the Data Controller. Personal data are processed in order to organise the admission tests/training courses, taking into account the number of participants and thus trying to ensure the best possible conditions for participation. Personal data are also processed in order to send informational and in-depth material to individuals enrolled on courses/training activities, including subscription to any newsletter service to stay updated on the activities promoted by the Data Controller. The legal basis for processing is your consent. |
Providing data is necessary in order to enrol for the admission tests to the courses. Refusal to provide data makes it impossible to carry out the enrolment and training activities requested from the Data Controller.
Refusal to provide data for the additional purposes of sending informational material and updates does not prevent the Data Controller from carrying out enrolment and training activities requested by the data subject, but it does make it impossible to send informational and update material on future events organised by the Data Controller. |
The personal data provided will be stored for as long as is necessary to manage the activities requested from the Data Controller.
Once the intended purposes have been fulfilled, the personal data processed will be erased. The personal data provided will be retained for the specific purposes indicated only where there is an explicit consent to do so. If the consent given for such processing is revoked, the data will be erased. |
For teaching / training service providers who publish their CV in the portal repository
| Which personal data do we process? | Why do we process them (purpose and legal basis)? | What happens if we are not allowed to process the data? | How long do we keep the data? |
| Identification data
Contact data Data contained in the CV (including any images) |
The personal data provided by users are used in order to:
manage registrations to the faculty manage inclusion in the list of qualified suppliers provide users of the website with information on the expertise and professional profiles of teachers (transparency) The legal bases for processing are: compliance with legal obligations (for the purposes of managing registrations to the faculty and providing users with information on the professional profiles of teachers – transparency) the legitimate interest of the Data Controller (for the purpose of managing the list of qualified suppliers). |
Providing data is necessary for registration with the faculty. Refusal to provide data makes it impossible to carry out the admission activities for teaching/training service providers requested from the Data Controller.
Refusal to provide data also makes it impossible for the Data Controller to fulfil its institutional transparency obligations provided for by the applicable legislation. |
The personal data provided will be stored for as long as is necessary to manage the activities requested from the Data Controller.
Once the intended purposes have been fulfilled, the personal data processed will be erased. The personal data provided will be retained, for the specific purposes indicated, only where there is an explicit consent to do so. If the consent given for such processing is revoked, the data will be erased. |
2. How are personal data processed?
The processing of personal data collected is carried out mainly by electronic means and in accordance with logics that are closely related to the purposes indicated above and, in any case, in such a way as to guarantee the security and confidentiality of the data. Appropriate security measures are implemented in order to prevent data loss, illicit or incorrect use and unauthorised access.
The Data Controller collects personal data through specific contact forms or through emails sent to the following address: segreteria@itsmaker.it
The Data Controller also collects personal data of users who have given their specific consent through a newsletter management service.
The Data Controller does not carry out any profiling or automated decision-making with respect to the personal data provided while browsing the website.
3. Who processes personal data?
Personal data are processed by internal staff members who are expressly authorised to process data and have been properly trained. They are in any case bound by professional secrecy and the utmost confidentiality.
Personal data are also processed by professionals who manage the update and maintenance of the website and who have been formally appointed as Data Processors.
4. Who can access personal data?
Personal data will not be disclosed to third parties or disseminated.
Personal data may be shared with:
- entities that are necessary for the provision of the services offered by ITS MAKER (Regione Emilia-Romagna, MIUR) and for the operation of the website, which typically act as Data Processors
- persons authorised by the Data Controller to process personal data who are bound by confidentiality or have an adequate legal obligation of confidentiality (for example employees, collaborators, etc.)
- judicial authorities in the exercise of their functions where required by applicable law
All parties to whom the data are communicated, including the server farms of providers used, are located within the territory of the European Union. Under no circumstances will personal data be transferred outside this area.
5. What rights does the data subject have vis-à-vis the Data Controller?
The data subject has the right to request from the Data Controller:
- Access to their personal data
The data subject may obtain confirmation as to whether or not personal data concerning them are being processed, obtain more information on the processing and a copy of the personal data. - Rectification of personal data
The data subject may request rectification in order to ensure the accuracy of the personal data processed. - Erasure of personal data
The data subject may obtain the erasure of personal data in the cases provided for in Article 17 of the GDPR. - Restriction of processing
The data subject may request restriction of processing, for example by objecting to erasure when the data are needed for the establishment, exercise or defence of legal claims. - Data portability (for data processed by automated means)
The data subject has the right to receive their personal data in a structured, commonly used and machine-readable format. - Withdrawal of consent
The data subject has the right to withdraw at any time the consent given for the processing of their personal data. - Objection to the processing of personal data
The data subject has the right to object at any time to direct marketing.
This website does not carry out user profiling.
The data subject may request further information or exercise their rights by contacting the Data Controller at:
Email: segreteria@itsmaker.it
Tel: +39 051 4165701
The data subject has the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali).
For more information on the right to lodge a complaint, please visit the following web page: https://goo.gl/GLbTN9
