Privacy Policy

Privacy Policy – Application of European Regulation number 679 of April 27, 2016, and current legislation

This data processing policy document (privacy policy) describes the purposes and methods of processing personal data of customers, potential customers, and all stakeholders of GTechnology Foundation Research Organization.

According to the EU Reg. 2016/679, the consent of the legal entity, entity, association, or similar subject is required, also for sending advertising material or direct sales or for conducting market research or commercial communication, through the use of automated calling systems or communication without the intervention of an operator and through electronic communications carried out by: email, telefax, MMS (Multimedia Messaging Service) or SMS (Short Message Service) messages or other types.

Purpose and Methods of Processing.

The data provided by the natural person, legal entity, entity, association, or similar subject and/or acquired:

a) at the time of requesting the first service and/or main service or during the contractual relationship, or from accessing the services provided by the undersigned to which the applicant applies at the very moment of using the service provided.

b) at the time of subsequent request for any additional main service and/or supplementary service or during the contractual relationship will be processed by GTechnology Foundation Research Organization, to carry out the request of the natural person, legal entity, entity, association, or similar subject and/or for:

  1. fulfilling the obligations arising from both the first and any subsequent contract or service provision, concluded with these or to the services provided by the undersigned to which the applicant applies at the very moment of using the service provided;
  2. complying with specific requests before the conclusion of the contract for the services provided by the undersigned to which the applicant applies at the very moment of using the service provided;
  3. complying with legal obligations;
  4. activities connected and instrumental to the management of the contractual relationship, including relationships related to any additional optional services and/or products requested by the natural person, legal entity, entity, association, or similar subject.

For these purposes, the provision of data is necessary. In the absence of data provision, it will not be possible to provide the requested product and/or service.

GTechnology Foundation Research Organization may also use, with the consent of the natural person, legal entity, entity, association, or similar subjects, the data for participation in quality surveys on service provision. However, the subject will be free not to participate in such surveys and may also object free of charge to the processing of their data for this specific purpose by contacting the aforementioned temporary Data Protection Officer.

It is also informed that, according to the aforementioned regulations, the personal data provided by the interested party are: processed lawfully, fairly, and transparently; collected for specified, explicit, and legitimate purposes and subsequently processed in a manner that is not incompatible with those purposes; limited to what is necessary concerning the purposes for which they are processed; kept in a form that allows the identification of the data subjects for no longer than is necessary for the purposes for which the data are processed; processed in a manner that ensures adequate security of personal data, including protection through appropriate technical and organizational measures against unauthorized or unlawful processing and accidental loss, destruction, or damage.

Data Collected

The IT systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and associations with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by users who connect to the site, addresses in URI (Uniform Resource Identifier) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the user’s operating system and computer environment.

This site/app collects user data in two ways.

– Data collected automatically: During User navigation, the following information may be collected and stored in the site’s server (hosting) log files: – internet protocol address (IP); – type of browser; – device parameters used to connect to the site; – name of the internet service provider (ISP); – date and time of visit; – web page of origin of the visitor (referral) and exit; – possibly the number of clicks.

These data are used for statistical and analysis purposes, in an exclusively aggregated form. The IP address is used exclusively for security purposes and is not cross-referenced with any other data.

– Data provided voluntarily:

The site can collect other data in case of voluntary use of services by users, such as comment services, communication services (contact forms, comment boxes), and will be used exclusively for the provision of the requested service:

  • – name;
  • – surname;
  • – mobile phone number;
  • – email address;
  • – mac-address of the connected device.

Non-sensitive personal data will not be given to third parties, but held by Foundation Research Organization.

Cookies

For specific information, you can consult the cookies policy.

Details

  1. Categories of data: the undersigned may process personal and sensitive data, for the provision of the service, which will be communicated and collected in any contracts concluded between the parties; or to the services provided by the undersigned to which the applicant applies at the very moment of using the service provided;
  2. Source of personal data: the personal data in the possession of the undersigned are collected directly from the data subject at the time of completing the service and/or product supply contract;
  3. Data Controller: the data controller is GTechnology Foundation Research Organization, Registered office via Pier Paolo Pasolini 15 – 41123 Modena (MO), C.F. 94166490360, P.I. 03479750360; email: [email protected].
  4. Purpose of data processing and legal basis: the processing of data, collected and stored in connection with the contract/service, is based on your consent and is carried out for the following purposes: responding to information requests; providing assistance and support services; sending educational, informative, and commercial communications; managing commercial profiling activities via the website;
  5. Data recipients: within the limits of the above-mentioned processing purposes, the collected data may be communicated to partners, consultancy firms, private companies, appointed as data processors by the data controller. Your data will not be disseminated in any way. The appointed Data Processors and Persons in Charge of processing are promptly identified in the Privacy Document, which is updated periodically;
  6. Transfer of data abroad: the collected data will not be transferred abroad;
  7. Retention period: the collected data will be retained for a period not exceeding the achievement of the purposes for which they are processed (“principle of storage limitation,” Article 5 GDPR) or according to the deadlines set by law. The obsolescence of the stored data concerning the purposes for which they were collected is checked periodically. The processing and storage are carried out at GTechnology, which may use the professional support of an external professional, specially appointed as DPO (Data Protection Officer), located in the national territory;
  8. Rights of the data subject: the data subject always has the right to request from the data controller access to their data, rectification or erasure of the same, restriction of processing, and the possibility to object to the processing, to request data portability, to withdraw consent to the processing by asserting these and other rights provided by the GDPR through simple communication to the data controller. The data subject can also lodge a complaint with a supervisory authority;
  9. Obligatory or optional nature of data provision: in some cases, data provision is optional, and in others (e.g., activation of shipping services and related to the contract, as well as the conclusion of the contract related to “on-demand services” and fulfillment of contractual, administrative, and fiscal obligations, including any verification of your solvency, resulting from the existing relationship, including the provision of online services), mandatory for the above-mentioned purposes. The failure to provide mandatory data makes it impossible for the undersigned to provide the service and/or product;
  10. Consent: consent to data processing is given by affixing a legible signature in the dedicated spaces or, in the case of online services, in the specific confirmation fields. The data subject has the right to withdraw their consent at any time;
  11. Methods of data processing: the personal data provided by the data subject will be processed in compliance with the above-mentioned regulations and confidentiality obligations which inspire the data controller’s activity. The data will be processed both with IT tools, on paper supports, and with any other suitable support, in compliance with adequate technical and organizational security measures provided by the GDPR.

 

 

This Privacy Policy was updated on May 30, 2024.