- “DATA CONTROLLER"
- PLACE OF DATA PROCESSING
- TYPES OF DATA PROCESSED
- Navigation data
- Data provided voluntarily by the user
- PURPOSE OF THE PROCESSING
- NATURE OF THE COMMUNICATION
- METHOD OF PROCESSING
- SCOPE OF PROCESSING
- REDIRECTING TOWARDS EXTERNAL SITES
- RIGHTS OF INTERESTED PARTIES
- CHANGES TO THE POLICY
WHY THIS NOTICE?
This page describes how the site is managed in relation to the processing of personal data of users who consult it.
This information is provided pursuant to Article 13 of the General Regulation on the Protection of Personal Data (EU Reg. 2016/679) of those who interact with the “IEO Research” website. This information is aimed at defining the limits and methods of processing the data of each service, on the basis of which, the visitor can freely express his consent and authorize the collection of data and its subsequent use.
The information is provided only for the aforementioned website and not for other websites that may be consulted by the user via computer links.
1. DATA CONTROLLER
Following consultation of this site, data relating to identified or identifiable persons may be processed.
The controller of their processing is the European Institute of Oncology with registered office in Via Filodrammatici 10, 20121 Milan, and with operational offices, also in Milan, in Via Ripamonti 435, Via San Luca 8, Via Adamello 16.
2. PLACE OF DATA PROCESSING
The processing operations connected to the web services of this site take place at Microsoft Azure Cloud Computing Platform & Services.
3. TYPES OF DATA PROCESSED
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with interested parties identified, but by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of computers used by users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the IT environment of the user.
This data is used only to obtain anonymous statistical information on the use of the site and to check its correct functioning, and is deleted immediately after processing. The data could be used to ascertain responsibility in the case of hypothetical computer crimes against the site.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site as well as the compilation of the data collection forms present on the site, involves the subsequent acquisition of the sender's address and/or of the information provided, which will be used to follow up the requests received.
The specific summary information statement is progressively reported or displayed on the website pages set up for particular services upon request.
4. PURPOSE OF THE PROCESSING
The personal data requested through the “IEO Research” website is collected and processed for the following purposes:
a) carrying out your requests and therefore manage the relationship you wish to establish with our Company or the existing one between you and the Company itself;
b) for administrative purposes, in any case, connected with the fulfilment of the relative contractual obligations, for the fulfilment of legal obligations such as, for example, those of an accounting, fiscal nature, or to execute requests from a judicial authority.
5. NATURE OF THE COMMUNICATION
The provision of data with respect to the purposes referred to in letter a), and b) is optional, but refusal will result in the impossibility for the Company to proceed with the contractual commitments undertaken.
6. METHOD OF PROCESSING
The personal data collected through the “IEO Research” website is processed by automated tools for the time strictly necessary to achieve the purposes for which it was collected.
Specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorized access.
7. SCOPE OF PROCESSING
The processing of your personal data is carried out using manual, computerized and telematic tools, suitable to guarantee the security and the confidentiality of the data itself. Recipients of the acquired data are both the Institute staff (regardless of any contractual relationship), expressly authorized in writing through an assignment, which is in agreement with the treatment areas established in relation to their duties; and third parties that process personal data on behalf of the Institute, following an agreement with safeguard clauses for your rights regarding the protection of personal data (appointment of Data Protection Officers).
Personal data related to you will not be subject to disclosure.
8. REDIRECTING TO EXTERNAL SITES
The “IEO Research” website uses a so-called “social plug-in”. Social Plug-ins are special tools that allow you to incorporate the features of the Social Network directly in the website (e.g., the “like” function of Facebook).
All social plug-ins on the site are marked with the respective logo owned by the social network platform.
When you visit a page on our site and interact with the plug-in (e.g., by clicking the “Like” button) or decide to leave a comment, the corresponding information is transmitted from the browser directly to the social network platform (in this case Facebook) and memorized by it.
9. DATA SUBJECTS’ RIGHTS
To specifically exercise all their rights regarding access, rectification, cancellation, limitation, opposition, portability of personal data; to know the name of the companies or third parties that will process your personal data, to investigate the issue of data retention or to know your right to complain to a supervisory authority, you may contact directly the Personal Data Protection Manager, using the following contact details:
10. CHANGES TO THE POLICY
The possible entry into force of new sector regulations, as well as the constant examination and updating of user services, may entail the need to change the methods of processing personal data of users. It is therefore possible that our policy may change over time, and so we invite visitors to consult this page periodically. For this purpose, the policy document highlights the date of updates.
Last update: November 2019.