Privacy policy
This Privacy Policy (hereinafter, the “PRIVACY POLICY“) regulates, in general, the collection and treatment by FONDAZIONE EBRIS (hereinafter, “EBRIS“) of the personal data that the any person provides as user of the website accessible through https://opade-project.eu/ domain name (hereinafter, the “WEBSITE“), including blog services, social networks, information services “Newsletter» or any other functionalities available at any time through the WEBSITE. All this without prejudice to the specific provisions established in certain sections, forms or services available on the WEBSITE in order to provide the user relevant information and, where appropriate, obtain the corresponding consent.
EBRIS reserves the right to modify the PRIVACY POLICY to adapt it to new legislative, jurisprudential and/or administrative updates, as well as to the practices developed at that moment through the WEBSITE, taking into account all user’s rights and interests.
Nevertheless, EBRIS will provide suitable technical resources to the user to allow the PRIVACY POLICY access in order to fill out the corresponding information obligations that EBRIS must respect according to the data protection regulation.
1. Who is responsible for user’s data processing?
FONDAZIONE EBRIS (hereinafter, “EBRIS”), company with registered office address in Via De Renzi 1, Salerno, 05161950653 Tax ID, will be responsible for the treatment of user’s data.
For any question related to the PRIVACY POLICY and/or user’s personal data processing, the user can contact the company at the following postal address and/or email address info@ebris.eu.
2. How the company has obtained user’s data?
The data managed by EBRIS have been provided by the user, through (i) the different forms that the user has filled out when browsing the WEBSITE (e.g., registration as a WEBSITE user, forms referred to job offers and/or application processes, etc.); or (ii) by sending an email enquiry.
In case that the provided personal data belong to a third party, the user will have to guarantee that he/she has informed the mentioned third party about the PRIVACY POLICY and the user has the third party’s authorization to provide these data to EBRIS for the purposes indicated in the following paragraphs.
3. What type of data does the company process?
The data managed in EBRIS are those that the user has provided in the forms and/or email address that the company uses to contact purposes.
More specifically, EBRIS manages the following data categories, depending on the WEBSITE use:
- Identification and contact data (e.g., name, surname, identity card number, postal and electronic address, telephone, etc.).
- Internet browsing data (e.g., IP address, visits to web pages, connections to Wi-Fi networks, etc.).
- Personal profile data, education, employment, etc. (in the case EBRIS job applications/offers processes in which the user voluntarily participates).
4. For what purpose and according to which legitimacy does the company manage user’s data?
User’s personal data management has the following purposes:
- Process and manage information requests, suggestions, complaints or claims that the user make through the WEBSITE or email.
- Process and manage service contracting and provision formalized by EBRIS through the WEBSITE.
- Manage user’s job application, registration and participation in the corresponding selection process.
EBRIS’s personal data management is developed in accordance with the applicable regulations, based on user’s consent given at the time of collecting the personal data that the user has voluntarily provided through the corresponding tools established for this purpose on the WEBSITE.
The company reminds that, at any time, the user can freely revoke his/her consent without any charge according to the terms explained in Section 7.
5. To whom can the company send user’s data?
The company informs that user’s personal data may be shared with the following third parties:
- Organizations and Public Administrations to which EBRIS has the legal obligation to communicate user’s data.
- When the user gives his/her consent the entities part of EBRIS’s same business group, with the purpose of attending user’s requests and queries and/or sending the user commercial communications regarding the mentioned entities and their respective activities or products.
As well, the company informs the user that his/her personal data could be communicated to third entities that provide services to EBRIS and, some of which, as Data Processors, may have data processing centers located outside the European Economic Area, so the user’s data could be subject to international data transfer according to the applicable legal guarantees.
6. How long will the company keep user’s data?
In general terms, personal data will be kept as long as the user does not revoke his/her data treatment consent or requests data removal or once that the time needed by EBRIS to meet the corresponding legal obligations.
In any case, the company informs the user that EBRIS has established internal data filtering policies to control the period of storage of owned personal data. Consequently, the data could be canceled once the company considers that these data are no longer necessary and/or adequate for the purpose for which they were collected.
7. What are user’s rights?
Applicable data protection regulations guarantee the user several rights related to his/her personal data that the user may apply during data processing. These mentioned rights are following ones:
- Data access: the user has the right to check his/her data to know concerning personal data that are being managed by the company.
- Request the rectification or removal of user’s data: under certain circumstances, the user has the right to rectify those inaccurate of concerning personal data that are being managed by the company or, even, to request its removal when, among other reasons, the data are no longer necessary for the purposes to which data were collected.
- Request the limitation of user’s data management: under certain circumstances, the user has the right to request the limitation of his/her personal data processing. In that case, the company will keep the mentioned data only for the compliance or defense of claims according to the data protection terms established in the applicable regulation.
- User data portability: under certain circumstances, the user has the right to receive the concerning personal data provided to the company in a structured, commonly used and machine-readable format and to transfer them to another data controller.
- Opposition to user’s data processing: under certain circumstances and some reasons related to user’s particular situation, the user has the right to oppose the processing of his/her data. In that case, the company will stop processing these data except that, due to legitimate reasons or the implementation or defense of possible claims, these data will need to be kept.
As well, the user has the right to withdraw at any time his/her consent, not affecting this decision the legality of the data treatment based on the consent prior to its withdrawal.
The user can exercise these rights under written request addressed to EBRIS, specifically to the postal address indicated in Section 1 or by sending an email addressed to info@ebris.eu.
Finally, the user can present a claim in the corresponding Control Authority (in Italy, the Italian Agency for Data Protection), especially when the user has not obtained satisfaction in the exercise of his/her rights. The user can contact the mentioned Authority through the following website: https://www.garanteprivacy.it/
8. Security measures
EBRIS will treat user’s data every time in an absolutely confidential way and keeping the mandatory duty of secrecy according to the provisions established in the data protection applicable regulations and adopting the corresponding technical and organizational measures for this purpose, necessary to guarantee the security of user’s data; prevent its alteration, loss, treatment or unauthorized access and taking into account the state of technology, the nature of the stored data and the risks to which they are exposed.
9. Cookies policy
Additionally, the company informs that EBRIS has established a Cookies Policy accessible through the following link.