Privacy Policy

This page describes how the site is managed in relation to the processing of personal data of users who consult and use it. The information concerns the methods, times and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.

Place of data processing and assigned personnel
The processing connected to the web services of this site takes place at the suppliers of the internet services used to create and make the site available and at the offices of the Data Controller.
The data is processed only by appointed personnel, also for any maintenance and administration operations of the processing systems.

Types of data processed
Navigation and technically indispensable data.
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Data provided voluntarily by the user.
Data relating to identified or identifiable persons may also be processed on the basis of further information communicated by the interested party: for example, with the optional, explicit and voluntary sending of e-mail or telephone communications to the addresses indicated on this site, which implies the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data included in the communication.

Particular types of data provided voluntarily by the user.
The Website supports the adjustment of some parameters to facilitate user navigation, for example (not exhaustive) by enabling or disabling some elements of the page to reduce colors or reflections, facilitate concentration in reading by preventing possible sources of distraction, or allow reading for blind users. The activation of these settings involves the processing of particular categories of personal data, on the basis of Article 9, paragraph 2, letter a), as information that may refer to the user’s state of health. For this reason, UNISG requires the granting of specific consent to the processing, granted or revoked with the activation of the setting and acceptance of the cookies that characterize them.
The user can freely choose to activate or deactivate the settings.

Cookies
Cookies are small text strings that the sites visited by the user send to his terminal (usually to the browser) where they are stored before being re-transmitted to the same sites at the next visit by the same user. Two macro-categories are identified: “technical” cookies and “profiling” cookies.
This site uses the so-called “technical” cookies for the sole purpose of “carrying out the transmission of a communication over an electronic network, or to the extent strictly necessary for the provider of a service explicitly requested by the user, in order to provide this service” (art. 122, paragraph 1 , of the Code): they can be divided into navigation or session cookies, which guarantee normal navigation and use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas) and/or analytics cookies, assimilated to technical cookies when used directly by the site manager to collect information, in aggregate form, on the number of users and how they visit the site itself and/or functionality cookies, which allow the user to navigate according to a series of selected criteria (for example, the language, the products selected for purchase) in order to improve the service provided.
The use of “technical” cookies (session variables whose values ​​stored on the device’s hard disk can still be deleted: it is also possible to disable cookies by following the instructions provided by the main browsers) is strictly limited to the transmission of session identifiers ( consisting of random numbers generated by the server) and software usage data necessary to allow safe and efficient exploration of the site: session variables (so-called cookies) can avoid the use of IT techniques that are potentially detrimental to the confidentiality of users’ browsing users and do not allow the acquisition of personal identification data of the user.
This site does not in any way use so-called cookies. “profiling” (aimed at creating profiles relating to the user and used for the purpose of sending advertising messages in line with the preferences expressed by the user when browsing the internet).

Following the provision by the interested party, the website can keep track of the user’s interactions within the areas and sections that compose it. The Data Controller, through use of tools provided by third parties who have provided suitable technical and organizational measures to guarantee the freedom of the interested parties, such as for example the implementation of Do-No-Track mechanisms, can obtain feedback on the areas consulted by the users, and be able to have feedback on the structural effectiveness of the site and be able to undertake improvement actions.

This site uses so-called cookies. “third parties” aimed at receiving on your device, during navigation on a site, cookies sent from different sites or web servers (the information is stored by third parties): an example is represented by the presence of ” social plugins” for Facebook, Twitter, Google+ and Linkedin (these are parts of the visited page generated directly by the aforementioned sites and integrated into the page of the host site) whose use is aimed at sharing content on social networks (the presence of these ” plugin” involves the transmission of cookies to and from all sites managed by third parties: the management of information collected by “third parties” is governed by the relevant information to which please refer).
Complete list of third-party cookies used: Privacy Policy:

• com: www.addthis.com/privacy
• facebook: com: https://www.facebook.com/about/privacy
• com: www.google.it/intl/it/policies/privacy/
• com: https://www.linkedin.com/legal/cookie_policy
• com: https://twitter.com/privacy?lang=it
• com: www.google.it/intl/it/policies/privacy/
• com: https://tavoleaccademiche.unisg.it/
• com: https://unisg.esse3.pp.cineca.it/

Cookies that process particular categories of personal data
As anticipated in the privacy policy dedicated to the UNISG website, our web pages allow the user to enable particular settings to improve their browsing experience. Some of the settings have been specifically configured to assist users who may have seizures, low vision or blindness, or attention deficit.
Enabling cookies that allow the page to obtain a configuration suitable for what the user requests is equivalent to processing particular categories of personal data, as the choice of these settings is indicative of the state of health. The cookies that allow you to adjust these particular settings are the following, and are based on specific installation consent given by the user.

Provider / Domain Name Expiry Description

How can I disable cookies?
Most browsers (Internet Explorer, Firefox, etc.) are configured to accept cookies. However, most browsers allow you to control and even disable cookies through your browser settings. However, we remind you that disabling navigation or functional cookies may cause the site to malfunction and/or limit the service offered.

Personalized management table of cookies installed via the Site
Strictly necessary
Performance
Targeting
Functionality
Consent for cookie ID: d0cf04eb-d00d-4db7-83fb-55f9aec94b9b

Strictly necessary

Performance

Targeting

Functionality

Purpose of data processing, communication and dissemination
The personal data collected are used for the sole purpose of carrying out the services or services requested and are communicated to third parties only if this is necessary for this purpose. The services include: consultation and mere use of the site and its contents; access to the reserved area; reports; contact request; etc.
In any case, no data deriving from web services is disseminated or published without the prior consent of the interested party.
Finally, please note that in some cases (not subject to ordinary management) the Public Authorities may request news and information, including of a personal nature, which the Data Controller is required to follow up on.

Optional provision of data
Apart from what is specified for navigation and technically indispensable data, the user is free to provide personal data for specific requests on products and/or services. Failure to provide certain data, deemed essential, may make it impossible to obtain what is requested.

Legal basis. Possible management of consent to processing
When necessary, outside of cases in which the legitimate interest of both the owner and third parties is applied, and in any case after reading the information, the interested party is asked to express his/her consent to the processing and communication of his/her data for the purposes and within the limits described, under penalty of the impossibility for the Data Controller to process the data to carry out and implement the services requested by the interested party or proposed to him.

Treatment methods
The processing of personal data, understood as collection, recording, organisation, conservation, processing, modification, cancellation and destruction or the combination of two or more of these operations, takes place using manual, IT and telematic tools, also in an automated manner, with logic strictly related to the declared purposes and, in any case, in such a way as to guarantee security and confidentiality and for the time strictly necessary to achieve the purposes for which they were collected.
The data are processed lawfully and correctly, collected and recorded for specific, explicit and legitimate purposes, accurate, and if necessary updated, relevant, complete and not excessive with respect to the purposes of the processing, in compliance with the minimum security standards and fundamental rights and freedoms, as well as the dignity of the interested party with particular reference to confidentiality and personal identity.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
The data will be kept until the end of the legal period to defend oneself or assert a right in court, after the purpose (purpose of the processing) for which the data was collected has been exhausted.
Your personal data will not be transferred to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA).

Data Controller
The data controller is the University of Gastronomic Sciences, which is based in Piazza Vittorio Emanuele, 9, Pollenzo – 12042 Bra – Italy.

Applicable standard
European legislation, Reg. (EU) 2016/679, and Italian legislation, Legislative Decree 30 June 2003, n., apply to the processing of personal data relating to the site. 196 and subsequent amendments and additions, as well as the provisions of the Guarantor Authority for the protection of personal data.

Rights of interested parties
At any time the interested party may: exercise his rights (access, rectification, cancellation, limitation, portability, opposition, absence of automated decision-making processes) when provided for in relation to the data controller, pursuant to articles. from 15 to 22 of the GDPR; lodge a complaint with the Guarantor (www.garanteprivacy.it); and if the processing is based on consent, revoke this consent given, taking into account that the revocation of consent does not affect the lawfulness of the processing based on consent before the revocation.

Data Protection Officer
Requests should be addressed to the Data Protection Officer, responsible for data protection, via the address privacy@unisg.it to the attention of Eng. Massimiliano Bonsignori.

Contact forms, newsletters and communications via smartphone
The e-mail and telephone contacts used to send communications from the site and from Customer Relationship Management) come from voluntary registrations by the recipient who is always subjected to a confirmation request, as well as from information acquired in a context of sales of products or services of the Owner or otherwise similar. This includes the sending of information, promotional communications and further material. The user has the right to choose whether to receive communications also via the Whatsapp messaging app, for which the user is invited to consult the specific information available at the following address https://www.whatsapp.com/legal/:
It is underlined that contacts are not acquired from public subscriber lists. In the event that the communications are not of interest to the recipient, it is possible to avoid any further contact by clicking on the appropriate link contained in each message, or by writing to the contact details at the bottom exercising your right to cancellation from the lists dedicated to sending these communications.

In accordance with Reg.(UE) 2016/679 (GDPR)  and Italian law 196/03 pertaining to the treatment of personal data, the Associazione Amici dell’Università di Scienze Gastronomiche (Association of Friends of the University of Gastronomic Sciences) and the University of Gastronomic Sciences, both having headquarters at 9 Piazza Vittorio Emanuele, Pollenzo (12042 Bra, Cuneo, Italy), in their role as independent data treatment managers, are obligated to provide some information concerning the use of said data.

The person in charge of data processing is the Administrative Director.

Source of personal details

Students’ and prospective students’ personal data acquired by the university, i.e. private or sensitive information concerning their physical condition and personal habits, information about citizenship and country of origin, photographs and filmed documents acquired through the application and enrollment procedures, during events, classes, courses, seminars and/or through any subsequent academic procedures such as results of examinations and tests, paperwork for fee-exemption applications is collected directly from the student or prospective student and is freely provided by him or her.

Use of data

Personal data is handled within the context of regular academic, organizational, operative, administrative, and selection activities of the university on the basis of legal conditions identified in articles 6 to 9 del GDPR, including:

• uses strictly related to the fulfillment and implementation of academic services and educational aids, and particularly to student-selection procedures for enrollment purposes, formalities pertaining to the academic activities of the university, to enable students to use the services provided by the university, including job-placement and/or post-graduation programs, for courses with legal value and amateur, professional or business courses with no legal value
• uses strictly related to student-university relations, such as the acquisition of application and pre-application information, implementation of contracts with businesses or organizations providing student services, job inquiries, interviews concerning experiences at said University and current working conditions,
• uses related to law-enforcement activities or for fulfillment of obligations from law-enforcement authorities
• purposes related to the carrying out of the University’s institutional functions, such as the need to transmit the information to other public bodies (for example, the Ministry of Education, Universities and Research, the Regional Agency for University Studies, the Regional University Observatory, the Ministry of Finance) that manage the granting of research funds and/or fellowships for study and research purposes, projects for the development of the university and services in support of students’ rights
• purposes related to regular University activities (ex: drawing up of teaching/learning materials and their distribution, brochures and fliers, publications, audio/photo/video recordings made during the training and study courses, etc.) for which the interested party is in some cases asked to give (or deny) his/her specific consent (ex: the promotion and sale of products and services, customer satisfaction surveys, etc.);
• purposes related to the activities of the Association, for which the interested party is asked to give (or deny) his/her specific consent (ex: communication to interested third parties, promotion and participation in initiatives linked to the world of food and nutrition, etc.)
• UNISG promotional activities including publication of books, CVs, images, CDs, websites, etc., to which the interested party has the option of giving or withholding consent;
• purposes connected with the realization of photographs and videos in the buildings and exteriors on the University campus or other University premises, used by the University and/or the Association solely for promotional and/or informative-journalistic purposes;
• statistical data processing of aggregate and individual anonymous data.

Confidentiality of personal data

Personal data may only be processed for institutional purposes that could not be carried out otherwise, and only to comply with or require compliance with specific requisites, or to carry out specific obligations required by law as part of the institution’s functions. Said data is processed using modalities designed to prevent the violation of the interested parties’ rights, fundamental freedoms and personal dignity.

Data handling methods

Data handling includes collecting, recording, organization, filing, processing, updating, cancellation, and destruction, or the combination of two of more of these actions.

Based upon the above-listed actions, and according to the required procedure, handling of personal data will be done manually or using IT tools, always ensuring that safety and privacy are safeguarded. Personal details will be correctly and lawfully handled; must be collected and filed for specific, clear, legal purposes; must be accurate, up to date, thorough, pertinent and not exceeding the purpose of the data handling procedure,, with adequate measures of security and protection.

Transfer data to a recipient in a third country or to an international organization outside of the european union (eu) or the european economic space (see)

By default, personal data will not be transferred to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA), except in specific cases such as travel training. In these cases where personal data will be transferred to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA), the Data Controller will make sure to ensure that, in the absence of a decision of adequacy of the European Commission, there are adequate guarantees for the fundamental rights and freedoms of the interested parties. However, to transfer any strictly necessary personal data, explicit consent is required according to the directions of the Travel Regulations and without prejudice to the possibility of restricting the transfer for well-grounded reasons.

Duration

Personal data will be filed and handled in such a way that the individual to whom the data pertains is identified for a period of time not exceeding that needed to complete the purpose for which the data were collected or subsequently handled in the first place and to the legal prescription for the exercise of rights or defense in judicial court.

Compulsory provision of data and consequences of non-compliance

If the person to whom the data pertains does not communicate his or her personal data and does not allow the handling thereof, except in the cases where this is optional, it will be impossible to complete any university-enrollment procedure. In this event, the candidate’s application will be void.

Personal data circulation (limited to information strictly necessary to achieve specific purposes)

Personal data may be circulated to:

• external institutions governing and monitoring university activities
• university staff and consultants working for the person in charge of data handling procedures
• external individuals involved in undergraduate/postgraduate internship projects and other universities in the case of student transfers or enrollment in courses in Italy or abroad
• external individuals, acting on behalf of UNISG, in charge of specific undertakings in the above-mentioned areas. The list of external individuals to whom personal data is transferred is available at the Registrar’s Office
• banks in charge of returns and payments
• to the founders of the University, among which Slow Food;
• agencies and/or companies that support the University;
• agencies and/or companies that collaborate in the teaching and research activities carried out at the University;
• external individuals authorized by the student to carry out specific purposes
• external or internal individuals in all cases authorized by Italian law.

Some identification information not considered confidential and videos and photographs may be posted on the University’s web portal, or other communication supports, unless permission is specifically denied.

Rights of the concerned parties

At any time the interested party may: exercise his / her rights (access, rectification, cancellation, limitation, portability, opposition, absence of automated decision-making processes) when intimated towards the data controller, pursuant to article 15 to 22 of the GDPR; to propose a claim to the Guarantor (www.garanteprivacy.it). And if the treatment is based on consent, he or she can revoke the consent given, taking into account that the withdrawal of such consent does not affect the lawfulness and legitimacy of the treatment based on consent before revocation.

We hereby underscore that, due to the special nature of the relationship and the public nature of the University, students may not request that their data be cancelled, but may at any time request that their personal data be updated.

With reference to photographs and videos, every precaution shall be taken to protect the right of the interested party to not appear, establishing, where possible, suitable areas that will not be photographed or filmed.

Data protection officer

The requests must be addressed to the Data Protection Officer, responsible for data protection, to the address privacy@unisg.it  to the attention of the Engineer. Massimiliano Bonsignori.

Authorization for the handling of data

In its role as a public non-profit body, the University is not required to request consent in order to carry out all the processing strictly necessary to the fulfillment of its institutional role, in compliance with the applicable public norms and regulations (laws, decrees, etc.).

Therefore, regarding the information indicated above and data circulation for other than strictly institutional purposes, and to the Association of Friends of the University of Gastronomic Sciences, the promoter of the University, and to Slow Food, founding member of the Association itself, and the various groups it is connected to, I hereby give my express consent, including the transfer and circulation in Italy and abroad of my personal data for the purposes and according to the modalities specified above, also with respect to the eventual treatment of sensitive information, which is covered by the confidentiality clause.

This information supplements the general information, in accordance with Reg. (EU) 2016/679 (GDPR) and Italian Legislative Decree 30 June 2003, no. 196 (Personal Data Protection Code, hereinafter referred to as “Code”) and subsequent amendments and additions.

It relates to the personal data collected through the “Presences” procedure, based on a web app, which allows students and university lecturers to transmit and collect data about classroom attendance and/or participation in initiatives organized by the University through computer support and online connections throughout the duration of their studies, managed by the University. We would like to inform you of the following:

1. The processing of your personal data, collected from you exclusively through electronic devices such as smartphones, tablets, PCs and their connection to the Internet, is carried out by those in charge of and responsible for the processing of the data through electronic or automated means. It is used (a) to determine the attendance rate of courses and participation in examinations according to the conditions set by the lecturer responsible for the “attending students”; (b) the data may also be used for the purpose of performing checks and monitoring students. Should these checks show that any of the data are false; the University may initiate disciplinary action.
2. Personal data collected will not be transferred or shared to a recipient in a third country or to an international organization outside the European Union (EU) or the European Economic Area (EEA)
3. The data collected will be kept until the end of the legal prescription to defend oneself or to make use of a right in the judicial court, after the purpose (treatment purpose) for which the data had been collected.
4. Personal data may be communicated to those responsible for processing, both internal and external to the organization, who carry out specific tasks and operations as permitted by law. Personal information that is individually reported will not be disclosed.
5. See also the specific Cookie Policy for the application.
6. The provision of personal data is optional, but it is essential to access the services referred to in paragraph 1, point (a). Indeed, refusal to provide the data may result in limited access to the exams as an “attending student.” Regardless, the data transmitted through the online procedure must be accurate and real; otherwise, the student may face the disciplinary action cited in paragraph 1, point (b).
7. Consenting to the processing of the provided data is not necessary as the “Presences” procedure was approved on 30/05/2017 and as a contractual obligation is the only admissible method for attendance registration.
8. At any time the interested party may: exercise his / her rights (access, rectification, cancellation, limitation, portability, opposition, absence of automated decision-making processes) when intimated towards the data controller, pursuant to article 15 to 22 of the GDPR; to propose a claim to the Guarantor (www.garanteprivacy.it). And if the treatment is based on consent, he or she can revoke the consent given, taking into account that the withdrawal of such consent does not affect the lawfulness and legitimacy of the treatment based on consent before revocation.
9. The owner of the processed data is the University of Gastronomic Sciences (unisg.it), Piazza Vittorio Emanuele II, 9, Pollenzo,12042 Bra (Cn), Italy.

• The Manager of the collected data is the Administrative Director.
• The requests must be addressed to the Data Protection Officer, responsible for data protection, to the address privacy@unisg.it to the attention of the Engineer. Massimiliano Bonsignori.

“Presences” Cookie Policy

WHAT ARE COOKIES?

Cookies are small strings of text that a website can send to your device while browsing (whether you are using a PC, notebook, smartphone or tablet, they are generally stored directly on the browser). The same website that transmitted them can then read and record cookies found on the same device to gather different types of information.

COOKIE ORIGIN

By visiting a website, you may receive cookies either from the visited site (“proprietary” or “own” cookies), or from sites managed by other organizations (“third party cookies”) that have plugins, widgets and specific embedded features on the website/application pages you are browsing.

The presence of these plugins involves the transmission of cookies to and from all sites managed by third parties.

TYPE OF COOKIES

Technical cookies

Navigation, functionality and session cookies are strictly used to ensure the proper functioning of a site.

Analytics cookies gather aggregated information about the number of users, as well as how often they visit the site. Their goal is the continuous improvement of the functionality, content organization and support of different platforms and browsers.

Cookie widgets. This category includes all the graphic components whose purpose is to facilitate the user’s interaction with the system. For example, Google Maps, Sharethis, etc. are widget cookies. More information regarding individual privacy policies can be found directly on the websites themselves.

Profile cookies

These are permanent cookies used to identify (whether anonymously or not) the user’s preferences and enhance their navigation experience.

THE “PRESENCES” PROCEDURE

The “Presences” procedure is based on a web application (wedo.unisg.it) that uses only proprietary and third party cookies. There are neither profile cookies nor third party profile cookies on the site.

The management of information collected by “third parties” is governed by the relevant information to which reference is made. To ensure greater transparency and convenience, listed below are the web addresses of the sites that provide information with regard to managing cookies (see the “GOOGLE ANALYTICS COOKIES” section below).

It is not necessary to consent to the processing of technical data regarding cookies. However, you can change your browser options to disable cookies according to the procedures detailed by each browser (see the next paragraph on “HOW DO I DISABLE COOKIES?”). Keep in mind, however, that disabling cookies can also disable some of the features on the application.

Interested users may exercise their rights under Article 7 of the Privacy Code (see the general Privacy Policy) by contacting the person responsible for data processing indicated below.

The owner of the collected data is the University of Gastronomic Sciences (www.unisg.it), Piazza Vittorio Emanuele II, 9, Pollenzo,12042 Bra (Cn), Italy.

The Manager of the collected data is the Administrative Director.

GOOGLE ANALYTICS COOKIES

Google Analytics is a web analytics service provided by Google, Inc. (“Google”), which uses “cookies” through which it collects user information that is transmitted to and deposited in Google servers in the United States.

The service has been configured so that the user’s IP address cannot be traced.

Google uses this information to track and review your site usage, compile site activity reports for website operators, and provide other services related to website activities and Internet usage. Google does not associate the user’s IP address with any other data held by Google. Any refusal to use cookies by selecting the appropriate setting on your browser may prevent you from using all the features of this website.

Google Analytics cookies can also be disabled by following the procedure outlined by Google:

https://tools.google.com/dlpage/gaoptout?hl=it

HOW CAN I DISABLE COOKIES?

You can change your browser to disable cookies by following some very simple steps.

To delete cookies from your smartphone/tablet browser, refer to the device’s operating manual.

Warning: Turning off cookies can disable some features of the website.

Safari:

1. Open Safari.
2. Choose “Preferences” in the toolbar, then select the “Security” panel in the dialog box that follows.
3. In the “Accept cookies” section, you can specify whether and when Safari should save cookies from websites. For more information, click the Help button (marked with a question mark).
4. For more information about cookies that are stored on your computer, click on “Show cookies.”

Firefox:

1. Open Firefox
2. Press the “Alt” button on the keyboard.
3. In the toolbar at the top of your browser, select “Tools” and then “Options”.
4. Then select the “Privacy” tab.
5. Go to “History settings” and then “Use custom settings”. Uncheck “Accept cookies from sites” and save your preferences.

Internet Explorer:

1. Open Internet Explorer
2. Click on the “Tools” button and then on “Internet Options”
3. Select the “Privacy” tab and move the slider up or down according to the privacy level you want to set (move it up to lock all cookies, or down to allow them all).
4. When you are done, click “OK.”

Google Chrome:

1. Open Google Chrome
2. Click on the “Tools” icon
3. Select “Settings” and then “Advanced Settings”
4. Select “Content Settings” under “Privacy”
5. By clicking on the “Cookies” tab, you can clear cookies and save your preferences.