Privacy

Overview

In accordance with Article 13 of Regulation (EU) 2016/679 (the General Data Protection Regulation or GDPR), in this notice the University of Milan (also referred to below as the ‘University’ and represented by the Rector pro tem) provides users of the https://users.unimi.it/acaselli with information on how their personal data will be used.

This notice only applies to the internet sites referred to above. It follows that the information in this document does not apply to websites other than those referred to above, including where accessed via links provided in the same.

This is without prejudice to compliance by the University with the legislation in force on transparency and on the compulsory disclosure of data and documents.

Data Controller, Data Protection Officer (DPO) and Data Processor

The Data Controller is the University of Milan, represented by the

Rector pro tem,
Via Festa del Perdono 7,
20122 Milan, e-mail infoprivacy@unimi.it.

In accordance with Article 37 et seq. of Regulation EU 2016/679 (the GDPR), the University has appointed

Prof. Pierluigi Perri as DPO. c/o ‘Cesare Beccaria’ Dept.
Via Festa del Perdono 3, 20122 Milan, e-mail dpo@unimi.it.

The data processor for provision of the University Portal services is the CINECA consortium, registered office Via Magnanelli 6/3, 40033 Casalecchio di Reno (BO).

2. Types of data processed

During normal operation and using automated systems, the IT systems and application procedures that operate the internet sites referred to above acquire the following types of data:

1. browsing data captured during the visit to the website, the transmission of which is implicit in the use of Internet communication protocols, examples here being: IP address for the device connected to the site, type of browser used, name of the internet service provider or ISP, date and time of the visit and the visitor’s referral and exit web page, etc;
2. browsing data captured via Google Analytics, using all appropriate mechanisms to reduce the possibility of connecting users being identified, examples here being: type of device used to connect, town connected from and duration of visit to a site, etc.;
3. data relating to the browsing session captured via New Relic in order to monitor application performance and use of the resources. There is no user or IP profiling; the data captured stays in the form of aggregated statistical data;
4. data captured via cookies during user browsing of the site; further information about the cookies used on the web portal or by the sites that make up its system can be found in the cookie policy in full as annexed.

3. Purposes of the processing

The data captured is only used for the University’s institutional activities and in order to:

1. allow browsing of the University’s web portal (www.unimi.it) and sites with URLs ending in *.cdl.unimi.it;
2. provide the user with the information and services required (specific notices in summary form appear on the pages of the portal that deal with specific on-demand services);
3. gather anonymous statistical information on use of the University’s web portal or the connected services, check that it is working properly, conduct monitoring to ensure its security and identify the steps to be taken to improve it (in terms of the browsing data);
4. discharge obligations pursuant to law, comply with orders issued by public authorities, establish liability in the event of cybercrimes committed against the site or its users.