Privacy Policy

The Global Campus of Human Rights with registered office in Venice Lido (VE), Riviera San Nicolò, 26, VAT/VAT/C.F. in the header (hereafter only “GC” or “Data Controller”), as Data Controller, informs you, in accordance with art. 13 of the Legislative Decree. 196/2003 and subsequent amendments (“Privacy Code”) and EU Regulation 679/2016 applicable from 25 May 2018 – General Regulation on Data Protection (“GDPR”) (hereinafter “Privacy Code” and “GDPR” are collectively referred to as “Applicable Regulations”), that your data (i.e. data collected only through this website, hereafter only “Site”), will be will be processed in the subsequent manner and for the following purposes:

 

1. Specific sections of the website where we collect data

For specific reference to the sections of the Site which Users access occasionally and personal data is provided, check the pdf file below “Personal data treatment brief – web.pdf

 

2. The types of information we collect
  • Personal data provided by the User for the use of services or interaction with the Site’s functionalities
  • Navigation data
  • Data provided spontaneously by the User
  • Cookies

 

3. Methods of data processing

The processing of personal data is carried out by computer, telematic and manual means, with logic strictly related to the purposes and, in any case, so as to ensure the security of the same.

 

4. Purposes and Processing Data
  • Statistical research/analysis purposes on aggregate or anonymous data, without any possibility of identification, aimed at measuring the functioning of the Site, measuring traffic and evaluating usability and interest;
  • To provide the services requested by the interested party (e.g., management of the registration and access processes to the Site, management and maintenance of the Site, management of the User’s account, user assistance, and management of any complaints, processing of data for the provision of individual services requested by the User);
  • For the fulfilment of any legal obligations such as, for example: safety incident reporting obligations;
  • Purposes related to the establishment, exercise or defence of a right in court or whenever the courts exercise their judicial functions;
  • For marketing purposeswith the consent of the interested party, pursuant to art. 6 par. 1 letter a) of GDPR (express consent of the interested party), by sending, by e-mail, traditional mail (paper), telephone, fax and/or SMS/MMS, push notifications and through any other IT channel of newsletters and commercial communications relating to the products or services offered by GC, as well as, statistical analyses, surveys and market surveys.

 

5. Circulation and Communication of Data

Your personal data may be shared, for the purposes specified, with:

 

  • Subjects necessary for the provision of the services offered by the Site including, by way of example: hosting and backend infrastructure providers of the Site, providers of services for the management of the email/telephone contact database, the sending of emails and the analysis of the functioning of the Site; IT services, management of marketing and analysis activities. These parties typically act as GC’s data processors;
  • Persons authorised by GC to process personal data who are committed to confidentiality or have an adequate legal obligation of confidentiality; (e.g., employees and consultants appointed by the Data Controller);
  • Communicated to third parties who process the data autonomously and in compliance with the law only to execute the purchase contract;
  • Courts in the exercise of their functions when required by the Applicable Rules.

 

6. International Data transfers

Personal data may be transferred abroad within or outside the European Union, within the limits and under the conditions set out in Articles 44 et seq. of EU Regulation 2016/679 in particular:

 

  • to third countries international organizations for which the Commission has intervened with an assessment of adequacy (art. 45 EU Regulation 2016/679)
  • to third countries or international organisations which have provided adequate guarantees and where the person concerned has effective rights and remedies (Article 46 EU Reg. 2016/679);
  • to third countries or international organisations on the basis of derogations in specific situations (art. 49 EU Reg. 2016/679).

 

7. Data retention

The personal data of the interested party will be kept for the time necessary to achieve the purposes described above (4. Purposes and Processing Data).

 

  • For the purposes referred to in point 1: indefinitely because the data are anonymous or irreversibly anonymized;
  • For the purposes referred to in point 2: until the interested party decides to unsubscribe from the service;
  • For the purposes referred to in point 3: for reporting computer incidents 30 days;
  • For the purposes referred to in point 4: time allowed by Italian law to protect his interests (Art. 2947 paragraphs 1 and 3 C.C.);
  • For the purposes referred to in point 5: in compliance with the terms prescribed by law for the type of activity (24 months for marketing) and in any case until the revocation of consent or until the exercise of the right of objection art. 21 GDPR;

Your personal data will only be stored for the purpose of fulfilling the legal and regulatory obligations of the Data Controller, or for purposes of proof relating to the exercise of the right of defence.

 

8. The rights of the User

Within the limits of the Applicable Regulations, you have the right to ask GC, at any time, for access to your personal data, to rectify or delete them or to oppose their processing, to limit their processing and to obtain the data concerning you in a structured, commonly used and readable by automatic devices format.

 

Requests should be sent by e-mail to: privacy@gchumanrights.org.

 

In accordance with the Applicable Regulations, you have in any case the right to lodge a complaint with the competent supervisory authority (Guarantor for the Protection of Personal Data) if you believe that the processing of your personal data is contrary to current legislation.