Privacy Policy
1. Introduction
This Privacy Policy describes how ISME – Interuniversity Center of Integrated Systems for the Marine Environment (“we”, “us”, “our”) collects, uses, discloses and protects your personal data when you visit and interact with the website https://isme.unige.it (“Website”). This policy is provided in accordance with the EU Regulation (EU) 2016/679 (GDPR) and applicable Italian privacy law. (Global Practice Guides)
2. Data Controller
The data controller responsible for your personal data is:
ISME – Interuniversity Center of Integrated Systems for the Marine Environment
Address: Via all’Opera Pia, 13, 16145 Genova (GE), Italy
Phone: (+39) 010 353-2983/2982
3. Types of Data Collected
3.1 Automatically Collected Data
When you access the Website, we may collect certain technical data about your visit, including:
- IP address
- Browser type and version
- Operating system
- Pages visited and time spent
- Date and time of access
This information is collected for security, statistical and operational purposes, and is considered personal data under the GDPR. (unige.amministrazionetrasparente.cineca.it)
3.2 Cookies and Tracking Technologies
The Website may use cookies and similar technologies to provide a better user experience, including:
- Necessary/technical cookies
- Analytics cookies
- Third-party cookies (e.g., video embeds)
A detailed Cookie Policy is available here. Users must consent to non-essential cookies where required by law.
3.3 Embedded Content
The Website may include embedded content (e.g., YouTube videos). Such content may result in data sharing with third parties independent from ISME. We do not control how these third parties use your data, and you should review their own privacy policies.
4. Purpose and Legal Basis for Processing
We process your personal data for the following purposes:
| Purpose | Legal Basis |
|---|---|
| Security, server administration, and troubleshooting | Legitimate interest |
| Website analytics | Consent (when required) |
| Embedded content display | Consent (when required) |
The legal bases listed above are derived from Article 6 of the GDPR, which allows processing where there is consent, legitimate interest, or other lawful grounds. (Wikipedia)
5. How Data Is Shared
We may share data with:
- Hosting providers and infrastructure partners
- Analytics service providers
- Third-party services used for embedded content
We do not sell your personal data to third parties.
6. Data Retention
We retain your personal data only as long as needed for the purposes described above and in accordance with applicable law.
Technical logs are generally kept for a defined period for security monitoring and compliance, after which they are deleted or anonymized.
7. User Rights
Under the GDPR, you have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion (right to be forgotten)
- Restrict processing
- Object to certain processing
- Request data portability
- Withdraw consent at any time (without affecting processing prior to withdrawal)
- Lodge a complaint with the Garante per la protezione dei dati personali (Italian Data Protection Authority) if you believe your rights are violated (Garante Privacy).
To exercise your rights, contact us at the addresses listed in the About page.
8. Security Measures
We implement reasonable technical and organizational measures to safeguard your data from unauthorized access, disclosure, alteration, and destruction.