Discover the next Open Days Milano · Firenze · London · Paris · Dubai Register nowDiscover the next Open Days
EN
MENU
Close
<— Back

Maze35 Magazine Privacy Policy

Information pursuant to Art. 13 EU Regulation 2016/679 (GDPR)

1) Why do you receive this communication

Istituto Marangoni S.r.l. would like to inform you of what data it collects and how it collects it when you subscribe to the Maze35 Newsletter, in order to guarantee respect for your rights and fundamental freedoms as a data subject, with particular reference to the confidentiality and security with which the data is processed.

2) Data Controller

The data controller is Istituto Marangoni S.r.l. - Via Pietro Verri, 4, 20121 Milano MI, e-mail address: privacy@istitutomarangoni.com (hereinafter referred to as "Data Controller" or just "Data Controller").

The Data Controller has appointed a Data Protection Officer (DPO), who can be contacted at the following e-mail address: dpo@istitutomarangoni.com

3) What personal data we collect

The Data Controller collects and stores your following data:

  • Email address you entered when subscribing to our newsletter via our website or, if you are already a student or employee of Istituto Marangoni, your academic or work email address.
4) For what purposes we use your personal data and on what legal basis

The Data Controller uses your data for the following purposes:

  • Enable you to subscribe to the Maze35 newsletter and thus send you the relevant periodic e-mails.

 

For the purpose described above, your data is processed on the following legal bases:

 

  • Your free, specific, informed and unequivocal consent in the event that you voluntarily subscribe to the newsletter via our website (Art. 6(1)(a) GDPR).
  • The data controller's legitimate interest in involving you in Maze35 communications as an internal magazine of Istituto Marangoni if you are already one of our students or employees (Art. 6(1)(f) GDPR).
5) How long we keep your data

If the processing, in the light of point 4 above, is based on your consent, the Controller shall process your data until you withdraw your consent, which may take place at any time in the manner set out in point 10 below.

 

If, on the other hand, the processing is based on the legitimate interest of the Data Controller, the data are retained until you object to the processing in the manner indicated in point 11 below or, if you do not object, until the termination of your academic or contractual relationship with Istituto Marangoni.

6) How we process your personal data

The Data Controller processes your data by computerised means using personnel authorised to carry out collection, use, registration, consultation, storage, deletion, extraction, communication and restriction operations.

7) Who can access your personal data

Your data may only be accessed by persons authorised by the Controller and exclusively for the pursuit of the purpose indicated in point 4 above.

Your data may also be processed by suppliers appointed as external data processors, which the Controller uses to send the newsletter, as well as possibly by sub-suppliers chosen by the external data processors to enable the service to be provided.

In any case, access to the platform provided for sending newsletters is only accessible by personnel authorised by the Controller.

8) Where your personal data reside

Your data resides on servers located within the European Economic Area (EEA), also in the case the suppliers use sub-suppliers for sending the newsletter. If for technical and/or operational reasons it is necessary to use parties located outside the EEA, the processing of your data will be regulated in accordance with the provisions of the GDPR, therefore, all necessary precautions will be taken in order to guarantee the protection of your data, in accordance with Art. 46 et seq. of the GDPR.

9) Is the provision of your data compulsory?

No, the provision of your data is optional.
However, failure to provide it will not allow Istituto Marangoni to send you the Maze35 newsletter emails.

10) What are your rights in relation to the GDPR?

According to the provisions of the GDPR, in connection with the processing in question, the Data Controller guarantees the following rights:

  • Right to withdraw consent [Art. 7 GDPR] (right to withdraw consent at any time as easily as it is given). You may revoke your consent at any time by clicking on the "Unsubscribe" button in all newsletter emails or by alternatively writing to the Data Controller or the DPO at the email addresses below.
  • Right of access [Art. 15 GDPR] (right to obtain confirmation of the existence or non-existence of the data subject's personal data and a copy thereof in intelligible form)
  • Right of rectification [Art. 16 GDPR] (right to obtain from the data controller the rectification of inaccurate personal data concerning you without undue delay);
  • Right to erasure [Art. 17 GDPR] (right to erasure of data of data subjects.

Note: should it prove impossible to proceed with the deletion of data by virtue of the above, the Data Controller will inform the data subjects of the reasons why it is impossible to do so);

  • Right to restriction of processing [Art. 18 GDPR] (right to obtain restriction of processing, e.g. if the accuracy of the data is contested or in case of unlawful processing);
  • Right to data portability [Art. 20 GDPR] (where processing is based on your consent, right to receive in a structured, commonly used and machine-readable format personal data concerning you and to transmit such data to another data controller without hindrance from Istituto Marangoni);
  • Right not to be subjected to automated decision-making [Article 22 GDPR] (right not to be subjected to a decision based solely on automated processing that produces legal effects or similarly significantly affects data subjects).

These rights may be exercised in writing by sending an e-mail todpo@istitutomarangoni.com or . privacy@istitutomarangoni.com

At the same contacts, further information on the processing of personal data may be requested at any time. It should also be noted that the exercise of one's rights must not prejudice and/or infringe the rights and freedoms of others.

The Data Controller undertakes to reply to requests within a period of one (1) month, except in the case of particularly complex requests, for which it may take up to three (3) months. In any event, the Data Controller shall explain the reason for the wait within one (1) month of the request.

The outcome of the request will be provided in writing (at the request of the data subject) or electronically (and, in this case, free of charge). The Data Controller specifies that a possible contribution may be requested from the data subject if your requests are manifestly unfounded, excessive or repetitive: in this regard, the Data Controller will keep track of the requests.

The Data Controller, in accordance with Article 19 of the GDPR, undertakes to inform the recipients to whom the data subject's personal data have been disclosed of any rectification, erasure or restriction of processing requested by the data subject, where possible.

11) Right to object (Art. 21 GDPR)

You also enjoy the right to object to processing based on legitimate interest (Art. 6(1)(f), EU Regulation), by clicking on the "Unsubscribe" button present in all newsletter mails or by contacting the Controller or the DPO at the contact details indicated in the previous paragraph.

12) Right to lodge a complaint (Art. 77 GDPR)

Should you consider that your rights have been compromised or infringed, or that the processing of your data is contrary to the legislation in force, you have the right to lodge a complaint with the Italian Data Protection Authority at the following web address: https://www.garanteprivacy.it/home/diritti/come-agire-per-tutelare-i-tuoi-dati-personali.

 

13) Updating this policy

This notice is subject to change. Any substantial changes will be communicated by e-mail or via our institutional website.