Privacy and Cookies Policy Data Protection Game
Pursuant to article no. 13 of the Regulation EU n. 2016/679 (GDPR), and in general in observance of the principle of transparency set forth in the above Regulation, personal data will be processed with automated tools for the management of web services connected with the Data Protection Game website, within the framework of the institutional objectives of scientific research and administrative activities.
The Data Controller is Archimede Solutions.
For contact and specific information regarding the protection of personal data, including the exercise of the rights referred to in item 9, please send an e-mail to: firstname.lastname@example.org
Data Protection Officer
Pursuant to art. 37 of the Regulation, the Data Controller has designated a Data Protection Officer (DPO). The DPO may be reached to: email@example.com
Place of Data Processing and Data Sharing
The personal data that appear on the website and the relevant web services are mainly processed in the offices located in Geneva, Switzerland. Physical location of the server where web site is hosted is in Switzerland.
In case of need, website related data may be processed by the staff of the website technological maintenance provider, at the provider’s headquarters.
No data deriving from the web service is shared or disseminated, except in cases expressly provided for by the law. Personal data provided by users are used only to perform the service or work required and are disclosed to third parties only if this is necessary for that purpose.
We use physical, technical, and administrative measures to safeguard information in our possession against loss, theft and unauthorized use, disclosure, or modification. Please note, however, that no data transmission or storage can be guaranteed to be 100% secure. As a result, while we strive to protect the information we maintain, we cannot ensure or warrant the security of any information that you transmit to us.
Types of processed data and purpose of the processing
When users browse the website, it acquires some navigation data, whose transmission is implicit in internet communication protocols. Data are not collected to be associated to the identified people concerned.
Data may be used to obtain aggregated and anonymous statistical information on website usage and to check its correct operation. Data are stored only for as long as it is necessary.
Data may be used to ascertain the responsibility of users in case of potential digital crimes affecting the website.
Data provided voluntarily by users, the optional, voluntary and explicit transmission of personal data, including email address entails the subsequent acquisition of such data for the sole purpose of replying/responding to the users’ requests and managing the web services.
Cookies active in this website do not record personal data.
Third-party profiling cookies
These cookies are installed by parties other than Archimede Solutions and need your consent to be installed. If you refuse consent, they will be not installed. We may allow third-parties from other providers that need your consent; if not given they will not be installed.
Please follow the links below to view the privacy policies of the above third parties where you will be allowed to consent to the installation of such cookies. Please note that if you do not express your preference and continue your navigation in the website, you will consent to the use of such cookies.
- Drupal Cookies
To disable, remove or block cookies you can use your browser’s settings or the DNT option (Do Not Track), if applicable. Archimede Solutions does not guarantee the full operation of the website when cookies have been disabled.
Method and length of data processing
Personal data shall be processed:
- with automatic tools;
- by individuals authorized to perform such tasks by the Law;
- by using proper measures to ensure confidentiality and avoid access by non-authorized third parties;
- only for the time necessary to achieve the purposes for which they were collected.
Rights of the person concerned
Pursuant to Section III of the GDPR, the person concerned shall be entitled to exercise their right to:
a. access personal data (you will therefore have the right to have free information about the personal data held by the Data Controller, as well as to obtain a copy thereof in an accessible format);
b. amend incorrect, inaccurate or old data (upon your request, where the data do not express evaluation elements);
c. withdraw consent (if you had consented to the processing, you may withdraw your consent at any time and upon such revocation of consent your data shall no longer be processed);
d. cancel their personal data – right to be forgotten (for example, in case of withdrawal of consent, if there is no other legal basis for data processing);
e. restrict data processing (in certain cases – dispute the accuracy of the data, within the timeframe necessary for verification; dispute the lawfulness of the processing with refusal to the cancellation; your need to use the data to exercise your defence rights, while they are no longer useful for the purposes of the processing; in the event that the processing has been denied, while the necessary checks are being carried out – the data will be stored in such a manner that they may be restored if need be, but, in the meantime, cannot be consulted by the Controller if not in relation to the validity of your request for restriction);
f. deny consent to the processing due to legitimate reasons (under certain circumstances, you may in any case object to the processing of data, and in any case you may refuse processing for direct marketing purposes);
g. data portability (upon your request, the data shall be transmitted to the subject indicated by you in such a format that they can be easily consulted and used);
h. advance a dispute to the Supervisory Authority (Privacy Authority);
Changes To This Policy
Exercise of users’ data protection rights
You may contact us, via email at firstname.lastname@example.org, in order to assert your rights, namely: the confirmation of the existence of data concerning yourself and their origin and processing and the purposes thereof; the cancellation, transformation into anonymous form or the blocking of data processed in violation of the law; the updating, rectification or integration of data; certification that the operations have been brought to the attention of those to whom the data were communicated or disseminated. You may also object at any time to the possible profiling of your personal data.
If you have any questions about this policy or your privacy on the Services, please contact us at email@example.com.