Privacy & Cookie policy

Last updated January 8, 2024

This document describes the privacy policy of the Fondazione COISPA ETS (hereafter referred as "COISPA"). It affects all data gathered and processed by COISPA. This policy is a derivative of the GDPR, and is to be applied to COISPA activities, and COISPA data processing and data and information systems.

General Data Protection Regulation (GDPR)

The GDPR is EU Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. It repeals Directive 95/46/EC. The GDPR comes in force on 25 May, 2018. More information can be found on the EC GDPR site.

COISPA as data owner and processor

The COISPA gathers personal data via several data and information systems and for a range of COISPA activities, such as the organisation of events. COISPA is the owner and processor of this data and does not pass on non public data on to third parties. All data gathered and processed by COISPA is subject to the EU General Data Protection Regulation (GDPR), which aims to protect the privacy of all EU inhabitants.

You can contact COISPA through e-mail at segreteria@fondazionecoispa.org; at the address via dei Trulli 18-20, Torre a Mare, Bari 70126, Italy. For questions concerning private data and how COISPA makes use of it, please contact segreteria@fondazionecoispa.org.

Complaints concerning the privacy policy of COISPA, or concerning unlawful data processing by COISPA, can be addressed to supervisory authority (Garante Authority for the protection of personal data - www.garanteprivacy.it), as provided by art. 77 of the GDPR, or go to the appropriate courts (Art. 79 of the GDPR).

Your rights as a data subject

A data subject is the natural person for whom personal data is processed. Each person has the right to be informed on what personal data is being processed and to have access to their personal data.

You have the right: to have your personal data corrected; to request a restriction or an end to processing of your data; and to be forgotten, which means the erasure of your personal data. Note that not all rights are absolute: COISPA can have compelling legitimate grounds that outweigh the interests and rights of the objector (accountancy, juridical reasons,...). When a request is made, COISPA may demand extra information to confirm identity. Note that the GDPR stipulates that each request made must be logged.

Legal grounds for data processing

There are several legal grounds for data processing. The most common is prior consent, which can be withdrawn at any time. A processing of data can be within agreement. Some of the services offered by COISPA require a personal account, and the processing of this data is limited to the linked services and is within agreement. COISPA has the legal obligation to process personal data for accountancy purposes, and has to keep this data for as long as is mandatory. COISPA also processes personal data for common interest: COISPA has the mandate to describe the marine scientific landscape in Italy, and gathers professional data on scientists and institutes for this purpose.

Data processing by COISPA

The COISPA privacy policy lists all data and information systems which process personal data. For some of the systems a more specific disclaimer is made, and direct contact details are given in the disclaimer. Questions can also be directed to segreteria@fondazionecoispa.org.

The basic principles of the GDPR is to keep the processing of personal data to a minimum - data privacy by design and by default - and to think about how to protect data from the beginning - data protection by design. To this end COISPA places its systems and data processing under scrutiny, and deletes data or renders it anonymous where possible.

COISPA services requiring personal data

For some of the services and activities of COISPA, an account and / or processing of personal data is necessary. By entering your personal data and / or creating an account you agree to the data processing. The following is a list of COISPA activities and systems which make use of personal data. This data is kept for as long as the agreement lasts, and at least as long as is required for legal purposes (e.g. accountancy). For purposes concerning proof in juridical disputes, COISPA may store personal data up to 10 years after the fact, which is the maximum legal term for placing personal claims.

Data quality by data provenance

Data quality is much improved by knowing the source and its level of expertise in the respective area and/or other relevant knowledge. For this reason COISPA can request for personal data (e.g. work experience, school degrees) to accompany data (in broad sense) offered to COISPA. This provenance info, if made public, will not identify the data source unless allowed by the data subject.

Visitor tracking on websites and cookies

The Fondazione COISPA ETS (COISPA) informs about the use of the cookies in its websites.

Cookies are archives that can be downloaded in your computer through the webpages. They are tools that have an essential role for the presentation of numerous services of the society of information. Among others, they allow a webpage to keep and recover information regarding the browsing habits of a user or a team and, depending on the information obtained, they can be used to recognise the user and to improve the service offered.

Types of cookies

Depending on the entity that manages the domain from which cookies are sent and the data obtained, it is possible to distinguish two types of cookies: own cookies and third-party cookies.

There is also a second classification according to the period of time in which they remain stored in the client’s browser: session cookies or persistent cookies.

Finally, there is another classification with five types of cookies depending on the purpose of the data obtained: technical cookies, personalisation cookies, analysis cookies, advertising cookie and behaviour advertising cookies.

Cookies used in the website

The COISPA website uses Google Analytics, the analytic tool that helps webpages and applications owners to understand the way in which their visitants interact with their properties. Cookies are used to gather information and to inform about the statistics of use of the websites without identifying personally the visitants of Google. More information about the cookies of Google Analytics and information on privacy.

For the promotion of the social media, cookies from Twitter, Facebook and YouTube are used to allow our visitants to follow us in those social media; and on the home page are embedded the contents from Twitter and YouTube.

Lastly, an own technical cookie of the session called cookies_policy is downloaded. Its aim is to manage and remember if the consent of the user for the use of the cookies in the website was accepted or not, so that the first ones cannot see the information in the bottom of the page.

Acceptance of the policy of cookies

COISPA assumes that you are accepting the use of the cookies. However, in the top of all pages in the portal will be shown information about its Cookies Policy with the objective of making you aware of it.

Given this information, it is possible to take the following actions:

Accept cookies: if the user clicks on the “accept” button, this warning won’t be shown again when entering to any page of the portal.
Revise the cookies policy: the user will be able to access to the present page, in which the use of the cookies is detailed, as well as to pop-ups to modify the configuration of the browser.

Personal data offered for job applications

Personal data offered in the context of job applications will be used solely for processing the application, unless consent was given for alerts on future job offers. The data will only be available to COISPA personnel handling the job offer and to the members the jury (COISPA and/or external experts).

The emails and personal data received at segreteria@fondazionecoispa.org will be stored for 10 years for evidence purposes in case of juridical claims by the applicant.

In case of hiring, the personal data will be shared with the secretariat for COISPA.

Changes to the Privacy Policy

Please note that the COISPA Privacy Policy is reviewed periodically. COISPA reserves the right to modify its Privacy Policy at any time without notice. Any changes to the Privacy Policy will be posted on this page and will become effective on the date of posting. We encourage you to periodically review this page for the latest information on our privacy practices.

Recourse

Any comments, complaints, or questions concerning this policy, or complaints or objections about our use of your personal information, should be addressed by emailing your comments to segreteria@fondazionecoispa.org.