Purpose of processing
By accessing and consulting this site, as well as by taking advantage of the services offered through the site to users, information may be collected and processed concerning users as identified or identifiable natural persons. If personal data are thus acquired, they will be processed, in compliance with current legislation on the protection of personal data, solely for the following purposes:
a) purposes strictly connected and instrumental to enabling access to and use of the site and its functions;
(b) for operational, administrative and management needs relating to the services offered through the site;
(c) in completely anonymous and aggregate form, for statistical purposes
(d) to fulfil obligations that may be provided for by law and by European legislation.
Provision of personal data
The provision of data is optional, but failure to provide them may make it impossible to take advantage of certain services offered through the site . As far as possible, the user will still be given the option of consulting the site without providing any personal data, although, in this case, certain functions or features of the site may be disabled.
Depending on the service rendered, different types of personal data may be processed, as specified below .
Navigation data – The computer systems and software procedures used for the operation of this site acquire, in the course of their normal operation, certain personal data whose transmission is implicit in website navigation. This information is not collected in order to be associated with identified interested parties; however, by its very nature it could, through processing and association with data held by third parties, allow users to be identified. This includes IP addresses or domain names of the computers used by users who connect to the site, the URL addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server and other parameters relating to the operating system and platform used by the user.
The above data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation; they are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site: except in this case, data on web contacts do not persist for more than 30 days.
With regard to cookies, please refer to the relevant notice.
Data provided voluntarily by the user (communications) -- The optional, explicit and voluntary sending of communications by means of contact forms on the site or electronic mail to the addresses indicated on this site entails the subsequent acquisition of the data communicated by the user, including his or her e-mail address, and consent to receive any messages in response to his or her requests. The personal data thus provided are used solely for the purpose of satisfying or responding to the requests transmitted and are communicated to third parties only if necessary for that purpose.
6. Modalities of data processing
The data controller is the Municipality of Modena. By order of the Mayor, Dr. Giulia Severi, manager of the Culture, Sport, Youths and City Promotion Sector based in Modena, Via Galaverna 8 (email: cultura@cert.comune.modena.it - telephone number: 059 2032792) has been appointed holder of the databases and data processing of its sector, in accordance with the principles of the Local Authorities Ordinance and the fundamental choices made by the Municipality in organisational matters.
The Data Protection Officer (DPO) can be contacted at the following e-mail addresses:
responsabileprotezionedati@comune.modena.it
casellaistituzionale42@cert.comune.modena.it
Personal data shall be processed lawfully and fairly and used only for the purposes stated above Processing shall take place by means of instruments suitable to guarantee the security and confidentiality of personal data and by automated means suitable to store, manage and transmit such data. Specific security measures are adopted to prevent the loss of data and contain the risks of unlawful or incorrect use and unauthorised access.
Personal data will be retained for the time prescribed by law and, in any case, for the time strictly necessary to carry out the activities for which they were collected, after which they may be retained, in the manner and in compliance with the relevant regulatory provisions, in the event of further retention obligations laid down by law or for archiving in the public interest, scientific or historical research or statistical purposes.
Communication of collected data
Employees and collaborators, including external collaborators, of the Data Controller and persons who provide services instrumental to the above purposes (such as, for example, technical services) may become aware of the personal data. These subjects act as data processors, data controllers and system administrators.
The data collected for the above-mentioned purposes may also be disclosed to parties authorised to do so by law or regulation.
Personal data will not be transferred to a third country or international organisation.
Rights of data subjects
Each data subject is granted the right to access at any time the data concerning him/her processed by the Data Controller (right of access) in order to verify the correctness and lawfulness of the processing carried out. The data subject may also exercise all the rights recognised by the current legislation on the protection of personal data (Chapter III of EU Reg. no. 2016/679): in particular, he/she may at any time request the correction and updating of incorrect or inaccurate data, the restriction of the processing carried out and its deletion (right to be forgotten), the revocation of any consent given as well as lodge a complaint with the Data Protection Authority.
The data subject may contact the Controller at the above-mentioned addresses to exercise his/her rights and to obtain further information on the processing of personal data carried out
