INFORMATION NOTICE
This Privacy Policy by LegisLAB fulfills the obligation to provide information to data subjects required by Article 13 of the Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter “GDPR”).
DATA CONTROLLER
The Data controller is LegisLAB, with registered office in Piazza Armando Diaz no. 7 – Milan, Italy; telephone no.: +39 02 8724 5120; e-mail address: info@legislab.eu.
DEFINITION OF “PERSONAL DATA”
For the purposes of this Privacy Policy, “Personal Data” – in accordance with Article 4 of the GDPR – means “any information relating to an identified or identifiable natural person (“Data Subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
This Privacy Policy applies only to the personal data collected through the website www.legislab.eu (hereinafter the “Website”) or in any other manner described herein. This Privacy Policy does not apply to any data collected through other websites owned by third parties, even if such websites can be accessed through a link on the Website. Please refer to the privacy policies of such third party websites for information regarding their processing of personal data.
CATEGORIES OF DATA PROCESSED
1) Data Provided Voluntarily by the Data Subjects
LegisLAB collects some personal data (name, surname, e-mail address, telephone number, postal address, etc.) that is voluntarily provided by the users of the Website through ad hoc registration forms filled in on the Website (e.g. subscription to our newsletter) or sent by e-mail or provided by the data subject to LegisLAB or to its professionals or collaborators in any other way (for example: exchange of business cards, exchange of e-mails or any other contact that, through an active behavior, shows an interest in the activity of LegisLAB or as part of applications for job positions at LegisLAB).
2) Web-surfing Data
The computer systems and software procedures responsible for the correct functioning of the Website may, during their normal activity, collect some personal data, the transmission of which is implicit in Internet communication protocols. This type of information is not collected in order to be associated with identified subjects, but by their very nature, through processing and in combination with data held by third parties, such information could be used to identify users. This category of information includes, among other things, IP addresses relating to the computer used to access the Website, URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the procedure used to send the request to the server, the size of the file responded to, the numerical code indicating the state of the server’s response (successful, error, etc.) and any other parameter relating to the user’s operating system. This type of data is only used to gather statistical and anonymous information on the use of the Website and to ensure its correct functioning, and is deleted immediately after processing. The aforementioned data could be used to establish possible criminal liability for computer crimes against the Website.
3) Use of Cookies
The Website uses cookies as described in our Cookie Policy.
PURPOSES AND METHODS OF DATA PROCESSING
LegisLAB processes the above-mentioned personal data only in relation to
a) subscription to newsletters, invitations to events and seminars, or subscription to mailing lists for the sending of LegisLAB-related communications (events organized, certifications and awards obtained, information on careers within LegisLAB);
b) requests for information about LegisLAB or requests for contact;
LegisLAB protects your personal data by adopting all the security measures required by the GDPR. LegisLAB will process your personal data only for the time necessary to achieve the purposes described above. The processing may be carried out with or without the use of electronic means, as well as with or without automated systems, through the following operations: collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data.
LEGAL BASIS FOR PROCESSING
In relation to the cases described in point a) above:
– the data subject may request to subscribe to our newsletter through the dedicated section of the website, specifying the areas of interest, thereby requesting to receive scientific articles on judicial matters, changes in jurisprudence and other legal matters related to the areas of activity of LegisLAB; or
– the data subject may receive information about our events and seminars on the basis of our legitimate interest to maintain contact with the data subject, if the data subject has already subscribed to one of our events or newsletters (also taking into account his or her reasonable expectations), subject to the right to object (“opt-out”); or
– the data subject may be included in a mailing list as a result of contacts with LegisLAB or with a professional or collaborator of LegisLAB (for example, exchange of business cards or other contact that may constitute an active behavior demonstrating interest towards LegisLAB); in such a case, LegisLAB has a legitimate interest in maintaining contact with the data subject by sending him/her communications concerning LegisLAB and events organized by LegisLAB that LegisLAB believes may be of interest to the data subject (taking into account the expectations of the data subject), without prejudice to the right to object (“opt-out”).
OPTIONAL PROVISION OF PERSONAL DATA
Without prejudice to the provisions on web-surfing data, data subjects have the option of providing or not providing their personal data in the forms on the website or via e-mail. However, failure to provide such data may make it impossible for LegisLAB to send you the communications and information you have requested.
COMMUNICATION AND DISCLOSURE OF PERSONAL DATA – INTERNATIONAL DATA TRANSFERS
The personal data collected will be accessible to the employees and collaborators of LegisLAB duly appointed as data processors or persons in charge of the processing. Some data may be communicated in anonymous and aggregated form to third parties for statistical purposes. In any case, such data will not allow the identification of the persons concerned. Except for the cases permitted by law or provided for in this Privacy Policy, personal data will not be communicated or disseminated without the consent of the data subjects.
RIGHTS OF DATA SUBJECTS WITH REGARD TO THEIR PERSONAL DATA
The data subject shall have the right at any time to obtain confirmation as to whether or not their personal data are being processed, to access such personal data, to obtain the data in a structured, commonly used and machine-readable format for the purpose of communication to another controller, and to request at any time the erasure of such personal data, to obtain the restriction of the processing or to object, in whole or in part, for legitimate reasons, to the processing of his/her personal data, in particular where it is processed for the purposes of direct marketing; the data subject may also exercise this right by clicking on the link provided for this purpose at the bottom of each communication. However, the exercise of such rights may be subject to some limitations and exclusions in accordance with the GDPR and applicable regulations.
Where the processing is based on the consent of the data subject, it is understood that the data subject has the right to withdraw his or her consent at any time. Such withdrawal shall not affect the lawfulness of the processing based on the consent given prior to the withdrawal.
RIGHT TO LODGE A COMPLAINT
Without prejudice to any other administrative or judicial remedy, every data subject shall have the right to lodge a complaint with a supervisory authority if they consider that the processing of their personal data is in breach of the law.
CHANGES TO THIS PRIVACY POLICY
LegisLAB may amend this Privacy Policy in order to comply with developments in national and/or European law, as well as to keep up with technological innovations and other similar reasons.
Any amended versions of this Privacy Policy will be published on the Website. Please read this Privacy Policy carefully and check it periodically for any changes or revisions.
EXERCISING USER RIGHTS AND REQUESTING INFORMATION
To exercise your rights and for any questions or requests regarding the processing of your personal data by LegisLAB and this Privacy Policy, please contact us at the following e-mail address: info@legislab.eu.