This website (www.legislab.it, also the “Website”) collects certain Personal Data of its Users.

Data Controller – Studio Legale LegisLAB Associazione Professionale, Piazza Armando Diaz No. 7 – 20123 Milan – Italy info@legislab.it

Type of Data collected

As a rule, the Website does not collect personal data that can be directly linked to specific or identifiable individuals, but it does collect a limited amount of data for the purposes set out below. The Personal Data collected by this Website, either independently or through third parties, are:

Cookies and Usage Data.

Other Personal Data collected may be indicated in other sections of this privacy policy or by means of information texts displayed when collecting the Data. In the latter case, the User will be informed in good time before collection by means of an additional notice.

Purposes of the Processing of collected Data

The User’s Data are collected to enable the Data Controller to provide the services offered through the Website and for the following purposes:

Statistics and Displaying content from external platforms.

The types of Personal Data used for each purpose are indicated in the specific sections of this document.

The use of Cookies – or other tracking tools – by this Website or by the owners of third party services used by this Website, unless otherwise specified, is intended to identify the User – without however associating him or her with biographical data – and to record his or her preferences for purposes strictly related to the provision of the service requested by the User.

Failure by the User to provide certain Personal Data may prevent this Website from providing its services.

The User assumes responsibility for the Personal Data of third parties published or shared through this Website and guarantees that he/she has the right to communicate or disseminate them, releasing the Data Controller from any liability towards third parties.

Processing procedures – disclosure of data

The Data Controller processes the Personal Data of the Users by adopting security measures aimed at preventing unauthorised access, disclosure, modification or destruction of the Personal Data.

The processing is carried out by means of electronic and computer tools, with organisational methods and logics strictly related to the purposes indicated. In addition to the Data Controller, in some cases, categories of external subjects (third party technical service providers, mail carriers, hosting providers, IT companies, and communication agencies) appointed, where necessary, as Data Processors by the Data Controller, may have access to the Data. The updated list of Data Processors is available at any time from the Data Controller.

Location

The Data are processed at the operational headquarters of the Data Controller and in any other place where the parties involved in the processing are located. For further information, the User may contact the Data Controller.

Duration of the processing

The Data are processed for the time necessary to perform the service requested by the User, or required by the purposes described in this document,

Details of specific processing of Personal Data

Personal Data are collected for the following purposes and using the following services:

Statistics

The services contained in this section allow the Data Controller to monitor and analyse traffic data and are used to track the User’s behaviour.

Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google uses the Personal Data collected for the purpose of tracking and evaluating your use of this Website, compiling reports and sharing them with other services developed by Google.

Google may use the Personal Data to contextualise and personalise ads in its advertising network.

Personal data collected: Cookies and Usage Data.

Processing location: USA

International data transfer
Google transfers the data used to provide the Google Analytics service based on Standard Contractual Clauses. Google’s privacy policy can be consulted here Privacy Policy

Displaying content from external platforms

This type of service allows you to view content hosted on external platforms directly from the pages of this Website and to interact with them.

If such a service is installed, it is possible that, even if Users do not use the service, it will collect traffic data relating to the pages on which it is installed.

Google Fonts is a font display service operated by Google Inc. that enables this Website to integrate such content into its pages.

Personal data collected:

Usage Data and various types of Data as specified by the privacy policy of the service.

Processing location: USA

International data transfer

Google transfers the data used to provide the Google Analytics service based on Standard Contractual Clauses. Google’s privacy policy can be consulted here Privacy Policy

Further information on processing

Legal defence

The Data Controller may use the User’s Personal Data for the defence of claims in legal proceedings or in the preparatory stages of any such proceedings against abuse in the use of the same or related services by the User.
The User declares that he/she is aware that the Data Controller may be required to disclose the Data at the request of governmental authorities.

Specific information

At the User’s request, in addition to the information contained in this privacy policy, this Website may provide the User with additional information at the same time regarding specific services, or the collection and processing of Personal Data.

System and maintenance logs

For operational and maintenance purposes, this Website and any third party services used by it may collect system logs, i.e. files that record interactions and which may also contain Personal Data, such as the User’s IP address.

Information not contained in this policy

Further information in connection with the processing of Personal Data may be requested at any time from the Data Controller using the contact information.

Exercise of rights by Users

Data subjects have the right at any time to request access to, and rectification and erasure of his/her Personal Data, restriction of their processing as well as to object in all cases, for legitimate reasons, to their processing. Requests should be addressed to the Data Controller at the email address indicated at the top.

However, the data subject has the right to apply to a supervisory authority, in Italy the Italian Data Protection Authority (https://www.garanteprivacy.it/home/footer/contatti)

This Website does not support “Do Not Track” requests. To find out if any third-party services you use support them, refer to their privacy policies.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by informing Users on this page. Therefore, you should consult this page often, taking as a reference the date of the last change indicated at the bottom. In the event of non-acceptance of the changes made to this privacy policy, the User must cease using this Website and may request the Data Controller to remove his/her Personal Data. Unless otherwise specified, the above privacy policy will continue to apply to Personal Data collected up to that point.

About this privacy policy

The Data Controller is responsible for this privacy policy, which is drafted based on forms prepared by Iubenda and stored on its servers.

Definitions and legal references

Personal Data (or Data)

Personal data is any information relating to a natural person who is identified or identifiable, even indirectly, by reference to any other information, including a personal identifier.

Usage Data

This is information collected automatically by this Website (or by third party applications that this Website uses), including: IP addresses or domain names of computers used by the User who connects with this Website, URI (Uniform Resource Identifier) addresses, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), the country of origin, the characteristics of the browser and the operating system used by the visitor, the various time-related aspects of the visit (e.g. the time spent on each page) and details of the itinerary followed within the Application, with particular reference to the sequence of pages viewed, the parameters relating to the operating system and the User’s IT environment.

User

The individual using this website, who must be the Data Subject or be authorised by the Data Subject, and whose Personal Data is being processed.

Data Subject

The natural or legal person to whom the Personal Data relate.

Data Processor (or Processor)

The natural or legal person, governmental authority, agency or other body, association or organisation delegated by the Data Controller to process Personal Data, in accordance with the provisions of this privacy policy.

Data Controller (or Controller)

The natural or legal person, governmental authority, agency or other body, association or organisation which, alone or jointly with others, determines the purposes and means of the processing of personal data and the tools used, including the security profile, in relation to the operation and use of this Website. The Data Controller, unless otherwise specified, is the owner of this Website.

This Website

The hardware or software tool through which the Users’ Personal Data are collected.

Cookies

Small portions of data stored within the User’s device.

Legal references

Notice to European Users: this Privacy Policy has been drafted in compliance with the obligations provided for by Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation or “GDPR”) as well as the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, on the subject of Cookies.

This privacy policy relates exclusively to this Website.