Privacy policy

Pursuant to Articles 13 and 14 of EU Regulation 2016/679 on data protection (GDPR), we inform you that the personal data you provided voluntarily to the University of Padova will be processed by adopting suitable measures to ensure their safety and confidentiality in full compliance with the GDPR.

Data processing by the Prometeus website

Who we are

Our website address is: https://www.prometeus-eic.eu/

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Information on personal data processing

This information is provided in accordance with paragraph 13 of the EU Regulation 2016/679 General Data Protection Regulation, hereinafter EU Regulation), in relation to personal data that the University of Padua (hereinafter University) comes into possession for the purposes of informing and disseminating the teaching and research activities related to the Prometeus project (grant agreement n. 101099093).

The processing of personal data is based on the principles of correctness, lawfulness, transparency, and protection of confidentiality and on all the rights of the interested parties, as specified in the following information.

Data controller

The Data Controller is the University of Padova, Department of Developmental Psychology and Socialisation with registered office in via Venezia n. 8, 35131 – Padova (certified e-mail: dipartimento.dpss@pec.unipd.it).

Contact details of the data protection officer

The University of Padova has a Data Protection Officer, appointed in accordance with Article 37 of the EU Regulation. The Data Protection Officer can be contacted at the following e-mail address: privacy@unipd.it

Sources and types of data

We specify that the personal data that may be processed by exclusively for the purposes indicated in Purpose of processing and legal basis paragraph, are: common data, such as personal and identification data, and contact data (e-mail).

Personal data are provided directly by the data subject.

The data acquired are processed for purposes connected with the performance and dissemination of the University’s activities related to the Prometeus project.

The legal basis of the processing is par. 6.1, letter e), of the EU Regulation, as it is necessary for the performance of institutional tasks of teaching, research or the so-called “third mission”.

Your personal data is processed for the sole purpose of handling your contact requests. They will only be stored for as long as the project and the contact e-mail are active.

Methods of data processing

Data processing is carried out in such a way as to guarantee maximum security and confidentiality and may be implemented using manual, computerised, and telematic tools suitable for storing, managing, and transmitting data.

The University does not use automated decision-making processes relating to the rights of the data subject based on personal data, including profiling, in compliance with the guarantees provided for in par. 22 of the EU Regulation.

Recipients of the data and Processors

The data may be communicated, solely for the purposes indicated in Purpose of processing and legal basis paragraph, to the Processors and to the Data Controller’s staff who provide support activities for the implementation and management of the Prometeus project.

The University may also communicate the personal data acquired to other public administrations, if necessary for any procedures falling within its institutional competence, as well as to all those public subjects to whom, in the presence of the relative prerequisites, communication is provided for by Community provisions, laws or regulations.

The data collected are not normally transferred to countries outside the European Union. In any case, the University will ensure compliance with the security rules for the protection of the privacy of the data subjects.

Personal data may be communicated to all the subjects whose communication is necessary for the correct fulfilment of the purposes indicated in the Purpose of processing and legal basis paragraph.

Data Processors

The recipients of the data are also the data processors appointed by the University, including:

Google Ireland Limited, as the provider of the email service, based in Gordon House, Barrow Street, Dublin 4, Ireland – Google Workspace privacy policy.

Data retention

The determination of the period for which personal data is stored complies with the principle of the necessity of processing. Personal data are therefore kept for as long as necessary to carry out the purposes described in the Purpose of processing and legal basis paragraph.

Rights of the data subject

The data subject is entitled to the following rights:

  • the right of access, rectification or integration to their personal data (par. 15 and 16 EU Regulation);
  • the right to erasure (right to be forgotten), pursuant to par. 17 EU Regulation;
  • the right to restriction of processing under the conditions of par. 18 EU Regulation;
  • the right to data portability, as regulated by par. 20 EU Regulation;
  • the right to object to processing at any time (par. 21 EU Regulation);
  • the right to lodge a complaint with the Guarantor for the protection of personal data.

The data subject may revoke his or her consent to the processing of his or her personal data at any time.

Methods of exercising rights

To exercise their rights, the data subject may contact the Data Controller by writing to the certified email address dipartimento.dpss@pec.unipd.it.
Alternatively, the interested party may write by mail to: University of Padua, via VIII Febbraio n. 2, Padua.

The Data Controller is obliged to provide an answer within one month from the request, extendable up to three months in case of particular complexity of the request.

Changes to the information on the processing of personal data

This document may be subject to change. We, therefore, recommend that you check it regularly and refer to the most up-to-date version at: https://www.prometeus-eic.eu/privacy-policy/

By using our website, you hereby consent to our Privacy Policy and agree to its terms.

Updated on 13/04/2023