Privacy Policy
UKE is in the process of updating the information pursuant to the new European Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data.
In the next few days all the information will be promptly updated. In the meantime, such information must be considered integrated with the information indicated below:
References to General Data Protection Regulation 95/46/EC are repealed.
The data controller is UKE Kore University of Enna in the person of the General Director.
The contact details of the Owner are PEC: direttore@pec.unikore.it
The Data Protection Officer (DPO) is Mario Bartuccio.
The contact details of the DPO are:
mail: rpd@unikore.it
Pec: rpd@pec.unikore.it
In addition to what is indicated in the text of the individual information notice, it is ensured that all processing will be based on the principles set out in the GDPR, with particular regard to the lawfulness, correctness and transparency of processing, the use of data for specific, explicit, legitimate purposes, in a manner relevant to the processing, respecting the principles of data minimization, accuracy, storage limitation, integrity and confidentiality, accountability (art. 5 of the regulation).
In addition to what is indicated in the individual information notices, the subjects to whom the personal data refer, in their capacity as Interested Parties, have the right at any time to obtain confirmation of the existence or otherwise of the same data and to know their content and origin, they also enjoy the rights referred to in sections 2, 3 and 4 of Chapter III of the GDPR (EU) 2016/679 (e.g. ask the data controller: access to personal data and the correction or deletion of the same; the limitation of the processing concerning them; to oppose their processing, in addition to the right to data portability). The Interested Party also has the right to: – Revoke consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation. In this case, no further data concerning them will be collected, without prejudice to the use of any data already collected to determine, without altering them, the results of the research or of those which, originally or following processing, are not attributable to an identified or identifiable person. – Lodge a complaint with a supervisory authority.
In relation to the exercise of these rights, the interested party may contact the data controller.
The personal data provided in relation to the use of this site and its services are processed in compliance with Regulation 679/2016 on the protection of natural persons with regard to the processing of personal data, as well as the free circulation of such data and which repeals Directive 95/46/EC (General Data Protection Regulation) , to those who interact with the web services of the University of Enna “Kore” (hereinafter referred to as the “University”) accessible electronically from the address http://www.uke.it, corresponding to the home page of the University portal.
It refers only to the University portal and has no value for other web sites that may be visited by the user via links.
This information describes the management methods of the University's web portal in relation to the processing of personal data of users who consult it, who choose to register and who subscribe to online services.
Place of data processing
The processing relating to the portal services takes place mainly at the University offices.
They are carried out by identified and expressly appointed personnel based on the specific purposes of the services requested and subscribed to.
For the treatments in question, the University may avail itself of the help of external companies, consultants, consortia, software and service providers operating, through identified and appointed personnel, within the scope of the intended purposes and in such a way as to guarantee maximum security and confidentiality of the data.
Consultation of the portal
The computer systems and application procedures used to operate the University portal acquire, during their normal operation, some personal data whose transmission is implicit in the use of communication protocols on Internet.
This information is not collected to be associated with identified interested parties but, by its nature and through associations with data held by third parties, it may allow the identification of users.
This category includes, for example, the IP addresses and domain names of the systems used by users to connect to the portal.
These data are used to obtain anonymous statistical information on the use of the portal and to check its correct functioning; they could also be used to ascertain responsibility in the event of computer crimes against the portal itself.
The communication of data can be made only following a request by the Judicial Authority within the terms of the law.
Cookie third party
The portal makes use of third-party content (through resource embedding techniques), it is therefore possible that during the visit to the portal other Cookie, both technical and capable of profiling the user, are sent by these third parties to the user's terminal.
The information on the processing and consent to use are the responsibility of the providers of said services. Below is the list of the services used and a link to the related information regarding privacy and use of Cookie from their server:
Refusal of Cookie via terminal settings
The user visiting the portal has the right to refuse, in whole or in part, the Cookie sent by the portal or by third-party sites, by acting on the settings available in the browser. For specific instructions regarding your browser, view the help provided with the software or visit the website of the relevant manufacturer.
Disabling Cookie may prevent the correct functioning of some services or the use of some contents.
Registration on the portal and subscription to services
During registration on the portal, some personal data are requested that are used to identify the registered subject.
When subscribing to online services, optional data may be requested depending on the specific service chosen. The purposes of processing are different depending on the service and are described in detail on the relevant subscription pages.
Optional nature of data provision
The data required for registration are mandatory and failure to provide them will make it impossible to register on the portal.
Similarly, failure to communicate some optional data that may be requested for the subscription to online services may make it impossible to use the chosen service.
Registration and subscription data are provided voluntarily.
The person who registers freely gives consent to the processing of data, aware that in the absence of such consent the registration and subscription to the services cannot take place.
Treatment methods
The processing of personal data will be carried out using manual, computer and telematic tools that are suitable to guarantee the security and confidentiality of the data. Specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorized access in full compliance with the European Regulation on the protection of personal data - regarding minimum security measures and art. 32 GDPR. With reference to workers and collaborators, the log files of the activities carried out through the computer tools made available by the University are processed and stored in all evidence and for all purposes related to the employment relationship, as provided for by the Regulation for the processing of personal, sensitive and judicial data of the University. With reference to all users, extractions of the log files (relating to the activities carried out through the Services) may be carried out, also through cross-referencing and processing of such data to identify those responsible for abuse and/or illicit activities carried out by the interested parties or by third parties.
Rights of interested parties
The interested party has the right to:
- ask the owner, pursuant to articles 16, 17, 18, 19 and 21 of Regulation (EU) 2016/679, for access to their personal data and the rectification or erasure of the same or the limitation of the processing concerning them or to oppose their processing, in addition to the right to data portability. Erasure is not permitted for data contained in documents that must be kept by the University;
- revoke consent at any time, without prejudice to the lawfulness of the processing based on the consent given before the revocation;
- lodge a complaint with the supervisory authority.
Personal data retention period
The data collected will be stored for the periods established by current legislation.
Browsing data and use of applications and services
The University's IT systems, software procedures and applications that support their operation and the provision of services acquire, during their normal operation, some personal data on the use of the applications made available by the University. The aforementioned data are not collected to be linked to the activities of identified subjects, however, by their very nature, through subsequent processing and possible integration with data held by third parties, they could be correlated to users. This category of data includes, for example: the date and time of the request, the IP addresses of server and the requesting party, the name of server, the protocol, port and method (POST/GET) used to submit the request to server, the browser used, the username, the service accessed, the resources requested and any associated Cookie, the number of bytes sent and received, the error code returned, the time required to execute the request. As part of a user's interaction with web services made available by the University in an authenticated context, basic information relating to access to the individual service (timestamp, username, service) and session information structured in accordance with the W3C standard format are tracked in the log https://www.w3.org/TR/WD-logfile.html Session Cookie are used to manage single sign-on to services. In order to support aggregate statistical processing on the use of services, anonymous Cookie are used with registration limited to the following information: display language, country and city of origin, browser used, operating system, Internet service provider, screen resolution.
The rights may be exercised by making a request to the Data Controller (University of Enna “Kore” – University Campus 94100 Enna).
Model for exercising rights in relation to the protection of personal data
ATTENTION: the duly completed form must be addressed to the owner of the personal data processing or to the person responsible for the personal data processing and NOT to the Privacy Guarantor.