The Academy of Fine Arts of Cuneo guarantees that the processing of data, acquired through any mode, complies with the provisions of the legislation on the protection of personal data.

The page was updated on Thursday, October 29, 2020, and is subject to constant revision. Please stay up-to-date with changes made, even when not notified, by visiting it on a regular basis.

Variation of data processing to support DISTANCE EDUCATION
during the Coronavirus emergency(COVID-19)

In order to document the proper conduct of the lessons, the Academy of Fine Arts may record and store audio, video and access logs related to the lessons conducted through the Google G Educational platform.The data may be recorded by the institution or by teachers depending on the possibility offered by the platform. This data will be stored within the platform itself for the sole purpose indicated and may be produced, if requested, to the entities in charge of carrying out any audits. Users will be asked to explicitly renew their consent of processing to accept the changed condition of use. Refusal WILL NOT PERMIT PARTICIPATION in distance education. Destruction of this data will be carried out (or requested from teachers) as soon as it can be ascertained with certainty that the purpose of the processing has lapsed

Information pursuant to art. 13 of Legislative Decree 30 June 2003,n.196.

Pursuant to Legislative Decree No. 196 of 30/06/2003 - Code regarding the protection of personal data, which provides for the protection of persons and other subjects with respect to the processing of such data, we inform about the following:

The Academy of Fine Arts of Cuneo, in its capacity as "data controller," processes personal data related to its teaching staff, non-teaching staff, external collaborators, students, and suppliers of goods and services.

The processing of all data is mainly paper-based, and stored at the Academy's premises in the special containers accessible only to the Academy's management, and includes all the operations provided for in Article 4 of the GDPR necessary for the processing in question.

This data cannot be disseminated in any way.

Data may be disclosed, even without the consent of the data subject to the following recipients (by way of example but not limited to):

Entities

  • Ministry of Education, University and Research - MIUR
  • Police headquarters and judicial authorities
  • Certifying administrations, when checking the substitute declarations
  • Other Italian and foreign academies or universities in the case of transfers
  • To the University Entity for the Right to University Study.
  • At CINECA.
  • At GARR Consortium (Italian Education and Research Network) - for possible agreement (consortium privacy policy -> link)

Data on teaching and non-teaching staff, external collaborators, students, companies providing goods and services, users and visitors to the Academy's official pages may be collected and used to enable the operation of services offered by the following third parties:

Google LLC

  • For online collaboration solutions (Google G Suite Educational).
  • For institutional e-mail for staff and students (Google Gmail).
  • Google Analitycs system for managing statistics of the University's web activity.
  • For interactive maps (Google Maps).
  • For video distribution (YouTube).
  • For the Academy's information and promotion campaigns (Google AdWords).

Facebook (and Instagram)

  • For the institute's official page and related groups
  • For the Academy's information and promotion campaigns.

LinkedIn

  • For the institute's official page and related groups
  • For the Academy's information and promotion campaigns.

Method of treatment

In this context, data processing means their collection, recording, organization, storage, processing, modification, deletion and destruction or the combination of two or more of these operations. In relation to the aforementioned purposes, the processing of personal data is carried out on paper and by means of manual, computerized and telematic tools, including automated tools, suitable for storing and managing the data, with logics strictly related to the purposes themselves and, in any case, in such a way as to guarantee security and confidentiality; personal data will therefore be processed in compliance with the methods indicated in Art. 5 Reg.to EU 2016/679, which provides, among other things, that the data shall be processed lawfully and fairly, collected and recorded for specified, explicit and legitimate purposes, accurate, and if necessary updated, relevant, complete and not excessive in relation to the purposes of the processing, respecting the fundamental rights and freedoms, as well as the dignity of the person concerned with particular reference to confidentiality and personal identity, by means of protection and security measures. The undersigned organization has prepared and will further refine the security system of data access and storage.

No automated decision making (e.g., profiling) is carried out.

Personal data constitute the subject of exclusively manual processing by the Academy and, when required by specific legal relationships, also by third parties, who likewise, are required to comply with the obligations enshrined in the Code regarding confidentiality, and are:

  • Treated lawfully and according to fairness;
  • collected and recorded for purposes solely pertaining to the Academy's institutional purposes;
  • accurate and, if necessary, updated;
  • relevant, complete and not excessive in relation to the purposes for which they are processed;
  • kept in a form which permits identification of the data subject for no longer than is necessary for the purposes for which they are processed.

Personal data processed in violation of the relevant regulations may not be used.

Consequences of refusal to provide data

The provision of data collected from the interested party is optional but indispensable in order to process them for the purposes to the stated. In the event that the interested parties do not communicate their indispensable data, it will not be possible to proceed with the exchange of communications between the staff of the writer and the interested party. For all non-essential data, the provision is optional. In the absence of consent or incomplete or erroneous conferment of certain data, including sensitive data, the required fulfilments could be so incomplete as to cause prejudice or in terms of sanctions or loss of benefits, both because of the impossibility of guaranteeing the congruity of the processing itself to the obligations for which it is carried out, and because of the possible mismatch of the results of the processing itself with the obligations imposed by the legal regulations to which it is addressed, intending to exonerate the undersigned organization from any and all responsibility for any sanctions or afflictive measures.

Navigation data

The computer systems and software procedures used to operate the website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation and are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

Profiling data

No profiling data is directly acquired regarding the data subject's consumption habits or choices. However, it is possible that through links or by incorporating third-party elements, such information may be acquired by autonomous or separate parties. See in this regard the section on Third Party Cookies.

Cookies

Like others, this website saves cookies on the browser used by the affected user for the purpose of transmitting personally identifiable information and enhancing the user experience. In fact, cookies are small text strings that sites visited by the user send to his terminal (usually to the browser), where they are stored, sometimes even with characteristics of wide temporal persistence, to be then re-transmitted to the same sites on the next visit.
As explained below, you can choose whether and which cookies to accept, bearing in mind that refusing their use may affect the ability to perform certain transactions on the site or the accuracy and adequacy of some customizable content proposed or the ability to recognize the user from one visit to the next. In case you make no choice in this regard, the default settings will be applied and all cookies will be activated: however, at any time, you may communicate or change your decisions in this regard.

Technical cookies

In particular, so-called session cookies are used, which are not stored persistently on the user's computer and vanish when the browser is closed, and whose use is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable the safe and efficient exploration of the site and that avoid the use of other computer techniques potentially prejudicial to the confidentiality of users' browsing and do not allow the acquisition of personal identification data of the user. Then analytics cookies are used, which help to understand how visitors interact with site content by collecting information (geographic and web origin, technology used, language, entry pages, visited pages, exit pages, dwell times, etc.) and generating website usage statistics without personal identification of individual visitors. All of these are to be considered technical cookies for which, since it is not necessary to give consent, the opt-out mechanism applies. Technical cookies are not disclosed to third parties as they are necessary or useful for the operation of the site; therefore, they are processed only by individuals qualified as data processors, data controllers or system administrators.

Third-party cookies

Finally, the site incorporates cookies and other elements (tags, pixels, etc.) of third parties (autonomous and on which the Owner has no responsibility) that also carry out profiling activities and for which please refer to their respective sites:

Data voluntarily provided by the user

The optional, explicit and voluntary sending of electronic mail to the addresses indicated on the site involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the email. The explicit and voluntary sending of the forms that can be filled out on the site containing data of the interested party also involves processing in order to follow up on pre-contractual obligations or the execution of the services provided with the sending of the forms. Such information in the forms may concern personal data, contact information, contact details, telephone numbers, bank data, email addresses of the interested parties and identified and identifiable third parties having cause with the user of the site. However, specific summary disclosures will be progressively reported or displayed on pages of the site set up for particular on-demand services.

Rights of the data subject

The data subject has the right:

  • to know whether or not personal data concerning him/her exists and to know the origin of such data
  • To be informed about the purposes and methods of processing
  • To obtain the updating, rectification or supplementation of data
  • to know the identification details of the data controller
  • to object in whole or in part, on legitimate grounds, to the processing of data concerning him/her
  • To request the blocking of data processed in violation of the law

Period of data retention

Data pertaining to academic careers will be retained indefinitely in order to comply with individuals' certification requests and verification requests, subject to archiving requirements imposed by current regulations

Contact data (telephone, personal email) are kept for the period necessary to achieve the purposes for which they were collected and thereafter will no longer be used by the Academy.

No personal data are processed and published on the institutional website of the Academy of Fine Arts of Cuneo.

Owner and data controller

Academy of Fine Arts of Cuneo l.r. di Orzi Annamaria, registered office in Cuneo, via Savigliano 8 /B.