Personal data of users of the website www.cloudifynoipa.it and its linked services (hereinafter the "Services") are treated in accordance with EU Regulation no. 2016/679 (hereafter "Regulations") on the protection of individuals with regard to the processing of their personal data, by the Ministry of the Economy and Finance at its offices (hereinafter "MEF").

This information does not apply to other websites, pages or online services accessible via hypertext links that may be published on the websites but referring to resources outside the Ministry's domain.

Data controller

The Data Controller through the CLOUDIFY NoiPA Portal is the Ministry of Economy and Finance, via XX Settembre 97, 00187, Rome, to which is possible to refer to exercise the rights pursuant articles 15 to 22 of the Regulation (EU) n. 2016/679, or via e-mail at capodipartimento.dag@pec.mef.gov.it

Responsible for data protection

The MEF has appointed the Data Protection Officer (DPO), whose contact details are the following:

• responsabileprotezionedati@mef.gov.it;

• rpd@pec.mef.gov.it.

Legal basis of the processing

The personal data used by this site are treated by the MEF in the execution of their duties of public interest or related to the exercise of its public powers, including the task of promoting the awareness and understanding of the public about the risks, standards, safeguards and rights in relation to treatment.

Types of data and purpose of the processing

Navigation data

IT systems and software procedures underpinning the operation of this website acquire some personal data during their normal operations; the forwarding of such data is implicit in the use of internet communication protocols.

It concerns information that is not collected to be associated with specific individuals, but by their by their very own nature could, through the processing and association with data held by third parties, allow users to be identified.parties.

This category of data includes IP addresses or domain names of computers used by users that connect to the website, URI (Uniform Resource Identifier) ​​addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.) and other parameters regarding the operating system and the user's IT environment.

This data is only used to obtain anonymous, statistical information regarding website use and to verify its correct operation and they are deleted after processing. The data could be used to ascertain liability in case of hypothetical computer crimes against the site: besides this eventuality, data will be kept for a period of time not longer than the one necessary to the pursuing of the scope they have been aiming for in first place.

Data voluntarily provided by the user

The optional, explicit and voluntary sending of e-mail to the addresses indicated on this website involves the subsequent acquisition of the sender's address required to reply to information requests, and any other personal data included in the message.

Specific synthesis procedures will be progressively reported or visualized in the website pages arranged for particular services upon request.

Cookies

Cookies are small portions of codes (IT files or partial data) sent by a server to the user’s internet browser which are automatically memorised by this browser and automatically sent back to the server on every occurrence or subsequent visit to the website. During the navigation, users can receive cookies from different websites or web servers (so-called "third parties"), on which some elements may exist (such as, for example, images, maps, sounds, specific links to pages of other domains) with the site that he/she is visiting.

Technical cookies

Technical cookies are those used for the sole purpose of transmitting a communication over an electronic communications network, or to the extent strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide such service.

They are not used for other purposes and are normally installed directly by the owner or operator of the website.

They can be divided into:

• Session cookies, guarantee the normal navigation and use of the website (for example: to authenticate and access reserved areas).

• Analytical cookies, similar to technical cookies, they are used only to collect information in aggregate form, the number of users who visit the site and how they visit it;
• Functional cookies, allow the user to navigate based on a series of selected criteria (language, products or services purchased) to improve the service rendered to the user.

For the installation of these cookies, user’s prior consent is not required, while it remains subject to the obligation to provide adequate information about the treatment of personal data concerning users.

NoiPA CLOUDIFY cookies are used to improve the services offered to users such as:

• allow a service to recognize its device, to avoid repeatedly entering the same information during an activity;

• calculate how many users are using the services, so as to facilitate their operation and ensure the necessary capacity for fast navigation.

Session cookies

The use of so-called browsing/session cookies (which are not stored permanently on the user's computer and are deleted once the browser is closed) is strictly limited to the transmission of session identifiers (formed by random numbers generated by the server) which are necessary to enable a safe and efficient exploration of the site.

In particular, the IT systems and software procedures for operation of the IIT website acquire, during normal operation, some data transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified parties concerned, but that by its very nature could, through processing and association with data held by third parties, allow identifying users.

Functionality Cookies

The use of these cookies allows to the user a navigation functional to a series of selected criteria, for example the language, aiming at improving the delivered service.

Cloudify NoiPA portal cookies are not used for user’s profiling activity.

Cookies are not used for the transmission of personal information, and there are not any of the so called persistent cookies. The eventual use of permanent cookies can be made uniquely in case it is necessary to a service out-turn that enters within the institutional functions of the Administration.

How to disable and delete cookies

Most browsers accept cookies automatically, but you can choose to enable or disable cookies by adjusting the settings of your navigation browser. Disabling cookies is not recommended as normal navigation may be compromised and some or all features of some sites may not be available. Change browser's security settings if cookies are not desired.

The following are the addresses on the pages of the relative producers of the most widespread browsers:

Google Chrome https://support.google.com/accounts/answer/61416?hl=it

Mozilla Firefox https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie

Windows Internet Explorer http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies

Apple Safari https://support.apple.com/it-it/HT201265

Opera http://help.opera.com/Windows/10.00/it/cookies.html

Rights of the interested party

The parties to which the personal data refer have the right to obtain at any time confirmation of the existence of such data and to know the content and in case, to obtain access to the personal data together with the following information: purposes of treatments, categories of subjects to whom the data may be or will be communicated (including recipients of third countries or international organizations), the identification data of the manager or, if not possible, the criteria used to determine data origin, if they were not collected by the data subject, the existence of an automated decision-making process, including profiling and information on the logic used.

Furthermore, the interested has the right, in the cases provided by the Regulation (EU) no. 2016/679 to Articles 16 to 21, to obtain:

• Update inaccurate personal data
• Integrate incomplete personal data
• Cancellation (“Right to be forgotten”)
• The limitation of the personal data processing (in this case, the data are processed only with the consent of the interested party, except for their necessary preservation or for the other cases permitted by law)
• The portability of data, transmitting them from one Data Controller to another, if technically feasible
• Opposition to their treatment

The related requests must be forwarded to the Data Controller, using the contact details provided in this statement.

Right to propose a complaint

If the interested part considers that Data Controller processing performance may have violated current regulations, he/she has the right to lodge a complaint with the Supervisory Authority for the protection of personal data according to clause 77 of the Regulation (EU) n. 2016/679.

To consult the General Information on the processing of personal data on the Portal and Services Cloudify NoiPA click here.