The personal data provided through the website shall be processed for the following purposes:
- Gathering anonymous statistical information about website use and to monitor its function
- Carrying out educational activities related to the courses offered by the university
- Compilation of data collection forms for recieving newsletter or email communications
The website uses log files which store data collected in an automated manner during user visits. The data collected can include the following:
- Internet Protocol address (IP)
- Browser type and parameters of the device used to connect to the website
- Date and time of the visit
- The websites visited immediately prior (referral) and next to the visit
The above-mentioned data is processed in an automated, anonymous manner to ensure the proper functioning of the website and for security reasons. The same data may be processed, in compliance with existing regulations, to block attempts to damage the website itself or other users, or to prevent any other harmful or illegal activities.
The data that website users shall accept to make public through the services and the tools made available by the latter are provided by the users willingly and knowingly, exempting the present website from any liability in case of violations of the law. The user is responsible for making sure they have the necessary permission for inserting the personal data of third parties or content protected under national and international law.
The data collected by the website during its functioning are used exclusively for the above-mentioned purposes, and stored for the period of time strictly necessary for carrying out the above-mentioned activities, which normally amounts to 180 days.
Cookies are small text files that a website visited by a user sends to that user’s browser (e.g. Internet Explorer, Mozilla Firefox, or Google Chrome), where they are stored in order to be re-sent to the same websites during browsing or upon the user’s next visit.
Session cookies are fundamental for the proper functioning of the various components present in the portal and they make the entire web ecosystem accessible, by activating basic functions such as page navigation. The website cannot function properly without cookies.
The portal uses third-party content (through resource embedding techniques); it is thus possible that during a visit to the portal, other cookies – including both technical cookies and user profiling cookies – may be sent by these third parties to the user’s browser. The suppliers of said services are responsible for their own privacy and cookie policies. Below is a list of the services used and links to their privacy and cookie policies.
The data arising from the use of Google, Youtube, Twitter, Facebook, and Instagram profiling cookies is processed for the purposes and in the ways detailed in the policies above; some of the data may be processed outside of the borders of the European Union.
The technical cookies and log files are collected by the website and are processed in the offices of the external data processor, who processes the data on behalf of the data controller, and whose offices are located within the European Economic Space.
For detailed information on the cookies used by the portal, see below.
Disabling all cookies
Below are the links that explain how to disable cookies on the most popular browsers (for any other browsers, we suggest you look for this option in your software’s help section).
- Internet Explorer: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies#
- Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
- Mozilla Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
- Opera: https://help.opera.com/en/latest/web-preferences/#cookies
- Apple Safari: https://www.apple.com/legal/privacy/en-ww/cookies/
Disabling third-party cookies
Disabling third-party cookies is also possible in the ways described in their respective privacy policies and/or made available directly by the third-party company serving as the data controller.
Disabling Google Analytics cookies only can be done by using the additional opt-out component provided by Google for all the main browsers, available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
Cancelling cookies already stored on the terminal
Even if the authorization for using third-party cookies is revoked, such cookies may have been stored on the user’s terminal prior to the revocation. For technical reasons, it is not possible to erase these cookies, but the user’s browser makes it possible to eliminate them via the browser’s privacy settings. The browser’s options include “Clear browser history”, which can be used to eliminate cookies, website data, and plug-ins.
These cookies make it possible for the Portal’s various components to function, and make the entire web ecosystem accessible by enabling basic functions such as page navigation. The website cannot function properly without these cookies.
|Name of cookie||Duration||Purpose||Type of cookie||Domain|
|cookie-agreed||3 months + 1 week||Memorises the user’s consent status for cookies for the current domain||Technical cookie||en.unimib.it|
Thanks to these cookies, the University can better understand how users interact with its institutional portal, including federated websites, by collecting and transmitting data in an anonymous manner.
|Name of cookie||Duration||Purpose||Type of cookie||Source|
|_gat||1 minute||Used by Google Analytics to limit the frequency of requests||Profiling cookie|
|_ga||2 years||Registers a unique ID used to generate statistical data on how the visitor users the website||Profiling cookie|
|_gid||24 hours||Registers a unique ID used to generate statistical data on how the visitor users the website||Profiling cookie|
These cookies are used to monitor website visitors in order to show pertinent, targeted advertising reflecting the user’s browsing preferences.
|Name of cookies||Duration||Purpose||Type of cookie||Source/Domain|
|VISITOR_INFO1_LIVE||6 months||Tries to estimate the user’s connection speed for websites with integrated YouTube videos.||Profiling cookie||YouTube|
|PREF||8 months||Registers a unique ID used by Google to generate statistical data on how the visitor users Youtube videos on various websites||Profiling cookie||YouTube|
|YSC||session||Registers a unique ID used to generate statistical data on which YouTube videos have been viewed by the user||Profiling cookie||YouTube|
|IDE||13 months||Used by Google DoubleClick to register and produce reports on the actions of the user on the website after he or she has clicked on one of the advertiser’s ads in order to evaluate the efficacy of a given ad and present targeted advertising to the user||Profiling cookie||doubleclick.net|
This website processes user data in a proper and lawful manner, and adopts all necessary security measures to prevent the unauthorized access, publication, modification, or unauthorized destruction of said data. Processing takes place through digital and/or telematic tools, with organizational modalities and approaches that are strictly related to the stated purposes of data processing. In addition to the data controller, in some cases subjects authorized by the University and involved in the organization of the website may have access to the data.
Pursuant to EU Regulation 2016/679 (GDPR) and national laws, users can exert the following rights within the limits and according to the modalities established under existing laws:
- The right to access his or her own personal data;
- The right to obtain rectification or erasure of said data and limits on their processing;
- The right to data portability (applicable only to data in electronic format), as disciplined by art. 20 of regulation UE 2016/679;
- The right to object to data processing;
- The right to file a claim with the Italian Data Protection Authority.
Requests must be addressed to the data controller.
To exert the above-mentioned rights, users may contact the data controller at the following email address: email@example.com or at the following certified email address: firstname.lastname@example.org.
The data controller must reply within one month of receipt of the request, which deadline can be extended up to three months for particularly complex requests.