Privacy & Cookie Policy

Purpose of Processing

Pursuant to Regulation (EU) 2016/679 (hereinafter, the “Regulation”) and Legislative Decree No. 196 of 30 June 2003, as amended by Legislative Decree No. 101/2018, this privacy notice describes the methods of processing of personal data of users who consult the web pages and use any services available at the following address:

This notice is addressed to those who interact with the above-mentioned website only, and not with other websites that may be accessed via links on the site but refer to external resources.

Some pages may require the provision of personal data. Please note that failure to provide such data may result in the impossibility of achieving the purposes for which the processing is carried out.

Pursuant to Article 13 of Regulation (EU) 2016/679, it is hereby informed that the processing of personal data carried out through https://elixir-italy.org/ concerns exclusively personal data collected in relation to the achievement of the institutional purposes of the Project, or otherwise connected with the performance of tasks carried out in the public interest or in the exercise of official authority, including purposes of scientific research and statistical analysis, education and administration, pursuant to Article 6(1)(e) of the Regulation, and in particular for the purpose of providing and improving the web services offered.

Personal data are processed lawfully, fairly and in a relevant manner, limited to what is necessary to achieve the purposes of the processing, for no longer than is necessary to fulfil the purposes for which they were collected, and in any case in compliance with the principles set out in Article 5 of Regulation (EU) 2016/679.

Specific security measures are implemented to prevent data loss, unlawful or incorrect use, and unauthorised access.

Data Controller

Pursuant to Regulation (EU) 2016/679, the Data Controller is the CNR – National Research Council (Consiglio Nazionale delle Ricerche), with registered office in Rome, Piazzale Aldo Moro 7, 00185 Rome, Italy.

Pursuant to Regulation (EU) 2016/679, the Data Processor for the processing of personal data carried out through www.cnr.it is the CNR Press Office, which can be contacted at the following email address: direttore.ufficiostampa@cnr.it.

Pursuant to Articles 37 et seq. of the aforementioned Regulation on the protection of natural persons with regard to the processing of personal data, by decision No. 91/2023 of 4 July 2023, the CNR appointed Eng. Roberto Puccinelli as Data Protection Officer (DPO), who can be contacted at:

Mail: rpd@cnr.it or dpo@cnr.it

PEC: rpd@pec.cnr.it

Rights of Data Subjects

Data subjects have the right to request from the Data Controller access to their personal data and the rectification or erasure of such data, or the restriction of processing concerning them, or to object to processing, in accordance with Articles 15 et seq. of Regulation (EU) 2016/679.

Data subjects have the right to submit their request to the Data Controller. Requests should be sent to: direttore.ufficiostampa@cnr.it.

Where the conditions are met, data subjects also have the right to lodge a complaint with the Supervisory Authority (the Italian Data Protection Authority).

Contact Information

Data Protection Officer (DPO): rpd@cnr.it

Data Processor: direttore.ufficiostampa@cnr.it

Italian Data Protection Authority (Garante per la protezione dei dati personali): https://www.garanteprivacy.it

Cookies

This website uses technical cookies to store the User’s session and to perform other activities strictly necessary for its operation. The installation of such cookies does not require prior user consent. No profiling cookies are used.

Deletion of Stored Cookies

To delete technical cookies, users must select the appropriate option in their browser’s privacy settings (usually indicated as “Clear browsing data”).

Use of Umami Analytics

This website uses Umami, an open-source, privacy-oriented web analytics software, to collect aggregated statistical information on website usage (e.g. number of visits, pages viewed, type of device or browser).

Umami is configured through a self-hosted installation on CNR servers so as to:

  • not use cookies;
  • not collect personally identifiable data;
  • anonymise IP addresses;
  • not track users across different websites.

The collected data are used exclusively for statistical purposes and to improve the content and services offered by the website.

Based on the characteristics described above, the use of Umami does not require the user’s prior consent pursuant to the applicable legislation (Regulation (EU) 2016/679 – GDPR), without prejudice to the obligation to provide this information pursuant to Article 13 of the GDPR, which can be consulted at the following URL: https://umami.is/privacy.

Social Networks

With regard to ELIXIR Italy accounts active on the social media platforms Bluesky (https://bsky.app/profile/elixir-it.bsky.social), X (https://x.com/elixir_it), YouTube (https://www.youtube.com/@elixiritaly) and LinkedIn (https://www.linkedin.com/company/elixir-iib/), some personal information may be collected by the operators of these platforms whenever users choose to interact with the related plug-ins. For more detailed information, users are referred to the relevant privacy policies.

When sharing content on some of the main social networks (Bluesky, X, YouTube and LinkedIn), some personal information may be collected by the operators of the social media platforms whenever the User chooses to interact with the plug-ins. For further information on the logic and methods of processing of the collected data, users are invited to consult the privacy notices provided by the service providers:

Use of APIs for automatic content updates

The website https://elixir-italy.org uses, for informational purposes and content updates, services and APIs provided by external platforms such as bio.tools, ELIXIR Europe, CORDIS, and Zenodo. The bio.tools APIs are used exclusively during the content drafting phase and only from the website’s back-end, without any involvement of the end user and without any processing of users’ personal data.

Other integrated services, such as the display of job opportunities from ELIXIR Europe, links to projects hosted on CORDIS, and access to related resources hosted on Zenodo, may involve user interaction with external platforms through links or embedded content. In such cases, any processing of personal data is governed by the respective privacy policies of the third parties concerned. In all cases, the integration of these services is carried out in compliance with the principles of lawfulness, fairness, transparency, and data minimisation, in accordance with Regulation (EU) 2016/679 (GDPR).

Methods of Processing

Personal data are processed using electronic tools and procedures only for the time necessary to achieve the purposes for which they were collected. Specific security measures are implemented to prevent data loss, unlawful or incorrect use, and unauthorised access.

Data are stored for one year, after which they are anonymised and retained indefinitely solely for statistical and security purposes.

Transfer of Personal Data

The collected data may be transferred to Member States of the European Union, but will not be transferred to third countries outside the European Union.

Special Categories of Personal Data

ELIXIR Italy does not require the Data Subject to provide so-called “special categories” of data, namely, pursuant to the GDPR, personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data intended to uniquely identify a natural person, data concerning health, or data concerning a person’s sex life or sexual orientation.

Should the service requested from ELIXIR Italy require the processing of such data, the Data Subject will receive a specific prior information notice and will be asked to provide explicit consent, without prejudice to the cases referred to in Article 9 of the GDPR.