Privacy Policy

This Privacy Policy is provided in accordance with Article 13 of Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and the Guidelines of the Italian Data Protection Authority regarding cookies and other tracking tools of 10 June 2021.

Purpose and Processing of Data

This section contains information regarding the management procedures adopted by CNR ISPC concerning the processing of users’ data of the website www.ispc.cnr.it
This information notice is provided solely for the CNR ISPC portal (www.ispc.cnr.it) and not for other websites that may be accessed by users via external links.
Some pages may require the provision of personal data; failure to provide such data may make it impossible to achieve the purposes for which the processing is intended.
Pursuant to Article 13 of Regulation (EU) 2016/679, users are informed that the processing of personal data carried out through www.ispc.cnr.it concerns exclusively personal data acquired in relation to the achievement of the institutional purposes of the Body, or otherwise connected to the performance of tasks of public interest or the exercise of official authority entrusted to it, including scientific research and statistical analysis purposes, teaching and administrative activities, pursuant to Article 6(1)(e) of the Regulation, and in particular for the purpose of providing and improving the web services offered.
Personal data are processed lawfully, fairly and in a relevant manner, limited to what is necessary to achieve the purposes of processing, for no longer than is necessary to achieve the purposes for which they were collected, and in compliance with the principles set out in Article 5 of Regulation (EU) 2016/679.
Specific security measures are implemented to prevent data loss, unlawful or incorrect use, and unauthorised access.

Data Subject Rights

Data subjects have the right to request from the data controller access to their personal data, rectification or erasure thereof, restriction of processing, or to object to processing, as provided for by Articles 15 et seq. of Regulation (EU) 2016/679.
Data subjects have the right to submit their request to the Data Controller. Requests should be sent to: ufficiostampa@cnr.it
Le istanze dovranno essere indirizzate a: ufficiostampa@cnr.it
Where the conditions are met, data subjects also have the right to lodge a complaint with the Italian Data Protection Authority as the supervisory authority.

Data Controller and Data Protection Officer

Pursuant to Regulation (EU) 2016/679, the Data Controller is: CNR – Consiglio Nazionale delle Ricerche, registered office: Piazzale Aldo Moro 7, 00185 Rome, Italy. Pursuant to Regulation (EU) 2016/679, the Data Processor for data processed through www.ispc.cnr.it is: Istituto di Scienze del Patrimonio Culturale (ISPC), contact email: direttore@ispc.cnr.it. Pursuant to Articles 37 et seq. of the Regulation, the CNR, by provision no. 91/2023 of 04/07/2023, has appointed a Data Protection Officer (DPO), email: rpd@cnr.it

Contact Information

Data Controller: Consiglio Nazionale delle Ricerche, Piazzale A. Moro 7 – 00185 ROMA – email: ufficiostampa@cnr.it
Data Protection Officer (DPO): Consiglio Nazionale delle Ricerche, Piazzale A. Moro 7 – 00185 ROMA – email: rpd@cnr.it
Data Processor for ISPC: Director COSTANZA MILIANI - email: direttore@ispc.cnr.it
Internal GDPR Officer: FABIO FORTINGUERRA – email: fabio.fortinguerra@cnr.it

Cookie policy

Cookie Information

A “cookie” is a small text file created by some websites on the user’s computer when accessing a given website, with the purpose of storing and transmitting information. Cookies are sent by a web server to the user’s browser and stored on the user’s device; they are then sent back to the website upon subsequent visits.
Some operations could not be carried out without the use of cookies, which in some cases are technically necessary. Other cookies are used to facilitate navigation or enable the use of specifically requested services.
Cookies may remain on the system for long periods and may contain a unique identification code, enabling websites to track user navigation for statistical or advertising purposes (behavioural advertising). Behavioural Advertising).

Cookies used on this Website

This website uses exclusively strictly necessary session cookies required to enable specific requested functions ensuring normal website navigation and use. These cookies are automatically deleted at the end of each browsing session.

Transfer of Data outside the EU

This website may share some of the data collected with services located outside the European Union, in particular Google, Facebook and Microsoft (LinkedIn) through social plugins. Such transfers are authorised on the basis of specific decisions of the European Commission or standard contractual clauses adopted by the individual service providers.

Security Measures

We process visitors’/users’ data lawfully and fairly, adopting appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of data. We are committed to protecting the security of personal data during transmission through the use of Secure Sockets Layer (SSL) technology, which encrypts information in transit. Processing is carried out using IT and/or telematic tools, with organisational methods and logic strictly related to the purposes indicated.

Disabling Cookies

Users may refuse the use of cookies and revoke consent at any time. Cookies can be disabled directly via the browser used or through the banner at the bottom of the page.

La disabilitazione dei cookie potrebbe impedire il corretto utilizzo di alcune funzioni del sito stesso, in particolare i servizi forniti da terze parti potrebbero non essere accessibili, e quindi potrebbero non essere visualizzabili:
– video di YouTube o altri servizi di condivisione video;
– i social button dei social network;
– le mappe di Google.

Instructions for disabling cookies can be found at the following links:

Mozilla Firefox – Microsoft Internet Explorer – Microsoft Edge – Google Chrome – Opera – Apple Safari

Third-Party Cookies

Matomo

To facilitate website navigation and analyse user interest areas, the site uses Matomo, an open‑source web analytics software fully compliant with European data protection laws. Matomo uses cookies for statistical purposes and collects data only in aggregated form, without associating users’ IP addresses with other previously collected data.

Users visiting the portal may choose to refuse analytics cookies by adjusting the settings available in their browser. Disabling cookies may prevent certain services from functioning properly or restrict access to some content.

Social Network

We use major social networks to stay in touch with our users. These third-party services may release cookies necessary for their operation. When users interact with Facebook, Instagram, YouTube or LinkedIn plugins, personal data may be collected by the platform operators. Users are encouraged to consult the respective privacy policies:

Facebook: https://www.facebook.com/privacy/explanation
Instagram: http://www.instagram.com/legal/privacy
YouTube: https://www.google.it/intl/it/policies/privacy
LinkedIn: https://www.linkedin.com/legal/privacy-policy

Brevo – Newsletter

For newsletter management, CNR ISPC uses Brevo (Sendinblue SAS, 17 rue Salneuve, 75017, Paris, France).

Data are stored on secure servers located within the European Union. Brevo processes data in full compliance with the GDPR and does not use user data for its own promotional purposes nor sell them to third parties. Brevo acts as a Data Processor and may use authorised sub‑processors exclusively for technical maintenance.

Cloud Service (Nextcloud)

The Institute makes available to its employees (researchers, technologists, technicians, administrative staff and research fellows) a cloud storage service based on a self‑hosted installation of the open‑source software Nextcloud.

The system is installed on a server hosted at the Catania datacenter of the GARR Consortium; this server is autonomously managed by Nicolò Paraciani (employee of CNR ISPC, Secondary Office of Rome), who may access the system and the data stored therein exclusively for technical reasons and under the conditions set out below.

Access to the cloud service is performed using CNR credentials (the same used to access SIPER, Scrivania Digitale, etc.), managed by the internal authentication system; credentials are not transmitted in any way to third‑party services.

This applies both to access via the web interface and to use through desktop clients and/or mobile applications (Android and iOS). In particular, the latter synchronise data by communicating directly with the Institute’s server hosted at the GARR Consortium datacenter in Catania, without transmitting information to external services.

The data uploaded by users shall not be accessible in any way by third parties other than the user himself/herself (or persons authorised by the user), except where access is strictly necessary for Dr. Nicolò Paraciani in order to resolve technical issues (such as, by way of example, removal of viruses or malware, recovery of deleted files, etc.), and always subject to prior authorisation by the user, or where access is ordered by the judicial authority.

In the event that improper use of the service by the user is identified, the service will be immediately disabled, without prejudice to reporting the matter to the competent authorities where the relevant conditions apply.
CNR ISPC shall be held harmless from any improper, unlawful and/or fraudulent use of the service by users and may not be held liable in any way for consequences that may arise for third parties as a result of violations attributable to such improper use..
CNR ISPC shall not be held responsible for any loss of data attributable to system malfunctions, nor for any damage suffered by users or caused by them to third parties as a consequence of use of the service.

Nextcloud Cookies

Nextcloud uses only technical cookies, strictly necessary for the proper functioning of the application, as specified in the official documentation , to which reference is made and which individual users declare that they accept at the time they use the service.

Other Information

This website is connected to the Italian scientific and academic network GARR. All users are required to comply with the GARR Acceptable Use Policy (AUP). Personal pages are under the direct responsibility of their respective owners. All activities are supervised by the Institute Director.

Update

This Privacy Policy was last updated on 14 April 2026.

Cookie	Durata	Descrizione
locale	5 years	Facebook sets this cookie to enhance the user's browsing experience on the website, and to provide the user with relevant advertising while using Facebook’s social media platforms.
uncodeAI.css	session	Uncode cookie contain information about the screen resolution and viewport at runtime. The information is utilized to determine the appropriate Adaptive Images at any page refresh, ensuring that all images are responsive.
uncodeAI.images	session	Uncode cookie contain information about the screen resolution and viewport at runtime. The information is utilized to determine the appropriate Adaptive Images at any page refresh, ensuring that all images are responsive.
uncodeAI.screen	session	Uncode cookies contain information about the screen resolution and viewport at runtime. The information is utilized to determine the appropriate Adaptive Images at any page refresh, ensuring that all images are responsive.

Cookie	Durata	Descrizione
VISITOR_INFO1_LIVE	6 months	YouTube sets this cookie to measure bandwidth, determining whether the user gets the new or old player interface.
VISITOR_PRIVACY_METADATA	6 months	YouTube sets this cookie to store the user's cookie consent state for the current domain.
YSC	session	Youtube sets this cookie to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt-remote-device-id	never	YouTube sets this cookie to store the user's video preferences using embedded YouTube videos.
yt.innertube::nextId	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	YouTube sets this cookie to register a unique ID to store data on what videos from YouTube the user has seen.

Cookie	Durata	Descrizione
_pk_id.24.e803	1 year 1 month	Description is currently not available.
_pk_ses.24.e803	1 hour	Description is currently not available.
ISPCID	session	Description is currently not available.
t	1 year 1 month 4 days	Description is currently not available.