Privacy and data-security and protection policies
From 25 may 2018 is directly applicable in all the member states the Eu Regulation 2016/679, known as GDPR (General Data Protection Regulation) – related to the protection of the natural person with regard to the treatment and the free movement of personal data.
The GDPR stems from precise requirements, as indicated by the Ue Commission itself, of juridical certainty, of armonization and greater certainty of the rules regarding data transfer from the Eu to other parts of the world. It also was a necessary, urgent response to the challenges mounted by the technological developments taking account of the need for personal data protection increasingly felt by the Eu citizens. The main objective of the GDPR european Commission are also those of returning to the citizens the control over their own personal data and of simplifying the normative context within the EU.
On the basis of the GDPR:
- clearer rules on the disclosure and the consent have been introduced;
- limits to the automated treatment of personal data have been defined;
- poste le basi per l’esercizio di nuovi diritti;
- the foundations for the exercise of new rights have been layed;
- strict criteria for the transfer of those out of the EU have been enstablished
- strict rules for the cases of data violation have been enstablished (data breach);
- the rules also apply to the companies situated outside the European Union offering services or products within the Eu market.
In order to fulfil the obbligations provided for by the GDPR, eCampus Telematic University has been provided with new and specific disclosures, different depending on the interested party (potential students, students, teachers and collaborators).
Furthermore the University has already welcomed all the innovations introduced by the Regulation, starting from those put into place so far, in order to conform to the Legislative Decree 196/2003, aknowledged as 'Consolidated text on privacy'.
As far as the treatments without the aid of automated processes are concerned, it was enstablished a properly planned archive, where the paper trail has been separated according to the category of the personal data it contains.
The policies for the safe management of the resources guarantee the physical security of the host infrastructures, both in terms of emergency management and intrusion prevention.
For any request for clarification, the users may contact the University Data Protection Officer (DPO), Dr. Antonella Cassandro, lawyer (dpo@uniecampus.it).