ERICSSON TELECOMUNICAZIONI S.p.a., in its capacity as data controller, hereby provides you with information regarding the processing of the personal data of the Users who consult the website https://spider-h2020.eu/ (the “Site”) pursuant to Article 13 of EU Regulation no. 679/2016 (the “Regulation”). This policy is provided only for the Site and not for other websites that may be consulted by the user using hyperlinks that may be contained in the pages of the Site.
1. Data controller for personal data processing
The data controller for the processing of your personal data, collected when the website is used, is ERICSSON TELECOMUNICAZIONI S.p.A. (ERICSSON), established in VIA ANAGNINA 203, Roma 00118, Italy, VAT number: IT00886171008,
2. Types of data and purposes and legal basis of data processing
The computer systems and software procedures used to operate the Site acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols. The information above is not collected to be associated with identified data subjects, but which by their very nature could, through processing and association with data held by third parties, allow Users to be identified. This category of data may include IP addresses or domain names of computers used by users connecting to the site, URIs (Uniform Resource Identifiers) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc.) and other parameters regarding the user’s operating system and IT environment. This data is used only to obtain anonymous statistical information on the use of the site and to monitor the correct functioning of the Site. The legal basis for the previously mentioned data processing is the legitimate interests pursued by the Controller.
“Contact us” form
We collect information when you fill out “contact us” form. We may use the information you voluntarily enter when you submit queries to answer them. The legal basis for the data processing is the request of the data subject. Our “contact us” form requires the minimum information needed in order to be able to respond back to your request. When registering, you need to enter the following mandatory data. These include:
- first name and surname, and
- email address
4. Recipients of personal data
5. Transfer of personal data to a third country or an international organisation
Personal data shall not be transmitted abroad to Countries or International Organisations not based on the European Commission, which countries or organisations are incapable of providing an adequate level of protection, as per art. 45 GDPR, in accordance with a decision regarding adequacy issued by the EU Commission. If required for provision of the Site’s services, transfer of personal data to non-EU Countries or International Organisations, in respect of which the Commission has issued no decision regarding adequacy as per art. 45 GDPR, shall take place only in the presence of adequate guarantees provided by the addressee Country or Organization, as per art. 46 GDPR, on condition furthermore that the subjects concerned effectively enjoy rights to seek judicial remedy and to appeal. In the absence of a decision regarding adequacy issued by the Commission, pursuant to art. 45 GDPR, or in the absence of adequate guarantees pursuant to art. 46 GDPR, including binding corporate rules, transfer abroad is conditional upon efficacy of one of the terms set forth in art. 49 GDPR.
6. Period of retention of personal data
The personal data will be kept for the time necessary to provide the requested services and exclusively for the period in which the service will be active.
7. Nature of consent for the processing of data and consequence of failure to give consent
8. Rights of the data subject
We inform you that, as the data subject for the processing, you have the right to obtain from the Data Controller:
Right of access: (Article 15 of the Regulation)
confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, the right to obtain, among other things, access to your personal data and information regarding the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipient to whom the personal data have been or will be disclosed.
Right to rectification: (Article 16 of the Regulation)
(i) rectification without undue delay of inaccurate personal data concerning you and (ii) completion of your personal data, where incomplete.
Right to erasure ("right to be forgotten"): (Article 17 of the Regulation)
erasure of personal data concerning you without undue delay (the Data Controller has the obligation to erase personal data without undue delay in the cases set out in Article 17 of the Regulation).
Right to restriction of processing: (Article 18 of the Regulation)
restriction of processing in the cases set out in Article 18 of the Regulation.
Right to data portability: (Article 20 of the Regulation)
receipt in a structured, commonly used and machine-readable format of personal data concerning you; the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, in the cases set out in Article 20 of the Regulation.
Right to object for processing carried out under Article 6(1)(e) or (f): (Article 21 of the Regulation)
right to object, at any time, on grounds relating to your particular situation, to processing of personal data concerning you based on point (e) or (f) of Article 6(1), including profiling based on those provisions.
At any time you will have the opportunity to exercise the above rights through a formal request sent to the email address email@example.com accompanied by an identity document. You also have the right to lodge a complaint with the Supervisory Authority for the protection of personal data if you believe that the processing of your personal data violates the provisions of EU Regulation no. 679/2016.