I – INFORMATION ABOUT THE SITE’S PRIVACY POLICY

1. This section contains information about the management of creacultura.eu concerning the processing of user data on creacultura.eu.

2. This policy is provided pursuant to Article 13 of Legislative Decree No. 196/2003, the Italian Personal Data Protection Code, and Article 13 of EU Regulation No. 2016/679 (GDPR), concerning the protection of individuals regarding the processing of personal data and the free movement of such data. It applies to users interacting with creacultura.eu and is accessible at the homepage: https://creacultura.eu.

3. This policy applies only to creacultura.eu and not to any other websites that may be visited by the user via links on this site.

4. The purpose of this document is to provide information about the methods, timing, and nature of the information that data controllers must provide to users when connecting to creacultura.eu, regardless of the purpose of the connection, in accordance with Italian and European legislation.

5. This policy may be updated due to new regulations. Users are encouraged to check this page periodically.

6. If the user is under 16 years old, under Article 8(1) of EU Regulation 2016/679, they must obtain parental consent or the consent of a legal guardian.

II – DATA PROCESSING

1 – Data Controller

1. The data controller is the natural or legal person, public authority, service, or other body that, alone or jointly with others, determines the purposes and means of processing personal data, including security measures.

2. For this website, the data controller is:
   CRHACK LAB FOLIGNO 4D – Via Andrea Vici 8/b – 06034 Foligno (PG), VAT No. 91051320546, represented by its legal representative.
   For inquiries or to exercise user rights, contact: weare@crowddreaminganew.world.

2 – Data Processing Location

1. Data processing related to creacultura.eu takes place at the legal headquarters of CRHACK LAB in Foligno 4D – Via Andrea Vici 8/b – 06034 Foligno (PG).

2. If necessary, data related to the newsletter service may be processed by external parties appointed as data processors under Article 28 of the GDPR.

III – COOKIES

1 – Types of Cookies

1. creacultura.eu uses cookies to enhance user navigation, making it easier and more intuitive. Cookies are small text strings used to store information about the user, preferences, or internet access device (computer, tablet, or mobile). They adapt the site’s functionality to user expectations, offering a personalized experience.

2. A cookie consists of a small dataset transferred to the user’s browser from a web server and can only be read by the server that made the transfer. It is not executable code and does not transmit viruses.

3. Cookies do not record personal information, and no identifiable data is stored. Users may disable some or all cookies, but this may compromise site functionality.

2 – Technical Cookies

1. These cookies are essential for navigation and access to the site. They enable secure electronic communication and service provision.

2. Cookie settings vary by browser. Users can manage or disable cookies via browser settings, though this may slow or block access to parts of the site.

3. Technical cookies ensure secure and efficient site use.

4. Analytics cookies (e.g., Google Analytics) are considered technical if used for site optimization by the owner, collecting aggregated data on user visits.

5. Session cookies expire when the browser closes, while persistent cookies remain until manually deleted or expired.

6. Session cookies may be used to authenticate users in restricted areas.

3 – Third-Party Cookies

1. These are set by domains other than creacultura.eu.

2. Persistent cookies are often third-party tracking cookies, used to analyze online behavior and personalize ads.

3. Third-party analytics cookies anonymously track user behavior to improve site performance.

4. Users should review third-party privacy policies to manage or disable these cookies.

IV – DATA PROCESSED

– Data Processing Methods

1. Data is processed in compliance with GDPR principles: lawfulness, fairness, transparency, purpose limitation, storage limitation, data minimization, accuracy, integrity, and confidentiality.

2. Data is retained only as long as necessary and anonymized afterward.

   • Security data (e.g., IP addresses) is stored for 7 days to block malicious activity.

– Types of Data Processed

1. Automatically collected data (via log files) may include:

   • IP address

   • Browser/device type

   • ISP

   • Visit date/time

   • Referral/exit pages

   • Click count

2. This data is aggregated for site functionality and security, based on the controller’s legitimate interests.

3. User-provided data (e.g., comments, job applications) is used solely for the requested service.

V. PURPOSES OF DATA PROCESSING

1. Statistics (Analytics): Aggregated, anonymous data to monitor site performance. No consent required.

2. Security: Data (e.g., IP) to prevent fraud/abuse. Never used for profiling. No consent required.

3. Ancillary Activities: Data shared with third-party service providers under strict confidentiality.

VI. BROWSER CONFIGURATION SUPPORT

1. Users can manage cookies via browser settings (deleting them may reset preferences).

   • Internet Explorer: Link

   • Firefox: Link

   • Safari: Link

   • Chrome: Link

   • Opera: Link

VII. USER RIGHTS

Users have the right to:

• Access, update, rectify, or restrict their data (Articles 15–18 GDPR).

• Request deletion (Article 17 GDPR) or anonymization of unlawfully processed data.

• Lodge complaints with the Italian Data Protection Authority (Garante).

Requests should be sent to: weare@crowddreaminganew.world.

VIII. DATA TRANSFER OUTSIDE THE EU

1. Data may be shared with services outside the EU (e.g., Google, Facebook) under Article 45(1) GDPR (no additional consent required).

2. No data is transferred to non-compliant third countries.

IX. DATA SECURITY

1. Data is processed lawfully, with security measures to prevent unauthorized access or disclosure.

2. Only authorized personnel and third-party providers (under strict agreements) access data.

X. CHANGES TO THIS DOCUMENT

1. This policy, published at https://creacultura.eu/en/privacy-policy, governs the site.

2. It may be updated; users should check periodically.

3. Previous versions remain archived.

4. Last updated: 08/11/2023 to comply with GDPR.