Skip to content

Privacy Policy

Privacy Policy of website

Information document pursuant to and for the purposes of Articles 13 and 14 Regulation (EU) 2016/679 (GDPR)

In compliance with EU Reg. 2016/679 (European Data Protection Regulation) we provide the necessary information regarding the processing of the provided personal data. 

When we process your personal data, we take the utmost care to protect it. We comply with the principles of lawfulness, minimisation, transparency, confidentiality and integrity in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter referred to as “GDPR”).

This document is an information notice provided pursuant to Articles 13-14 of the EU Reg. 2016/679 to navigating users who interact with the web services of AI CODE at .

This information refers exclusively to this website and is not valid for other websites that may be consulted by the user by means of hypertext links.

1 Data Controller

The Data Controller of this Site is DSTECH S.r.l. – CF and P.IVA 09898921003 with registered office in via Salaria, 719a – 00138 Rome (Italy) and operative office in via Salaria, 719a – 00138 Rome (Italy), email:; Ph. No. 06 96035261.

2 External Data Processor

Aruba S.p.A. has been appointed as external data processor pursuant to Article 28 of EU Reg. 2016/679 for operations relating to the management and maintenance of the website. 

Various types of processing and data collection are carried out through this website:

  • automatic collection of user data for interaction with the website;
  • collection of data, entered voluntarily by the user of the Site through registration for online services, by filling in the “contact” form provided within the Site pages;
  • subscription – subject to the expression of consent – to the newsletter service managed by Euractiv ( and/or the sending of further communications by means of automatic information sharing, processing and exchange systems. The email for unsubscribing is

3 Location of data processing

The processing operations connected to the web services of this Site take place at the aforementioned location of the data controller and are carried out only by technical personnel in charge of the processing. If necessary, the data connected to the newsletter service may also be processed by the staff of the company in charge of the maintenance of the technological part of the Site which is Aruba S.p.A. (data processor pursuant to art. 28 EU Reg. 2016/679), at the headquarters of the same company.

4 Method of processing

The personal data of the interested party will be processed using automated and/or manual procedures and only for the purposes for which they are collected, guaranteeing their security and confidentiality. Any statistical surveys of users’ navigation within the Site will be carried out in an absolutely anonymous form and for the sole purpose of improving the Site. No decision-making processes based on automatic processing are carried out. The data provided will not be transferred to countries outside the EU.

Data collected from this Site will not be transferred to third parties.

5 Types of data processed, purposes of processing and legal bases

Personal data processed

When the user visits, consults or uses this website, when he/she requests information using the forms available, the Data Controller may process data enabling his/her identification in order to provide information or respond to specific requests. It is recalled that personal data is any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is any natural person who can be identified, directly or indirectly, by reference in particular to an identifier such as a name, an identification number, location data, an online identifier or to one or more characteristic elements of his/her physical, physiological, genetic, mental, economic, cultural or social identity.

Web browsing data

The computer systems and software procedures used to operate a website acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes the IP addresses or domain names of the computers and terminals used by users, the URI/URL (Uniform Resource Identifier/Locator) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment (for more information, see this Site’s Cookies policy).

These data, necessary for the use of web services, are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to check its correct functioning and are deleted immediately after processing. Browsing data could be used to ascertain responsibility in the event of any computer crimes to the detriment of the Site, in accordance with the procedures in force with the competent authorities.


Whenever users submit personal information (such as contact information or browsing information) via online forms and/or registration, at the time of submission this information is encrypted using the highest level of SSL (Secured Sockets Layer) available. The servers that store personal information are in a secure environment.

Data provided voluntarily by the user

Through this Site it is possible to send requests and communications via the addresses and contact forms also referred to as forms.

The provision of user data, which is optional, explicit and voluntary, is required when:

a) sending requests for information/assistance and communications through the addresses and contact forms indicated on the Site. In this case, the Data Controller shall process the sender’s contact data, necessary to reply, as well as all personal data included in the communications;

b) sending data to subscribe to the AI-CODE newsletter.

6 Legal basis for processing is for:

Requests received from email addresses on the Site and/or filling in the contact form for information/assistance is the performance of a service at your request.

The collection of data necessary for subscription to the AI-CODE newsletter is explicit consent and must be expressed in advance of the processing itself.

The data provided in the manner described above may be processed by authorised and designated personnel of DSTECH S.r.l. for the purpose of:

a) sending information on our activities;

b) newsletter subscription, to send information on news and initiatives related to the services provided.

The User’s Personal Data may be used by the Data Controller in legal proceedings or in the preparatory stages of such proceedings in order to defend against abuses in the use of the Site or related Services by the User. In this regard, the Data Controller may be obliged to disclose Data following an explicit request by public authorities.

7 Specific disclosure

Specific disclosures may be present on the pages of the Site for particular services requested. In particular, please refer to the following link for newsletter subscription.

8 Retention times

Personal data will be stored for different periods depending on the purpose of processing:

  • for purposes of managing requests received on the “Contacts” page, data will be retained for no. 6 months;
  • for the purpose of managing subscriptions to the AI-CODE newsletter received on the “subscriptions” page, the data will be kept for the time period defined by the subscriptions manager, which can be consulted at this link

You may revoke your consent at any time, using the link in the footer of each newsletter alternatively by writing to  

The data shall in any case be retained for the period of time provided for and permitted by law to protect the rights and legitimate interests of the Data Controller vis-à-vis the data subject and third parties.

9 Rights of the data subject and right to complain

The data subject is guaranteed the exercise of the rights recognised by Articles 15 – 22 of Regulation (EU) 2016/679. In particular, he or she is granted the right to access his or her personal data, to request their rectification, updating or deletion if incomplete, erroneous or collected in violation of the law, the right to object to their processing, the right to transformation into an anonymous form or to restriction of processing, the right to withdraw consent. The data subject is also granted the right to lodge a complaint with the Data Protection Authority, pursuant to Article 77 of Regulation (EU) 2016/679, in accordance with the procedures provided by the Authority, and to lodge a judicial appeal pursuant to Article 79 below.

To exercise your rights, you can contact the Data Controller directly by writing an email to you believe that your rights to the processing of your personal data have been violated or that the EU Regulation 2016/679 has been violated, you may file a request to initiate a personal data protection proceeding with the national DPA – Office for the Protection of Personal Data of the Italian Republic:

10 Other information

The Data Controller, DSTECH S.r.l., reserves the right to change, update, add or remove parts of this privacy policy at its own discretion and at any time. In order to facilitate such verification, the notice will contain the date of update.