a. This section contains information on the methods used by OZ to process the data of those who use the website, hereinafter referred to as the “Site.”

b. This information is also valid for the purposes of article 13 of EU Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the freedom of movement of such data, for data subjects who interact with the Site. It is accessible via the address corresponding to the site’s home page:

c. This information applies solely to this website and not to other websites that the user may visit through links on website.

d. The purpose of this document is to provide information on the methods, times and nature of the information that the data controller must give to users when they connect to the web pages of the Site, regardless of the purpose of the link itself, according to Italian and European legislation.

e. The information may be subject to changes due to the introduction of new regulations, therefore, we advise the user to periodically check this page for any updates.

f. If the user is less than 14 years old, pursuant to article 8, paragraph 1 of EU Regulation 2016/679, and article 2-quinquies of Leg. Decree no. 196/2003, as amended by Leg. Decree no. 181/18, they must legitimise their consent through the authorisation of their parents or guardian


1 – Data Controller

a. The data controller is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. The data controller also deals with the security profiles.

b. With regard to this Site, the data controller is:

OZ srl

For any clarification or to exercise your rights, you may contact the data controller at the email address indicated.

2 – Data Processor

a. The data processor is the natural or legal person, public authority, agency or other body which processes personal data on behalf of the data controller.

b. Pursuant to article 28 of EU Regulation 2016/679, on appointment of the data controller, the data processor of the Site is also the data controller, indicated in point b of paragraph 1 of article article II – DATA PROCESSING

3 –Place of processing

a. Data generated by the use of the Site are processed at the location indicated in point b of paragraph 1, article II – DATA PROCESSING.


1 – Data processing method

a. Like all websites, this Site also makes use of log files in which information collected automatically during the visits of users is stored. The information collected may include the following:

– internet protocol (IP) address;
– browser type and parameters of the device used to connect to the site;
– name of internet service provider (ISP);
– date and time of visit;
– visitor’s web page of origin (referral) and exit;
– number of clicks, if any.

b. The above information is processed automatically and is collected exclusively in an aggregate form to verify the proper functioning of the site, and for security reasons. This information will be processed according to the legitimate interests of the data controller.

c. For security purposes (anti-spam filters, firewalls, virus detection), the automatically recorded data may also include personal data such as the IP address, which may be used in compliance with the relevant laws to block attempts to damage the Site itself or to cause damage to other users, or in any case to block harmful or criminal activities. These data are never used for the identification or profiling of the user, but only to protect the Site and its users. Such information will be processed according to the legitimate interests of the data controller.

d. The Site uses contact forms to allow users to send automated requests for information. Users are requested to enter personal data such as first name, last name, email, faculty and university name, company name, business sector, and university year. The required fields are indicated. The mandatory entering of data is necessary to give users the most precise and relevant responses and/or information regarding their requests. All data entered in the contact form are considered voluntarily provided by the user at the time of requesting the service. In order to send the request, users must expressly accept the privacy policy of this Site. The data received will be used exclusively to provide the service requested and will be kept only for the time necessary to provide this service.

e. The information that users of the Site will deem to make public through the services and tools made available to them are provided by the user knowingly and voluntarily, exempting this Site from any liability for any violation of the law. Users are responsible for verifying that they have permission to enter personal data of third parties or content protected by national or international regulations.

2 – Purpose of data processing

a. The data collected by the Site during its operation are used exclusively for the above purposes and are kept for the time strictly necessary to carry out the specified activities, and in any case no longer than 2 years.

b. The data used for security purposes (blocking attempts to damage the Site) are kept for the time strictly necessary to achieve the purpose indicated above.

3 – Data provided by the user

a. As indicated above, the optional, explicit and voluntary sending of an email to the addresses indicated on this Site entails subsequent acquisition of the sender’s address, which is necessary to reply to requests, as well as any other personal data included in the message.

b.Specific summary information, or references to this policy page, will be progressively reported or displayed on pages of the Site dedicated to particular services on request.


a. Article 13, paragraph 2 of EU Regulation 2016/679 lists the rights of the user.

b. The Site therefore would like to inform the user on the existence:

  • of the data subject’s right to ask the data controller for access to their personal data (art. 15 of EU Regulation), their updating (art. 7, para. 3, lett. a) Leg. Decree no. 196/2003), rectification (art. 16 of EU Regulation), integration (art. 7, para. 3, lett. a) Leg. Decree no. 196/2003) or limitation of the processing concerning them (art. 18 of EU Regulation) or to oppose, for legitimate reasons, their processing (art. 21 of EU Regulation), as well as the right to data portability (art. 20 of EU Regulation);
  • of the right to request cancellation (art. 17 of EU Regulation), transformation into anonymous form or blocking of data processed in violation of the law, including data whose retention is unnecessary for the purposes for which they were collected or subsequently processed (art. 7, para. 3, lett. b) Leg. Decree no. 196/ 2003);
  • of the right to obtain attestation to the effect that the updating, rectification, integration, cancellation, blocking and transformation of data have been brought to the attention, also regarding their content, of those to whom the data have been communicated or disseminated, except in the case where this fulfilment proves impossible or involves a use of means manifestly disproportionate to the protected right (art. 7, para. 3, lett. c) Leg. Decree no. 196/2003);

c. Requests may be addressed to the data controller, without formalities or, alternatively, using the model provided by the Data Protection Authority, or by sending an email to the address indicated in point b, paragraph 1 of article II – DATA PROCESSING
d.The processing does not provide for nor is it based on the express consent to the use of genetic, biometric, health-related data, or data that reveals religious or philosophical beliefs or trade union membership, racial or ethnic origin or political opinions.

e. Likewise, in case of violation of the law, the user has the right to lodge a complaint with the “Garante per la Protezione dei Dati Personali” (Italian Data Protection Authority).

f. For more detailed information regarding your rights, see articles 15 et seq. of EU Regulation 2016/679 and article 7 of Leg. Decree no. 196/2003.


a. This Site processes the user’s data in a lawful and correct manner, adopting the appropriate security measures aimed at preventing unauthorised access, disclosure, modification or destruction of data. The data is processed using computers and/or IT enabled tools, following organisational procedures and modes strictly related to the purposes indicated.

b. In addition to the data controller, in some cases, the data may be accessible to certain categories of persons involved in the organisation of the Site (e.g. administration, sales, marketing, legal, system administration personnel) or external parties (e.g. third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies).


Please refer to the relevant policy of this Site, which can be consulted at this link:
Cookie Policy


a. Il presente documento, pubblicato a questo indirizzo:

Privacy Policy

and constitutes the privacy policy of this Site.

b. It may be subject to changes or updates. We advise users to periodically check this page for any updates.

c. Previous versions of the document will still be available on this page.

d.The document was updated on 10 June 2019 in order to comply with the applicable regulations, and in particular EU Regulation 2016/679.