Information notice on the processing of personal data for users of the Ministry of Defence web portal difesa.it in accordance with Art. 13 of Regulation (EU) 2016/679
Reasons for providing this information notice
Regulation (EU) 2016/679 of the European Parliament and Council (from now on, “Regulation”) on the protection of natural persons with regard to the processing of personal data and the free movement of such data, provides for the processing of personal data of natural persons being implement in full respect of their fundamental rights and freedoms, in particular their right to confidentiality and the protection of personal data.
Browsing this website implies the processing of the personal data of users, therefore the following information illustrate the difesa.it portal and relevant sub-sites’ management methods, with regard to the processing of said users’ personal data.
In accordance with Art. 13 GDPR EU 2016/679 this document is made available to persons who interact with the web services of the Ministry of Defence, which can be accessed electronically at the web address “http://www.difesa.it”, corresponding to the first page of the official site of the Italian Ministry of Defence. This document is also issued with regard to all sites and services available under the “difesa.it” domain, and not for any other website possibly accessed by the user via a link.
Holders of data processing
Following the consultation of the above-mentioned sites, data of identified or identifiable natural persons may be subject to processing.
Taking into consideration the specific organizational structure of the Ministry of Defence (central and local bodies, technical and operational bodies, administrative bodies, industry), the following entities and bodies, intended as legal persons, are holders of personal data processing:
Uffici di diretta collaborazione (UDC);
Organismo Indipendente di Valutazione (OIV);
Ufficio Centrale del Bilancio e degli Affari Finanziari (BILANDIFE);
Ufficio Centrale per le Ispezioni Amministrative (ISPEDIFE);
Commissariato Generale per le Onoranze ai Caduti (ONORCADUTI);
Stato Maggiore della Difesa (SMD);
Stato Maggiore dell’Esercito (SME);
Stato Maggiore della Marina (SMM);
Stato Maggiore dell’Aeronautica (SMA);
Comando Generale dell’Arma dei Carabinieri (ARMA CC);
Comando Operativo di Vertice Interforze (COI);
Centro Alti Studi per la Difesa (CASD);
Comando Interforze per le Operazioni delle Forze Speciali (COFS);
Ispettorato Generale della Aanità Militare (IGESAN);
Raggruppamento Unità Difesa (RUD);
Segretariato Generale della Difesa/Direzione Nazionale degli Armamenti (SEGREDIFESA/DNA);
Direzione degli Armamenti Terrestri (TERRARM);
Direzione degli Armamenti Navali (NAVARM);
Direzione degli Armamenti Aeronautici e per l’Aeronavigabilità (ARMAEREO);
Direzione Informatica, Telematica e Tecnologie Avanzate (TELEDIFE);
Direzione dei Lavori e del Demanio (GENIODIFE);
Direzione Generale per il Personale Militare (PERSOMIL);
Direzione Generale per il Personale Civile (PERSOCIV);
Direzione Generale della Previdenza Militare e della Leva (PREVIMIL);
Direzione Generale di Commissariato e di Servizi Generali (COMMISERVIZI).
While browsing the institutional site www.difesa.it, the Holders can be reached via their respective links.
Chief data protection officer
The Chief Data Protection Officer (RPD) is
Gen. Roberto SERNICOLA, Inspector General
Legal basis of data processing
Personal data are processed by the Holders in the execution of their respective institutional responsibilities, in the public interest or, in any case, in connection with the exercise of the official authority conferred on them by the law, according to Art. 6, e) of the Regulation. The data processing legal basis is enshrined in Legislative Decree n. 66, 15 March 2010, regarding the “Military Code”, and subsequent amendments and integrations, and Presidential Decree n. 90, 15 March 2010, “Consolidated Act on Provisions and Regulations Concerning the Military Code” and subsequent amendments and integrations. Treatment of personal data of the users, provided voluntarily when consulting the www.difesa.it website or, in any case, collected to this end, applies only to the execution of institutional activities. Treatment of personal and specific data will be implemented by specifically authorized subjects, by also using computer procedures, in the manners, within the necessary limits and for the pursuit of the purposes for which said data have been provided and, subsequently, processed.
Types of processed data and purpose of treatment
Browsing data
The computer systems and software procedures used to operate this website automatically acquire, during regular operation sessions, personal data whose transmission is implied when using internet communication protocols.
Such data are not collected to be associated with identified subjects, but by their very nature could, by being associated or processed with data held by third parties, make it possible to identify users.
This category includes data relating to IP addresses, domain names of the computers used to access the website, URI (Uniform Resource Identifier) addresses of the resource requested, time of request, method used to submit the request to the server, size of the file obtained in reply, numerical code indicating the status of the reply provided by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
These data are used only to obtain anonymous statistical information on the use of the website and to check that it is working properly, and are deleted immediately after processing. The data could be used to ascertain liability in the event of hypothetical computer crimes against the website: without prejudice to this possibility, at present data on web contacts are held for maximum seven days.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of emails to the addresses listed in this website involves the subsequent acquisition of the sender’s address and processing of provided personal data, necessary for the development of the CMR- Marketing Relazionale system.
Cookies
Information and acquisition of consent on the use of cookies on the web portal difesa.it comply with Provision n.229, 6 May, 2014, issued by the Personal Data Protection Authority (Garante della Protezione).
What are cookies?
See the following definition, included in the Foreword to the above-mentioned Provision of the Data Protection Authority, par.1.
Preliminary considerations
Cookies are small text files that the websites consulted by the user send to his/her computer (usually to the browser). They are then stored by the computer or browser, to be sent back to the same website on the user’s next visit.
When browsing a site, the user may also receive on his computer cookies originated by different web sites or servers (so-called “third parties”), which may include elements (for example images, maps, sound, specific links to pages of other domains), included in the site that the user is currently browsing.
Technical cookies
Technical cookies are those used exclusively with a view to "carrying out the transmission of a communication on an electronic communications network, or insofar as this is strictly necessary to the provider of an information society service that has been explicitly requested by the contracting party or user to provide the said service."
They are not used for further purposes and are usually installed directly by the data controller or website manager. They can be grouped into browsing or session cookies, which allow users to navigate and use a website (e.g. to purchase items online or authenticate themselves to access certain sections); analytics cookies, which can be equated to technical cookies insofar as they are used directly by the website manager to collect aggregate information on the number of visitors and the pattern of visits to the website; functional cookies, which allow users to navigate as a function of certain pre-determined criteria such as language or products to be purchased so as to improve the quality of service.
Cookies Are Used To Improve The Service We Provide, For Example:
If you don’t authorize the use of our cookies, some specific functions and pages will not function as envisaged.
If you wish to erase cookie files possibly already stored on your computer, please read your browser’s instructions by clicking “Help” on the relevant menu.
Optional supply of data
Except for navigation data as specified above, users are free to supply the personal data requested by forms or registration procedures. Lack of said data can result in the desired service being unavailable.
Processing modalities
Personal data are processed by automated tools for the time strictly necessary to achieve the purpose for which they have been collected.
Specific security measures are implemented in order to prevent loss and illegal or incorrect use of data, as well as unauthorized access (to such data).
Rights of interested subjects
Interested subjects have the right, in the cases that are provided for, to be given access to his/her personal data by the Holder, as well as to the rectification, erasure or restriction of the processing of their data, and to object to the processing of such data (Art. 15 and subsequent Regulation articles). The relevant request can be submitted by clicking on the link in the home page of the respective Holders, as listed above.
Right to lodge a complaint
Whenever an interested subject deems that the processing of his/her personal data, implemented by this site, infringes the Regulations, he/she has the right to lodge a complaint before the Data Protection Authority, as provided for at Art. 77 of the Regulation, or to seek judicial remedy in the appropriate court (Regulation, Art.79).
Created with funds from the National Resilience Recovery Plan (PNRR)
PNRR measure: M1C1-S.1.6.4. Digitalization of the Ministry of Defence (CUP D81B20001980006)
Italian Government
