Cookie Policy

Dear User,

By Article 13 of Regulation (EU) No. 2016/679 (hereinafter “GDPR”), we inform you that the processing of the data you provide will be carried out in a manner and procedures aimed at ensuring that the processing of personal data is carried out in compliance with the rights and fundamental freedoms, as well as the dignity of the data subject, with particular regard to privacy and security, personal identity, and the right to protection of personal data.

Please note that “processing” refers to any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, including collection, recording, organization, structuring, storage, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination, or any other form of making available, comparison, or interconnection, restriction, erasure, or destruction (Article 4 GDPR).

1. Object of the processing

The data processed by Cooperjob S.p.A. refer to:

Data collected automatically: The information systems and software applications used to operate this website collect, during their normal operation, some data (the transmission of which is implicit in the use of internet communication protocols) potentially associated with identifiable users. The data collected includes IP addresses and domain names of the computers used by users accessing the website, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters related to the operating system, browser, and computing environment used by the user. This data is processed for the time strictly necessary to obtain statistical information on the use of the site and to monitor its proper functioning. Providing such data is mandatory as it is directly related to the web browsing experience.

Data voluntarily provided by the user: The processing of data provided by you through the completion of collection forms is subject to your explicit and unequivocal consent.

On the other hand, voluntarily sending emails to our email addresses does not require further information or consent requests.

Cookies: The site uses first-party technical cookies; for third-party cookies, please refer to the specific information. These cookies may collect navigation data of users, and providing such data is optional, based on the free and informed consent expressed by the user. Cookies serve to analyze the effectiveness of the website and make it easier and more intuitive over time. More information is available in the dedicated cookie policy.

2. Legal basis for the processing

The legal basis for this processing is (i) your explicit and unequivocal consent (Article 6.1, letter A, GDPR) and (ii) the legitimate interest of the Data Controller (Article 6.1, letter f, GDPR).

3. Purpose of the processing

Personal data is processed solely to improve your browsing experience.

4. Processing methods

The personal data you provide will be subject to processing operations in compliance with the aforementioned regulations and confidentiality obligations that guide the activities of the Data Controller. Data will be processed both through IT tools and paper supports, as well as any other appropriate means, ensuring the implementation of security measures by Article 5(1)(f) of the GDPR.

Processing will be limited to the following operations and in the following ways:

• Data collection from the data subject;
• Recording and processing on computerized supports;
• Organization of archives in an automated manner.

This data will not be subject to dissemination but may be communicated to public or private entities involved in the purposes outlined above.

5. Data retention

Collected navigation data will be processed solely for the duration of the browsing session (“storage limitation principle,” Article 5, GDPR).

6. Access to the processing

The data will be made accessible for the purposes described in point 3:

• To employees/collaborators authorized for processing, following appropriate appointment;
• To third parties with contractual relationships with the Data Controller.

7. Data communication

Data will not be communicated to unauthorized third parties or disseminated in any way. To this end, the processing is carried out using security measures to prevent unauthorized access by third parties and to ensure confidentiality.

Without the need for explicit consent, the Data Controller may communicate your data to collaborators and external parties responsible for carrying out processing operations.

8. Data transfer

Data management and retention will occur on servers located within the European Economic Area of the Data Controller and/or third-party companies appointed and duly named as Data Processors.

Data will not be transferred outside of the European Economic Area.

9. Nature of data provision and consequences of refusal to provide data

Providing data for the purposes described in point 3 is mandatory. Without such data, it will not be possible to continue browsing this site.

10. Rights of the data subject

Under the provisions of the GDPR, the data subject has the following rights:

• To obtain confirmation as to whether or not personal data concerning them is being processed and, in that case, to access the personal data (Right of access, Article 15);
• To obtain the rectification of inaccurate personal data concerning them without undue delay (Right to rectification, Article 16);
• To obtain the erasure of personal data concerning them without undue delay the Data Controller must erase personal data without undue delay if certain conditions are met (Right to be forgotten, Article 17);
• To obtain the restriction of processing in certain circumstances (Right to restriction of processing, Article 18);
• To receive personal data concerning them in a structured, commonly used, and machine-readable format and to transmit those data to another Data Controller without hindrance (Right to data portability, Article 20);
• To object to the processing of personal data concerning them for reasons related to their particular situation (Right to object, Article 21);
• To receive communication without undue delay in case of data breaches (Article 34);
• To withdraw consent at any time (Conditions for consent, Article 7).

Where applicable, the data subject also has the rights provided by Articles 16-21 of the GDPR (Right to rectification, Right to be forgotten, Right to restriction of processing, Right to data portability, Right to object), as well as the right to file a complaint with the Supervisory Authority.

11. How to exercise rights

You can exercise your rights by sending an email to the dedicated address: privacy@cooperjob.eu.

12. Data Controller and Data Protection Officer (DPO)

The Data Controller is Cooperjob S.p.A. – VAT No. 02558070211 – Via Ermanno Barigozzi, 24 Milan.

The list of responsible parties and those authorized to process data is available at the Data Controller’s office.

The Data Protection Officer (DPO) is Frareg S.r.l. – Viale Jenner 38 – 20159 Milan, and can be reached via the following contact channels:

Email: dpo@frareg.com – Phone: 0269010030

13. Update of this notice

This notice may be subject to changes. Any substantial modifications will be communicated to the data subjects through notice or publication on the company website.