Why A Privacy Policy?

This page will describe management of our web site as regards processing the personal data of users that visit us.

This information is provided - also in pursuance of Section 13 of Legislative Decree no. 196/2003 -  to any entity having to do with the web-based services that are made available by the Garante per la protezione dei dati personali (Italian Data Protection Authority) via electronic networks as from the following address:


Data Controller

Visiting this site may result into the processing of data concerning identified or identifiable persons.

The data controller is the Fondazione Ortygia Business School, with registered office in Siracusa (Italy), Via Roma, 124 – 96100.

The Purposes of the Processing

Any personal data that is provided by users requesting to be sent information materials such as bulletins, CD-ROMs, newsletters, annual reports, answers to questions, decisions and sundry provisions, etc. is only used to provide the service and/or discharge the tasks requested and is disclosed to third parties only if this is necessary for the said purposes.

All personal data are processed in accordance with the law for purposes strictly connected and instrumental to the management of business relations between the parties concerned and the Institute, running and in the laws and regulations limits.

Any data that is provided by users through the application forms to OBS courses may processed by OBS for the following purposes: participant and alumni administration, education services, accounting, record-keeping, directory publication, fundraising, databank administration, health and safety and any other reasonable purpose relating to the School’s relationship with its participants and alumni.

Place Where Data Is Processed

The processing operations related to the web-based services that are made available via this website are carried out at Ortygia Business School Foundation office in Siracusa (Italy), Via Roma, 124 – 96100, by technical staff in charge of said processing, or else by persons tasked with such maintenance activities as may be necessary from time to time.

The data of users/visitors can also be treated by other parties identified as a result of agreements or tender procedures, which perform activities on behalf of the Foundation or provide specific services in the pursuit of its institutional goals, working as an external data processing “responsible” designated or independently as separate "principals", ensuring compliance with the provisions set forth in Legislative Decree n. 196/2003. No data resulting from web-based services is either communicated or disseminated.


Categories of Processed Data

The Foundation website offers informative and interactive contents. During navigation you can then acquire information about the user or, more in general , on the visitor, in the following ways :

Navigation Data

The information systems and software procedures relied upon to operate this web site acquire personal data as part of their standard functioning; the transmission of such data is an inherent feature of Internet communication protocols.

Such information is not collected in order to relate it to identified data subjects, however it might allow user identification per se after being processed and matched with data held by third parties.

This data category includes:

- IP address;

- Browser types;

- Internet service provider;

- Operating system;

- Domain name and URL addresses of access or exit (referring/exit pages);

- Information on website pages visited

- Time of access;

- Time on site;

- Clickstream;

- Video resolution;

- Connection type;

- Connection country;

- Java plugin installed.


These data are only used to extract anonymous statistical information on website use as well as to check its functioning. The data might be used to establish liability in case computer crimes are committed against the website.

Data Provided Voluntarily by Users

Sending e-mail messages to the addresses mentioned on this website, which is done on the basis of a freely chosen, explicit, and voluntary option, entails acquisition of the sender's address, which is necessary in order to reply to any request, as well as of such additional personal data as is contained in the message(s).

Specific summary information notices will be shown and/or displayed on the pages that are used for providing services on demand.

In particular, for on-line services, the “users information note” (“nota informativa”) addressed to Foundation users/client is published on the web site.



No personal data concerning users is acquired by the website in this regard.

No cookies are used to transmit personal information, nor are so-called persistent cookies or user tracking systems implemented.

Use of the so-called session cookies – which are not stored permanently on the user's computer and disappear upon closing the browser – is exclusively limited to the transmission of session ID's – consisting of server-generated casual numbers – as necessary to allow secure, effective navigation.

The so-called session cookies used by this website make it unnecessary to implement other computer techniques that are potentially detrimental to the confidentiality of user navigation, whilst they do not allow acquiring the user's personal identification data.

Optional Data Provision

Subject to the specifications made with regard to navigation data, users are free to provide the personal data either to be entered in the application forms submitted to the Foundation or referred to in contacting the Foundation to request delivery of information materials and other communications or in order to have access to online services provided through the web site. 

Failure to provide such data may entail the failure to be provided with the items requested.

It should be pointed out that, in case of on-line institutional services use, data supply is mandatory and necessary to set up the administration of the procedure regarding the person concerned.


Processing Arrangements

Personal data is processed with automated means for no longer than is necessary to achieve the purposes for which it has been collected.

Specific security measures are implemented to prevent the data from being lost, used unlawfully and/or inappropriately, and accessed without authorisation.

Linking to other web sites

From our web site it is possible to link to other websites; this option is clearly indicated in order to inform the user/visitor she is leaving the Foundation's web site.

The user/visitor is therefore invited to pay attention to the fact that these sites are not owned by the Foundation, nor the Foundation is responsible of them, as fully managed by other companies and/ or organizations for which it is necessary to verify related policies on privacy protection.

The Foundation therefore do not accept any responsibility for requests and/ or release of personal data to third parties sites.

Data Subjects' Rights

Data subjects are entitled at any time to obtain confirmation of the existence of personal data concerning them and be informed of their contents and origin, verify their accuracy, or else request that such data be supplemented, updated or rectified (Section 7 of Legislative Decree no. 196/2003).

The above Section also provides for the right to request erasure, anonymisation or blocking of any data that is processed in breach of the law as well as to object in all cases, on legitimate grounds, to processing of the data.

All requests should be addressed to the above specified data controller. 


Policy changes

This document constitutes the "Privacy Policy " of this web site and governs how we process personal information provided by users/visitors when navigating . The possible entry into force of new laws, as well as the updating of user services, could make it necessary to change those rules.

It is therefore possible that our policy will be subjected to changes over time, and we invite therefore customers/visitors to visit periodically this page which may change.