Cookie Policy

This "Cookie Policy" aims to describe how the site (hereinafter, the "Site") use cookies and process personal data of users who visit it (hereinafter, "Users"). In compliance with the obligations arising from national and EU legislation (EU Regulation 679/2016) and subsequent amendments, this Site respects and protects the privacy of visitors and Users, making every possible and proportionate effort not to infringe their rights. This cookie policy applies only to the online activities of this Site and is valid for visitors/Users of the Site. It does not apply to information collected through channels other than this Website. The purpose of the policy is to provide maximum transparency regarding what information the Site collects and how it uses it.

Data Controller

Data Controller: Fondazione Ferrata Storti (hereinafter referred to as "Fondazione") with registered office in Pavia, via Giuseppe Belli, 4 (PV-27100).

What are cookies?

Cookies are strings of text that a website can send, during navigation, to the user's terminal (PC, notebook, smartphone, tablet). The same website that sent them can read and record cookies that are on the same device to obtain information of various kinds. Each type of cookie has a defined purpose

What types of cookies exist ?

There are three basic categories: technical cookies, analytical cookies, profiling cookies.

A. Technical cookies are generally necessary for the proper functioning of the website and to allow navigation and to provide the service requested by the user; without them, you may not be able to view the pages correctly or use certain services. For example, a technical cookie is essential to keep the user logged in throughout the visit to a website, or to store the settings of the language, display, and so on. Technical cookies, for the use of which the user's consent is not required, can be further divided into:

  • navigation cookies, which guarantee the normal use of the website (allowing, for example, to make a purchase or authenticate to access restricted areas);
  • functionality cookies, which allow the user to navigate according to a series of selected criteria (for example, language, products selected for purchase) to improve the service provided to the same.

B. Analytical cookies Cookies - subject to certain conditions, which are legally equivalent to technical cookies - used to collect information on access to the site, also to carry out statistical analyses and/or optimize the site. They are treated as technical cookies only if: (i) they are only used to produce aggregate statistics and in relation to a single site or a single mobile application; (ii)at least the fourth component of the IP address is masked; (iii) the third parties refrain from combining such analytical cookies with other processing (customer files or statistics of visits to other sites, for example) or from transmitting them to third parties. Third parties are, however, permitted to produce statistics with data from several domains, websites or apps that can be traced back to the same publisher or business group. If they are equated with technical cookies, the user's prior consent is not required for their installation.

C. Profiling cookies are used to track the user's navigation on the network and create profiles on his tastes, habits, choices, etc. With these cookies can be transmitted to the user's terminal advertising messages in line with the preferences already manifested by the same user in online navigation. The user's consent is required for their installation.

Cookies can, again be classified as:

  • session cookies, which are deleted immediately when the browser is closed;
  • persistent cookies, which - unlike session cookies - are stored for a certain period. They are used, for example, to recognize the device that connects to the site, facilitating authentication operations for the user;
  • first-part cookies generated and managed directly by the operator of the website on which the user is browsing;
  • third-part cookies generated and managed by parties other than the manager of the website on which the user is browsing. This is because on each site there may be elements (images, maps, sounds, specific links to web pages of other domains, etc..) residing on servers other than that of the site visited.

What Cookies the site uses

With respect to the categories and relative definitions of cookies mentioned above, we inform you that this site:

  • uses technical cookies to allow the user to easily use the site and find information, simplifying the connection and transmission of data between the user and the site;
  • uses profiling or marketing cookies;
  • allows "third party" cookies to be sent.

You can see a list of cookies and manage non-essential cookies by clicking here.

Interaction with external platforms

On this Site it is possible to interact with other external platforms. Interactions and information acquired by this Site are in any case subject to the privacy settings of the User relating to each platform. When a service of this type is installed, it is possible that, even if Users do not use the service, traffic data relating to the pages on which it is installed is also collected.

Data collection and purpose

Like all websites, this Site makes use of log files that store information collected automatically during visits by Users. The information collected may be as follows.

  • internet protocol (IP) address;
  • browser type and parameters of the device used to connect to the Site;
  • name of the internet service provider (ISP);
  • date and time of visit;
  • Web page of origin of the visitor (referral) and of exit;
  • possibly the number of clicks.

The above information is processed automatically and collected in an aggregate form only, in order to verify the proper functioning of the Site, and for security reasons.

For security purposes (spam filters, firewalls, virus detection), automatically recorded data may also include personal data such as IP address, which could be used, in accordance with applicable laws, to block attempts to damage the Site itself or to cause damage to other users, or otherwise harmful or criminal activities. Such data are never used for identification or profiling of the User, but only for the protection of the Site and its Users.

If the Site allows the insertion of data, or in case of specific services requested by the User, the Site automatically detects and records some identification data of the User, including the e-mail address. This data is understood to be voluntarily provided by the User at the time of requesting the service.

The data received will be used exclusively for the provision of the requested service and only for the time necessary for the provision of the service.

The information that Users of the Site deem to be made public through the services and tools made available to them, is provided by the User knowingly and voluntarily, exempting this Site from any liability for any violation of the law. It is up to the User to verify that he/she has permission to enter personal data of third parties or content protected by national and international regulations.

The data collected by the Site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the activities specified. In any case, the data collected by the Site will never be provided to third parties, for any reason, unless it is a legitimate request by a judicial authority and only in the cases provided for by law. The data collected may, however, be transferred or communicated to other companies that perform for the Data Controller activities closely related and instrumental to the operation of the service, such as the company that deals with the management of personal data of users and the management of computer systems on which they are stored.

Place of processing

The data collected by the Site are processed at the headquarters of the Data Controller, and at the datacentre of the web Hosting. The web Hosting, which is responsible for the processing of the data, processing the data on behalf of the Data Controller, is located in the European Economic Area and acts in accordance with European standards. The name of the web Hosting is kept at the registered office of the Data Controller.

Transfer of data to extra-eu countries

Personal data are processed by Fondazione Ferrata Storti within the territory of the European Union and are not disseminated. If necessary for technical or organizational reasons, Ferrata Storti Foundation reserves the right to transfer data to countries outside the European Union. In this regard, the Data Controller assures as of now that the transfer of data outside the EU will be regulated in accordance with the provisions of Chapter V of the Regulations and authorized based on specific decisions of the European Union. Therefore, all necessary precautions will be taken in order to ensure the most complete protection of personal data by basing such transfer: a) on adequacy decisions of the third country recipients expressed by the European Commission; b) on adequate guarantees expressed by the third party recipient pursuant to art. 46 of the Regulation; c) on the adoption of binding corporate rules referred to in art. 47 of the GDPR or, in the absence thereof, by virtue of one of the derogatory measures referred to in art. 49 of the GDPR. In any case, the recipients of the data will be subject to protection and security obligations equivalent to those guaranteed by the Community and national legislation.


This Site treats Users' data in a lawful and correct manner, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of data. The processing is carried out by means of computer and / or telematic tools, with organizational methods and logic closely related to the purposes indicated. In addition to the Data Controller, in some cases, may have access to data categories of people involved in the organization of the Site or external parties.

User rights

Pursuant to the GDPR, the user may, in the manner and within the limits provided by applicable law, exercise the following rights:

  • data access;
  • opposition to the processing;
  • rectification;
  • the cancellation of the data;
  • the limitation of data processing;
  • transfer (data portability);

as well as:

  • withdraw consent;
  • Propose a complaint to the Data Protection Authority.

How to excercise rights

To exercise the above-mentioned rights, the data subject can contact the Data Controller by sending a registered letter with return receipt to Fondazione Ferrata Storti, Via Giuseppe Belli, 4 (PV-27100), or an e-mail to the following address:

Data controller

Web hosting is appointed as the data controller, processing the data on behalf of the Data Controller.

The updated list with the name of the web hosting and the name of the person in charge of the processing is kept at the registered office of the Data Controller.


This cookie policy is current as of January 5, 2022.

Privacy policy

For further information on the processing of personal data collected on this Site, you can consult the Privacy Policy.