Website policy on the use of personal data and cookies
The website of the Museo Galileo – Istituto e Museo di Storia della Scienza (hereafter Museo Galileo) consists of several sections, and therefore will be referred to in this document as the Portal. The policy described below applies to all of the sites accessible through the Portal, which can be found in the following domains:
It is the responsibility of the Users to read this document carefully before providing any personal information or completing and sending any form hosted at this Portal.
Data collection and use
The data collected at this website includes:
This data acquired by the Portal in order to carry out its operations (e.g., information conveyed through internet protocols). None of it will be communicated to third parties or disseminated in any form.
This category of data includes the IP addresses or domain names of the computers and terminals of the Users, the URI/URL (Uniform Resource Identifier/Locator) addresses of the pages visited, the date and time of visits, the method used to send requests to the server, the size of the page accessed, server response status codes (e.g., successful response, error message, etc.), and other parameters pertaining to the operating system and the Users’ browsing history.
This data is required to carry out anonymous statistical analyses of website use (most visited pages, number of pages visited daily or in a given time band, the geographic location of Users, etc.) and to monitor the functioning of the website.
Data provided by the User through:
signing up for the Museo Galileo – IMSS newsletter
comments sent to the Portal
use of the institute’s library services and its on-line library
the User’s participation in projects connected with the Museo Galileo
This data will be used only for the purposes specified on the information page of the websites hosted at the Portal of the Museo Galileo relative to their services and activities.
Policy and procedures for the processing and use of personal data
All processing and use of personal data will be carried out in a manner consistent with the restrictions and with the requirements of legality, confidentiality, accuracy and completeness set out in article 5 of the GDPR and other regulations in force.
The museum’s technical staff has installed reliable and secure procedures for the collection and management of all personal data in conformity with article 32 of the EU Regulation, ensuring the security of this data against loss, unlawful or incorrect use, or access by unauthorized parties.
Access to data: legal basis, third-party access, and storage time limits
The legal basis for the use of personal data for the purposes specified above lies in the express consent of the User. If the requested consent is not given, the website will not be able carry out the operations described above.
Personal data may be processed and used not only by authorized staff members of the Museo Galileo, but also by outside companies, institutions, associations, consultants and professionals employed to provide specific technical or administrative services connected with the website’s activities, in conformity with article 28 of GDPR.
A list of authorized persons can be provided on request.
Access to the personal data of Users may also be granted to other third parties on the basis of the rules outlined above. These include:
civil service personnel who are legally entitled to receive such information in the conduct of their regular duties;
individuals working in the private or public sector, in both EU and non-EU countries, with whom the Museum has signed agreements to collaborate in the provision of its services.
In keeping with the principles of reasonable and commensurate use, no personal data will be stored for longer than is necessary to serve its purpose, or longer than the time specified on the information page of the websites hosted at the Portal and responsible for specific activities and services of the Museo Galileo.
The rights of the User
The GDPR specifies a series of rights as outlined in articles 15 to 22, which include the User’s right to view, correct or cancel the personal data stored; restrictions to the processing of this data; the User’s right (if specified by the website) to refuse consent to their use; and the right to have a copy of the personal data collected in a standard format. The User has the right to revoke his/her consent at any time, while the status of the data gathered based on previously granted consent remains legal.
As stipulated in article 77 of the GDPR, the User has the right to file complaints with the relevant administrative authority – the Garante per la Protezione dei Dati Personali.
Cookies are packets of information that are sent from the website to the user’s device (computer, tablet, etc.) to store data and personalize settings relating to the services of the site. When the User visits a page, the website sends information to the User’s browser, which creates a cookie. Thereafter, each time the User returns to the site the browser retrieves this information and sends it to the site’s server. The types of cookies used by the Museo Galileo Portal are:
These are used exclusively to allow access to the services of the Portal and contain information such as the choice of language. They may be of two types: session cookies, which are automatically deleted when the User leaves the browser, or persistent cookies that expire after a specified length of time.
These are collected by third parties (such as Google Analytics, which uses personal data to conduct anonymous statistical analyses of site usage) while the User is browsing the Portal.
If the User decides not to accept the terms described here, he/she is invited to change the browser settings or to leave the website. The disactivation of certain cookies may limit the functionality of the website.