Via San Vittore 43, 20123 Milan (Italy) +39 02 7234 3715


Event Privacy Policy


This Privacy policy sets out how the KLEPTOTRACE consortium uses and protects any personal information that you provide by signing up and participating to events and trainings related to the KLEPTOTRACE Project. It also explains your rights under the EU Regulation 2016/679 (hereinafter referred to as GDPR).

We reserve the right to modify or simply update this privacy notice, in part or completely, also due to changes in the applicable legislation by updating this page from time to time, you should check page regularly to ensure that you are happy with any changes. This policy is effective by February 26, 2024.

The KLEPTOTRACE consortium is coordinated by Transcrime-Università Cattolica del Sacro Cuore (“Transcrime-UCSC”), Largo Gemelli 1, 20123 Milan (Mi), who will be responsible for the management and treatment of your personal data (hereinafter, ‘data controller’).

1. Purposes for Processing Your Personal Data

The data collected and provided will be used by the organisers for the purpose of:

a) Collecting registrations and communicating and/or sending information related to events and trainings related to the project.

b) Communicating and/or sending information on projects, activities, events and research carried out by Transcrime-UCSC or its spin-off Crime&tech srl. You can check the full privacy policy of the newsletter here. You can unsubscribe at any time.

c) The recording of the event may be published on the website and social media channels of the project and consortium partners. In addition to the speakers’ presentations, the recording may also include any voluntary intervention by participants.

2. Legal Basis for Processing Your Personal Data

For the purposes indicated in the previous paragraph, the legal basis of the processing, which certifies its lawfulness, is the consent pursuant to art. 6, par. 1, letter a) of the GDPR.

3. Data Controller

The data controller is Transcrime-Università Cattolica del Sacro Cuore, Largo Gemelli 1, 20123 Milan (Mi).

4. Method of data processing

The data is processed using manual and telematic tools, with criteria strictly related to the purposes indicated above and, in any case, in such a way as to guarantee the security, protection and confidentiality of the data, in accordance with the provisions of current legislation.

The data may be shared by Transcrime-UCSC with Crime&tech srl (visit its website) to better achieve the purposes indicated above. Crime&tech (Largo Gemelli 1, 20123 – Milan; VAT no: 09027620963 – Email: undertakes to use the information in full compliance with the purposes and methods described in this Privacy Policy. Specifically, it will act as data processor for the purposes reported in the article 1, letters (b), of this Privacy Policy.

Brevo (formerly Sendinblue) also acts as a data processor to make its Services available to Crime&tech, as platform used for data collection and the sending and management of newsletters. Click here for more information on Brevo’s terms of service, methods of data collection and protection.

5. Data Types Processed

Registration and partecipation to events and trainings is optional, explicit, and voluntary. It will result in the acquisition of the information provided, which is necessary for carrying out the activities and purposes reported in the article 1 of this Privacy Policy. The data stored include:

– Email address
– Name and surname
– Job position and organisation/institution
– Country and phone number (when provided)
– Video recording of speakers and of any voluntary contributions by participants

6. Retention period for personal data

Processed data may be retained by the recipients for a period of 10 (ten) years, starting from the date of giving consent for processing.

7. Rights of the data subject

At any time, you may exercise, pursuant to articles 15 to 21 of EU Regulation no. 2016/679, the following rights regarding your personal data:

      • – Right to access: You have the right to request access to your personal data.


      • – Right to rectification: You have the right to request that we correct any inaccuracies in your personal data.


      • – Right to erasure: You have the right to request that we delete your personal data.


      • – Right to restrict processing: You have the right to request that we restrict the processing of your personal data.


      • – Right to data portability: You have the right to receive a copy of your personal data in a structured, machine-readable format.


      • – Right to object: You have the right to object to the processing of your personal data.


      – Right to withdraw consent: If we are processing your personal data based on your consent, you have the right to withdraw your consent at any time.

To exercise any of these rights, please send a written request to the postal address of the registered office or to the email address

8. Complaints

If you believe that we have violated your rights under the GDPR, you have the right to lodge a complaint with the supervisory authority in your country of residence.