Privacy Policy

Last Updated: September 16, 2024

This privacy notice for k-alpha.org ("we," "us," or "our") explains how and why we collect, store, use, and share ("process") your personal information when you use our services ("Services"). This includes, but is not limited to, when you:

• Visit our website at https://k-alpha.org/ any website that links to this privacy notice.

• Engage with us in related ways, including sales, marketing, or events.

If you have any questions or concerns, this notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. For further inquiries, contact us at giacomo.marzi@imtlucca.it

Summary of Key Points

This summary provides an overview of key topics covered in this notice. For more details, please review the full policy below.

• Personal Information: We collect and process personal information based on your interactions with our Services. Learn more about what information we collect.

• Sensitive Personal Information: We do not process sensitive personal information unless explicitly provided by you.

• Third-Party Information: We do not receive information from third parties unless otherwise specified.

• Information Processing: We process your personal information to provide, improve, secure, and comply with our legal obligations related to the Services.

• Sharing Information: We may share personal information in specific situations and with select third parties. Learn more about when and with whom we share your data.

• Information Security: We have security measures to protect your personal information, although no system is 100% secure.

• Privacy Rights: Depending on where you reside, you may have specific rights regarding your personal data, such as access, correction, or deletion. Learn about your privacy rights.

• Exercising Your Rights: You can exercise your rights through our website or by contacting us.

1. What Information Do We Collect?

Personal Information You Provide

We collect personal information you voluntarily provide when you:

• Express interest in obtaining information about us or our Services.

• Participate in activities on the Services (e.g., subscribing to newsletters or making purchases).

• Contact us directly.

The personal information you provide must be accurate and up-to-date. You must notify us of any changes to your information.

Information Automatically Collected

When you visit, use, or navigate our Services, we automatically collect certain data, such as:

• Device and Usage Information: This includes IP addresses, browser types, device identifiers, operating systems, and location information. This data is used to secure our Services and improve user experience.

• Cookies and Tracking Technologies: We may use cookies and similar technologies to collect information about your interaction with our Services. Refer to our Cookie Notice for details.

2. How Do We Process Your Information?

We process your personal information based on the following legal grounds under applicable laws, including the GDPR in the EU and the CCPA in the US:

• Consent: When you have given explicit consent for specific purposes (e.g., marketing).

• Contractual Obligations: Where processing is necessary for fulfilling a contract with you.

• Legitimate Interests: When processing is necessary for our legitimate business interests, unless overridden by your rights.

• Legal Obligations: Where we are required to process information to comply with legal obligations.

• Vital Interests: To protect the vital interests of you or others.

3. When and With Whom Do We Share Your Personal Information?

We may share your personal information under the following circumstances:

• Business Transfers: In the event of a merger, acquisition, or sale of assets, we may transfer personal information to the acquiring entity.

• Legal Compliance: We may share data when legally required (e.g., responding to legal requests or protecting against legal liability).

• Service Providers: We may share your data with trusted third-party vendors who assist in providing services (e.g., payment processors or cloud storage services).

4. Do We Use Cookies and Other Tracking Technologies?

Yes, we use cookies and similar tracking technologies to collect and store your information. You can manage your preferences through your browser settings. For more details, see our Cookie Notice.

5. How Long Do We Keep Your Information?

We retain your personal information only as long as necessary to fulfill the purposes outlined in this privacy notice unless a longer retention period is required by law. Once processing is no longer necessary, we will securely delete or anonymize the data.

6. How Do We Keep Your Information Safe?

We use appropriate organizational, technical, and administrative measures to safeguard your personal information. While we strive to protect your data, no system is completely secure, and we cannot guarantee absolute security.

7. Do We Collect Information From Minors?

We do not knowingly collect personal information from children under 18 years of age. If we discover that we have inadvertently collected data from a minor, we will take steps to delete it. Parents or guardians can contact us to request deletion.

8. What Are Your Privacy Rights?

For EU/EEA Residents:

Under the GDPR, you have the following rights:

• Right to Access: Request access to the personal information we hold about you.

• Right to Rectification: Request corrections to inaccurate or incomplete data.

• Right to Erasure: Request deletion of your data, subject to certain legal exceptions.

• Right to Restriction of Processing: Request limitation on how we process your data.

• Right to Data Portability: Receive a copy of your data in a structured, machine-readable format.

• Right to Object: Object to our processing of your personal data based on legitimate interests or direct marketing purposes.

For California Residents:

Under the CCPA, you have rights to:

• Access and Data Portability: Request access to the specific pieces of personal information we have collected about you.

• Deletion: Request that we delete your personal data, subject to legal exceptions.

• Opt-Out of Sale: We do not sell your personal information. However, you may still request to opt-out of any potential "sales" of personal information.

You can exercise your privacy rights by contacting us at giacomo.marzi@imtlucca.it

9. Controls for Do-Not-Track Features

We currently do not respond to Do-Not-Track signals. If an industry-standard is developed, we will adopt it and notify you of changes.

10. Do We Make Updates to This Policy?

Yes, we may update this privacy notice to comply with evolving laws and regulatory requirements. You are encouraged to review this notice periodically for updates.

11. How Can You Contact Us?

For any questions or comments regarding this privacy notice, you may contact us via email at giacomo.marzi@imtlucca.it

For individuals in the European Economic Area (EEA), you may also contact our Data Protection Officer (DPO) at giacomo.marzi@imtlucca.it for GDPR-related queries.

12. How Can You Review, Update, or Delete the Data We Collect From You?

To review, update, or delete your personal information, please visit our website or contact us directly.