Cortexa Lab Logo
Back to home

Privacy Policy

This Privacy Policy describes how Cortexa Lab (hereinafter "the Company") processes personal data of users visiting our website (hereinafter "the Site"). This policy is drafted in compliance with Regulation (EU) 2016/679 (GDPR) and applicable Italian data protection legislation.

1. Data Controller

The data controller is Cortexa Lab.

2. Types of Data Collected

The Site collects the following categories of data:

  • Navigation data: the computer systems used to operate the Site automatically collect certain personal data during normal operation, as part of internet communication protocols (e.g., IP addresses, browser type, operating system, pages visited, access times).
  • Technical cookies: the Site uses only technical cookies necessary for proper operation. No profiling or third-party tracking cookies are used. For more details, see our Cookie Policy.

3. Purposes of Processing

Personal data is processed for the following purposes:

  • Ensuring the proper technical functioning of the Site
  • Compiling anonymous usage statistics
  • Responding to user contact requests
  • Complying with legal obligations

4. Legal Basis for Processing

Data processing is based on the following legal grounds under Article 6 of the GDPR:

  • Legitimate interest of the controller (Art. 6(1)(f)): to ensure the security and proper functioning of the Site.
  • Consent (Art. 6(1)(a)): for any specific processing for which the user's explicit consent is requested.

5. Processing Methods

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are implemented to prevent data loss, unlawful or improper use, and unauthorized access.

Data is not transferred to third countries outside the European Union. The servers used are located in Italy.

6. User Rights (Articles 15-22 GDPR)

As a data subject, the user has the right to:

  • Obtain confirmation of the existence of personal data concerning them (Art. 15)
  • Obtain rectification of inaccurate data (Art. 16)
  • Obtain erasure of data (Art. 17 — right to be forgotten)
  • Obtain restriction of processing (Art. 18)
  • Receive data in a structured, machine-readable format (Art. 20 — portability)
  • Object to processing (Art. 21)
  • Not be subject to decisions based solely on automated processing (Art. 22)

To exercise these rights, the user may contact the data controller at [email protected].

The user also has the right to lodge a complaint with the competent supervisory authority (Garante per la Protezione dei Dati Personali).

7. Changes to this Privacy Policy

The data controller reserves the right to modify this Privacy Policy at any time. Changes will be published on this page. Users are advised to check this page periodically.

Last updated: April 2026