Privacy Policy

Last Update: 01/12/2020


The Open Trust Fabric Alliance is an initiative sponsored by the European Commission, Directorate-General of Justice. The information and views set out in this platform are those of the author(s) and do not reflect the official opinion of the Commission. The Commission does not guarantee the accuracy of the data included in this platform. Neither the Commission nor any person acting on the Commission’s behalf may be held responsible for the use which may be made of the information contained therein.

Disclaimer of the European Commission

Notice on Personal Data Processing

This privacy statement, provided pursuant to Article 13 of the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of personal data, hereafter, “GDPR”), describes the manner and purposes of the processing of personal data of the users of the website (hereafter, “Website”).
We may change this privacy policy at any time. We encourage you to periodically review this page for the latest information on our privacy practices. If we make any changes, we will change the Last Updated date.
Any modifications to this Privacy Policy will be effective upon our posting of the new terms and/or upon implementation of the changes to the Site (or as otherwise indicated at the time of posting). In all cases, your continued use of the Site or Services after the posting of any modified Privacy Policy indicates your acceptance of the terms of the modified Privacy Policy.

The data controller

The data controller is Exrade SRL (hereinafter referred to as “Exrade”), with registered office in Via Roberto da Sanseverino 95, Trento 38122.

Purposes and manner of processing

The IT systems and software procedures used to operate the Website acquire, during the normal course of operation, some personal data whose transmission is implicit in using Internet communication protocols. This information is not collected to be associated with identified interested parties. Some data is collected and processed with the sole purpose of obtaining anonymous statistical information on use of the Website. Other data, with the prior consent of the Users, is collected and processed by third parties for profiling purposes (see “use of cookies”).
The Website allows Users to know about the mission and the initiatives carried out by the data controller. Through the website it is possible, for the visitor, to ask for more information. The following data is requested for contacting the Open Trust Fabric Alliance:

  • Email address
  • Name
    All personal data provided through this Website is processed in compliance with the principles of lawfulness and fairness established by current legislation on personal data protection, in order to make the website accessible to the Users, as well as to respond to any requests or communications from Users.
    The data will be processed with automated instruments for the time strictly necessary to attain the purposes for which it has been collected or subsequently processed. The data controller applies all appropriate technical and organizational measures to ensure safe processing of personal data and to prevent the accidental loss or destruction and unauthorized and / or illegal access to, use, modification or disclosure thereof. In assessing the appropriate level of security and in the process of selecting and implementing suitable technical and organizational measures, the data controller takes into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing, as well as the risks that are presented by processing, in particular from accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored or otherwise processed, and additionally, the risk of varying likelihood and severity for the rights and freedoms of natural persons.
    Some users of social networking platforms (such as LinkedIn and Twitter) may see information notes about the service offered by the site, because Exrade, using social media, wants to reach people interested in. The operating logic of the advertisements are technically managed by the social media themselves and are described in the relative sites (eg and Exrade may select some criteria, to outline the target to which the informative notes can be addressed, based on the parameters identified by the manager of the social platform (such as Location, Company Sector, Work functions, etc.). Based on these choices, social platforms identify the recipients to be reached through targeted information notes.

Legal basis for processing

  • With regard to the processing of personal data deriving from use of the Website, as well as data acquired following any requests for information, the legal basis for processing is constituted by the legitimate interest of the data controller to make the website accessible to users, pursuant to Article 6, Letter f) of the GDPR;
  • With regard to processing deriving from the profiling of Users who use the Website as well as from the response to any user requests, the legal basis for processing is represented by the specific consent given by the User, pursuant to Article 6, Letter a) of the GDPR.

Optional provision of data

Except as specified below with regard to browsing data (cookies), the provision of data through forms on the Website, namely the information transmitted voluntarily by the User, is always optional. Nonetheless, failure to supply the mandatory data on the request forms means that the Open Trust Fabric Alliance shall not be able to provide the User with the service requested from time to time.

Scope of communication and dissemination of data

Any third parties to whom the data may be disclosed in carrying out processing operations related to the purposes specified in this privacy notice shall be designated in advance by the data controller as external data processors pursuant to current legislation on the protection of personal data. No data will be communicated or disseminated in violation of the law.

Data retention period

The personal data processed will be promptly deleted when the purposes of processing shall be deemed to be exhausted, unless retention is required by law.

Rights of data subjects

The data subject may exercise, at any time and in the presence of legal requirements, the rights to access personal data and the other rights provided for in Articles 15 et seq. of Regulation (EU) no. 2016/679, in order to obtain confirmation of the existence of data concerning him or her, to access it, rectify it, delete it, restrict processing or oppose processing on legitimate grounds, or request portability, by submitting a request to the data controller by email or certified email to the address info(at) , or using the contact information in the “Contacts” section of the Website.
Furthermore, the data subject has the right to lodge a complaint with the data protection authority if he or she considers that the processing of his or her personal data has taken place in violation of Regulation (EU) no. 2016/679.

Third-Party Websites

Our Site may contain links to or the ability for you to access third-party websites. We are not responsible for the privacy practices employed by those third parties, nor are we responsible for the information or content their websites contain. This Privacy Policy applies solely to information collected by us. We encourage you to read the privacy policies of any third parties before proceeding to use their websites.

Data protection officer

The data controller has appointed a data protection officer. The data protection officer can be contacted by email or certified email at the address info(at)