Privacy Policy

1. Data Controller

The Data Controller is:
 ABSM srl
 Via Antonio Grossich, 17 – 20131 Milan (MI), Italy
 VAT and Tax Code: 12947830969
 PEC (certified email): absmsrl@pecimprese.it

For any requests regarding data protection, you may contact the Data Protection Officer (DPO): Carmen Monterosso
 

2. Legal Basis and Purpose of Processing

Pursuant to Article 13 of Regulation (EU) 2016/679 (hereinafter “GDPR”), ABSM srl informs you that your personal data are processed lawfully, fairly, and transparently, for specific, explicit, and legitimate purposes. Data processing is carried out:

  • to provide services, products, or information related to the company’s business purposes (Article 6(1)(b), GDPR);

     

  • to fulfill legal obligations (Article 6(1)(c), GDPR);

     

  • based on your explicit consent, for promotional or informational communications (Article 6(1)(a), GDPR).

     

3. Source of Data

Personal data are collected directly from the data subject through remote communication tools (website, telephone, email), and only after explicit consent to processing.

4. Types of Data Processed

ABSM srl processes only non-sensitive personal data (such as name, email, company data, VAT number, banking details).
 No special categories of personal data (e.g., health, political opinions, religious beliefs) are processed unless strictly necessary and with prior written consent (Article 9, GDPR).
 Users are advised not to transmit such data via web or telephone unless specifically requested by ABSM srl.

5. Processing Methods and Security Measures

Personal data are processed using both electronic and paper-based tools. Appropriate technical and organizational measures are in place to ensure data security, integrity, and confidentiality, and to prevent unauthorized access, loss, or unlawful use.

6. Data Sharing and Recipients

Data may be shared with:

  • external consultants and professionals for legal and administrative purposes;

     

  • partner companies for service delivery;

     

  • authorized personnel designated under Article 29, GDPR.

     

Data will not be publicly disclosed.
 If necessary, personal data may be transferred outside the EU, in compliance with Article 46, GDPR (appropriate safeguards).

7. Data Retention

Personal data will be retained for a maximum period of 5 years, unless legal obligations require otherwise. After this period, data will be deleted or anonymized.

8. Data Subject Rights

Data subjects have the right to:

  • access their personal data (Art. 15);

     

  • request rectification or updates (Art. 16);

     

  • obtain erasure (“right to be forgotten” – Art. 17);

     

  • restrict processing (Art. 18);

     

  • receive data in a structured, commonly used, machine-readable format and transmit them to another controller (Art. 20);

     

  • object to processing (Art. 21);

     

  • withdraw consent at any time without affecting the lawfulness of processing based on consent before withdrawal (Art. 7(3));

     

  • lodge a complaint with a supervisory authority (e.g., the Italian Data Protection Authority – www.garanteprivacy.it).

     

9. Nature of Data Provision

Providing data is optional. However, refusal to provide data may prevent the full or partial provision of requested services or the establishment of any collaboration.

10. Browsing Data

During normal website operation, the systems and software may collect some personal data implicitly transmitted via internet communication protocols. These data are not collected to identify users but could allow user identification through association with third-party data.
 This includes: IP addresses, URI addresses of requested resources, time of request, method used, file size, status codes, and browser/system information.

These data are used exclusively for anonymous statistics, to monitor proper functioning of the site, and may be retained in logs for security purposes. Data may be provided to judicial authorities if needed for cybercrime investigations.

11. Cookies

Cookies are small text files exchanged between a web server and your device. This site uses only technical and session cookies to:

  • manage secure browsing of reserved areas;

     

  • provide personalized content;

     

  • allow basic website functionality and anonymous analytics (e.g., visit counts).

     

These cookies are not used to collect personal identification data or for commercial profiling.
 To access reserved areas, cookies must be enabled in your browser with at least a “Medium” security setting.
 No profiling or third-party cookies are used.

Users can manage or disable cookies through their browser settings, which may limit functionality.

12. Updates

This document represents the Privacy Policy of this website and may be subject to future updates.
 We encourage users to check this section periodically.

Last update: July 22, 2025

ABS MILAN

About us

Governance

Why Choose ABSM

PROGRAMS

Executive MBA

People, Organization and Culture

ESG Leadership

CONTACT US

+39 331 1274803

info@absmilan.com

Newsletter

Subscribe to our newsletter for exclusive updates and news, directly to your inbox.

© 2024 American Business School of Milan. All rights reserved.

Privacy Policy
Cookie Policy