Atlantia SpA (hereinafter Atlantia) informs visitors to its website that it protects personal data in accordance with and in compliance with the legal requirements set out in EU Regulation No. 679/2016 - General Data Protection Regulation (hereinafter the "Regulation" or "GDPR").
This information is provided solely for this Atlantia SpA website, and not for any other websites accessed via links.
1. Types of data processed and purposes of processing
The website offers information and sometimes interactive content. During browsing of the website, information about the visitor may be acquired in the following ways:
1.1. Registration data
The information requested during registration will be used to allow access to online areas and services which - in order to ensure correct implementation of all the activities connected with or instrumental to the provision of its services - may, if necessary, communicate users' personal data to other Atlantia Group SpA companies. Moreover, since registration is a prerequisite for accessing online services, customers' personal data – once the service has been chosen and after further information has been provided – will be processed only for purposes connected with and/or which facilitate provision of the chosen service. In no event will data be transferred to third-party companies outside the Group.
1.2. Browsing data
During their normal operation, the computer systems and software procedures used to run this website acquire certain data whose transmission is implicit in the use of internet communication protocols.
This category of data includes IP addresses or domain names of the computers used by users connecting to the website, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc.) and other parameters regarding the operating system and computer environment. These data are only used to obtain anonymous statistical information regarding use of the website and to check its correct functioning, and are stored for the periods set out in the relevant legal regulations.
This information could be used to ascertain responsibility in the event of hypothetical computer crimes detrimental to the website.
1.3. Data voluntarily provided by visitors
This includes all personal data freely given by a visitor to the website, for example, when registering and/or accessing a restricted area, requesting information about a particular product or service using a form, writing to an email address, or calling a toll-free number to directly contact the customer service department.
When applicable, this information may be used for user profiling purposes. In such event, appropriate information will be provided and free, specific consent will be obtained for marketing and/or profiling purposes, in accordance with the techniques provided for by current privacy regulations (initially, during the phase of obtaining consent on an opt-in basis, and subsequently, for any refusal of consent, on an opt-out basis.
Cookies are packages of information sent by a web server (e.g. the website) to your internet browser, which automatically stores them on your computer and automatically sends them back to the server each time you access the website.
By default, almost all web browsers are set to automatically accept cookies.
Visitors can set their computer's browser to accept or reject all cookies, or display a warning each time a cookie is proposed so that they can decide whether or not to accept it. However, users can change the default configuration and disable (i.e. permanently block) cookies by setting the highest level of protection.
2. Redirection to external websites
The website may use social plug-ins which are special tools that allow you to embed social network features directly into the website (e.g. icons or buttons such as Facebook's "Like").
All social plug-ins on the website are marked with the logo of the respective social networking platform.
When you visit a page on our website and interact with the plug-in (e.g. by clicking on the "Like" button) or decide to leave a comment, the corresponding information is directly transmitted from your browser to the social networking platform (in this case, Facebook) and stored there.
3. CONNECTION TO AND FROM THIRD-PARTY WEBSITES
From this website it is possible to connect to other websites relating to Atlantia, Atlantia Group companies or third parties.
The owner of the website disclaims any responsibility for any management of personal data by third-party websites or for the management of any authentication credentials provided by them.
4. OPTIONALITY OF PROVIDING DATA
Apart from the above specifications regarding registration and browsing data, users are free to provide any data necessary for requests for clarification and/or information that they wish to send Atlantia. Please note that failure to provide such data may make it impossible to obtain the service requested.
As well as for the above-mentioned service purposes in accordance with the details given by the user when registering for the restricted access areas, such data, including the email address, may be used for the Company's own commercial communications or on behalf of their commercial partners, only if the user has given specific and prior consent, when necessary.
5. PROCESSING METHODS AND STORAGE TIMES
Personal data will be processed by means of computer and telematic tools, and for purposes connected with and/or instrumental to the provision of online services, or simply for browsing on the website, for the time strictly necessary to achieve the purposes for which they were collected. Data processing will be carried out by means of tools and/or methods aimed at ensuring the confidentiality and security of the data.
6. THE DATA CONTROLLER AND THE DATA PROTECTION OFFICER
The data controller is Atlantia SpA, with administrative headquarters in via Bergamini 50, 00159 Rome.
As the data controller, Atlantia has identified and appointed a Data Protection Officer (DPO) in accordance with articles 37-39 of the Regulations, who is the pro tempore head of Group Compliance and Security, and may be contacted at this email address: DPO@atlantia.it
7. DATA SUBJECTS' RIGHTS
For legitimate and well-founded reasons - consistent with any existing legal and contractual obligations incumbent on the Data Controller - data subjects may exercise the rights recognised by the Regulation in articles 15-22 (i.e. right of access to personal data, right of rectification, cancellation, limitation of processing, portability of personal data, opposition) by writing to this email address: DPO@atlantia.it specifying the subject matter of the request and the reasons for exercising the right.
Furthermore, in the manner and within the limits provided for by the Regulation, the right to lodge a complaint with the Data Protection Authority is recognised.
8. DATA TRANSFER
No personal data that may be collected via this website is transferred to third parties located within or outside of countries belonging to the European Economic Area (EEA).