EsseDiEsse Società di Servizi S.p.A., hereinafter "SDS", provides, pursuant to European Regulation 2016/679 (GDPR) and applicable national legislation, the policy relating to the processing of data of users who browse the website www.essediessespa.it (hereinafter the "Website"). To this end, the page describes the methods for managing the Website in relation to the individuals who visit it.
The Website pages may contain links to the websites of other parties, to which, however, this declaration on data security does not extend. This policy is therefore only provided for the SDS Website and not for other websites that may be visited by the user through links.
1. DATA CONTROLLER
EsseDiEsse Società di Servizi S.p.A., a company subject to the management and coordination of Autostrade per l'Italia S.p.A., with registered office based in Rome, at Via A. Bergamini 50, 00159 and with tax code, registration number in the Rome Business Registry and VAT No. 06130511006.
The Data Protection Officer (DPO) for EsseDiEsse Società di Servizi S.p.A is Mr Diego Galletta, Engineer, domiciled for the position at the companies registered office.
2. TYPES OF DATA VOLUNTARILY PROVIDED BY USERS/VISITORS, PURPOSES
No personal data is acquired by the Website unless knowingly provided by the user. Should the users/visitors, by connecting to the Website, submit their personal data to access certain services, or to make requests by email, these concern common data that shall be processed exclusively to respond to the request or to provide the service.
SDS collects technical information relating to the Website users’ browsing data.
Specifically, the IT and computer systems and software procedures used to operate the Website acquire certain data during their normal operation. The transmission of said data is implicit in the use of web communication protocols or is useful for the better management and optimisation of the system.
This data is only used to obtain anonymous statistics on the use of the Website, to check it is functioning correctly.
A cookie is a small text string that is sent to the user’s browser and possibly saved on the latter's computer; this submission generally occurs each time a user visits a website. Each cookie is unique in relation to the browser and the device used to access the Website; in general, the purpose of cookies is to improve the operation of the Website and the user’s experience in using it.
On the website www.essediessespa.it, cookies are used for the following purposes and classification:
2.2 SYSTEM COOKIES OR TECHNICAL COOKIES
So-called "Technical Cookies" are cookies that have the function of enabling the best quality use of the Website based on the features of the browser used on the computer or, alternatively, on any other tool used to access the internet.
These Cookies enable the user to navigate the website and use its features, for example, to gain access to its secure areas.
Without these cookies, it may not be possible to provide authentication services and a correctly functioning Website.
These cookies are not always defined by SDS, but, in some cases, are generated and used automatically by the software platforms used.
However, they are understood as only having the sole purpose of the general functioning of the Website.
2.3 COOKIES FOR ANALYSING PERFORMANCE- AND BROWSER-RELATED STATISTICS
NOTE: Advertising cookies, also known as "Profiling Cookies” are not used.
2.4 HOW TO DISABLE COOKIE FROM YOUR BROWSER
Visitors can change the settings on their browser in order to inhibit cookies or to be alerted that cookies are being sent to their device. Visitors can refer to the instruction manual or to their browser’s help screen to find out how to adjust or change their browser’s settings.
In the case of other devices or browsers, visitors must ensure that each browser in each device is correctly set in order to comply with the cookie preferences desired by the user.
If you choose to disable all cookies - necessary, functional and performance cookies will also be blocked and this could cause inconvenience when browsing the SDS Website.
3. PROCESSING METHOD
Personal data shall be processed, in accordance with the current regulations, by means of IT and computer tools and using logic strictly related to the aforementioned purposes, in order to ensure the confidentiality and security of said data.
4. DATA RETENTION TIME
Users’/visitors’ personal data shall be retained only for the time necessary for the purposes for which they were collected, in accordance with the principle of minimisation pursuant to Article 5.1.c) of the GDPR.
5. DATA RECIPIENTS
Within Essediesse S.p.A., the individuals responsible for data processing and authorised, by the Data Controller, to carry out processing operations as part of the aforementioned activities may become aware of said personal data.
The aforementioned third parties (parent companies/subsidiaries involved or third-party companies) required to process information for the same purposes referred to in section 2 above, referred to as “Data Processors” may become aware of personal data.
The full list of parties appointed as Data Processors is available from the DPO.
In no case shall the users’/visitors’ personal data be disclosed.
6. RIGHTS OF DATA SUBJECTS
Please be informed that Articles 15-22 of the GDPR grant data subjects the opportunity to exercise specific rights; data subjects can obtain, from the Data Controller: access, rectification, deletion, limitation of processing, withdrawal of consent and the portability of data concerning them.
Data subjects are also entitled to object to data processing. In the event that the right of objection is exercised, the Data Controller reserves the right not to proceed with the request and, therefore, to continue with the processing, in the event of compelling legitimate reasons to proceed with the processing that prevail over the interests, rights and freedom of the data subject.
The above rights may be exercised by sending an informal request to the Data Protection Officer at the following certified email address: firstname.lastname@example.org, using the specific forms provided by the Data Controller on its website, www.essediessespa.it.
Please be informed that data subjects may file a complaint, pursuant to Article 57 section f) of the GDPR, with the Personal Data Protection Authority.