Aware of the trust placed in us when providing your data, by way of this privacy policy (hereinafter the “Privacy Policy”), for the purposes and pursuant to Article 13 of EU Regulation 679/2016 (hereinafter, “GDPR”), Acea S.p.A. intends to provide you with clear and transparent information regarding the website management procedures insofar as concerns the processing of your personal data.
This information notice is issued only for the website and related subdomains, if any, and does not cover any other websites that may be consulted by the user via appropriate links. The website is owned and managed by Acea S.p.A.. Navigation and use of the website imply acknowledgement and acceptance of the Legal Notes and this Privacy Policy, therefore, users/visitors are invited to carefully read this Privacy Policy before forwarding any type of personal information and/or filling out any electronic forms present on the website. Acea S.p.A. reserves the right, at any time, to amend the terms of the Privacy Policy, in the event of website revisions, and these amendments will enter into effect to coincide with the date of said revisions. Explicit information on the processing of data concerning, for example, registration procedures, access, other service requests or participation in promotional activities or surveys, may be included in specific information notices located in subsections of the portal.
Processing of the data collected will be carried out in full observance of principles of lawfulness, correctness, transparency, storage limitation, integrity and confidentiality, within the scope of expressly determined purposes, only within the limits strictly necessary for the pursuance thereof. If you choose not to authorize the said processing, please refrain from using the services provided by the platform.
The services offered via this website are exclusively designed for use by an adult public. If it should come to our attention that the personal data of a minor have been collected without the required consent of a parent or legal guardian, we shall take steps in real time to destroy and delete all such data.
The Data Controller is Acea S.p.A. (hereinafter the “Data Controller”), with registered office in Piazzale Ostiense 2, 00154 Rome, tel. +39 06 57 991, PEC (certified e-mail): acea.spa@pec.aceaspa.it. In order to provide the services offered, the Data Controller may avail itself of specifically designated third parties, who will act on behalf as Data Processor in consideration of their specific appointment. Your data may also be disclosed to parties who will operate in the capacity of persons authorised for processing purposes, who will follow specific instructions.
As for the Facebook page, Acea S.p.A., as page administrator, acts as co-Data Controller of the statistical data together with Facebook Ireland Limited (“Facebook Ireland”). The shared proprietorship agreement that Acea S.p.A. has signed can be found at the following link https://www.facebook.com/legal/terms/page_controller_addendum.
For Privacy Policy purposes, personal data shall be construed as any information that might enable your identification. More specifically, through website navigation the following may be gathered:
- Navigation data: the website’s computer systems and software procedures, in the normal course of operations, acquire certain personal data which is then transmitted through the use of Internet communication protocols. In view of its nature, the information in question could, via association and elaboration with data held by third parties, allow identification of users and visitors (for example, IP address, domain names of computers used by the users/visitors connecting to the website, etc.); the data is gathered automatically and exclusively for the purpose of enabling website navigation and, in a totally anonymous form, may also be used for statistical surveys;
- Data provided voluntarily and directly by users such as, for example, name, surname and contact information. Potential requests by the user/visitor for information or services will entail acquisition on the part of Acea S.p.A. of the sender’s name and/or other personal data, if any, which will be processed exclusively in order to meet the request, or to provide the related service. Personal data supplied by users/visitors will be processed only to respond to the requests of users/data subjects, and for this reason agreement to the processing of such data is not necessary.
Acea S.p.A. uses cookies. Please read the Cookie Policy.
Processing of the data is performed via automated means (for example, using electronic procedures and aids) and/or manually (for example, paper-based) for the time strictly necessary to achieve the purposes for which the data was collected in order to enable your navigation experience and allow you to use the requested services and in any case in compliance with applicable regulatory provisions in force. Acea S.p.A. implements technical and organizational measures that ensure a level of data security appropriate for the level of risk presented by processing personal data, in accordance with the principles of art. 32 of the GDPR, in order to prevent loss, unlawful, incorrect and unauthorized use of data.
Personal data will be retained by Acea S.p.A. for the time strictly necessary to pursue the relevant purposes and in any case for no longer than 10 years.
Apart from the specification given with regard to navigation data, which will be collected automatically, users/visitors may freely provide their personal data. However, failure to provide the requested personal data marked with an appropriate asterisk may merely imply the impossibility to send a request for information, transmit content and/or messages, or use the services offered.
The parties to whom the personal data refer are entitled at any time to exercise the rights set forth by Articles 15 et seq. of the GDPR, comprising in particular the right to access, correct, erase, oppose and restrict processing.
The data subject will also have the right to lodge a complaint with the personal data protection Authority.
Data Subjects can exercise their rights by sending a request addressed to the Data Controller or Data Protection Officer.
For subsidiaries, a Data Protection Officer (DPO) of the Acea Group has been appointed and can be contacted at the following email address: privacy@aceaspa.it.
