LAST UPDATED: 27.03.2024
THE PRIVACY POLICY OF THIS SITE
WHY THIS NOTICE
This page describes how the site it managed in relation to the processing of personal data of users who visit it. This information is given to those who interact with the web services of the Data Controller that are accessible electronically from:
please note that the information is provided only for the above site and not for other websites that may be consulted by users by way of links. If you use links to go to other sites of the SAVE Group, each of them will have its own specific page containing its privacy policy.
THE "DATA CONTROLLER" OF THE TREATMENT AND DPO
After visiting this site, data relating to identified or identifiable persons may be processed. The "Data Controller" of their processing is SAVE S.p.A. with registered office in Viale Galileo Galilei 30/1 - 30173 Tessera Venezia (Italy), tax code 02193960271. The Company has appointed a DPO who is contactable at the following e-mail dpo@grupposave.com
OF DATA PROCESSED, PURPOSES, AND LEGAL BASIS FOR PROCESSING
Navigation data
During their normal operation, the computer systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of internet communication protocols. This information is not collected to be associated with identified interested parties. However, by its very nature, it could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URIs (Uniform Resource Identifiers) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc.), and other parameters relating to the operating system and computer environment. These data are used only to obtain anonymous statistical information on the use of the site and to check its proper functioning, and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site: except for this possibility, the data on web contacts do not currently remain for more than a month. The legal basis for the processing is therefore a legitimate interest of the Data Controller in the performance and improvement of the services provided on the site.
Data provided voluntarily by users
The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site or the compilation of appropriate data entry formats to receive services/information or make requests, involves the subsequent acquisition of the sender's address that is necessary to meet the requests, as well as any other personal data that is entered. The personal data provided by users who submit requests (for information, newsletter subscriptions, contact requests, etc.) are processed only to perform the service or provision requested, unless otherwise provided in any further specific information notices on the processing of data within the specific pages of log-in or registration. Specific summary information and any requests for consent, if necessary, will be progressively reported or displayed on the pages of the site set up for particular services on request. The legal basis for the processing is therefore the fulfilment of contractual obligations (requests) of requesting users.
Cookies
The site uses technical cookies/third-party cookies. No personal data of users is acquired by the site. Cookies are not used for the transmission of personal information. Cookies are used exclusively to allow the operation of certain parts of the website and, in particular, to maintain access to the reserved area of the site. Users can refuse the use of cookies by selecting the appropriate setting on their browsers. For more information, see the appropriate section: cookie policy. The legal basis for the processing is therefore a legitimate interest of the Data Controller in the performance and improvement of the services provided on the site.
COMMUNICATION OF DATA TO THIRD PARTIES AND TRANSFER TO THIRD COUNTRIES
No data from the web service is disseminated. The personal data provided by users (such as: name, surname, email, telephone, information contained in complaints) may be communicated to third parties for the performance of the purposes mentioned above; such third parties include:
- associated or subsidiary companies that are part of our Group;
- public or private bodies, law enforcement agencies for the fulfilment of obligations provided for by law;
- any external persons appointed as Data Processors for the purposes of management and maintenance of the website;
- external consultants, insurance companies and other institutions, air carriers and third-party airport operators as independent data controllers.
Except as above and always unless otherwise provided in the individual statement relating to the service requested, the data are disclosed to third parties only where this is necessary to perform the service or service requested (e.g.: submission of complaints).
Personal data provided by users will not be transferred to third countries (outside the EU). Any transfer of user navigation data to third countries will take place in compliance with the GDPR and applicable legislation.
PROCESSING METHODS, PERIOD OF DATA RETENTION, AND AUTOMATED PROCESSES
Personal data are processed by IT tools for the period necessary to perform the indicated purpose(s) and, at the end of this period, stored for the further statutory period relating to the storage of contracts and administrative data, and/or for legal defence (10 years from the last use, and/or events prescribed by the statutory period), and/or the period provided for by legal obligations. No automated decision-making process, including profiling, is carried out via the site. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorised access.
CONFERMENT OF DATA
Apart from specifications regarding navigation data, users are free to provide personal data stated in the request forms, or indicated in contacts with the Data Controller. Failure to provide such data may make it impossible to received what has been requested. The undersigned company, owner of the website and Data Controller, reserves the right to cancel the registration and to interrupt the provision of services in the event that the data provided to access certain services prove to be untrue.
RIGHTS OF DATA SUBJECTS, RIGHT TO LODGE COMPLAINTS, AND WITHDRAWAL OF CONSENT
The subjects to whom the personal data refer have the right at any time to request access to their personal data, rectification, cancellation, limitation of the same, to oppose the processing, and to exercise the right to data portability. In any event, the Data Subject (user/s) have the right to revoke any consent given to the processing of their data at any time, without prejudice to the lawfulness of processing based on the consent given prior to such revocation.
To exercise your rights under current legislation on the protection of personal data, and to know the full list of privacy contact persons appointed for each area and activities, or to obtain information regarding the transfer of data to non-EU countries and related guarantees, please write to privacy@grupposave.com.
SAVE S.p.A. Unipersonale
Viale G. Galilei, 30/1
30173 Tessera - Venezia (VE)
Tel. +39 041.2609260
Registro Imprese di Venezia
Cod. fisc. - P.IVA 02193960271
Capitale sociale Euro 35.971.000,00 i.v.
Società soggetta a direzione e coordinamento da parte di Milione S.p.A.