Legal Terms

Information on the processing of personal data

pursuant to Articles 13 – 14 of Regulation (EU) 2016/679

Current legislation, with particular reference to EU Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data, as well as on the free movement of such data (General Regulation on the Protection of Personal Data, hereinafter "GDPR") and Legislative Decree No. 196 of 30 June 2003, as amended (hereinafter, "Privacy Code") guarantees that the processing of personal data is carried out in compliance with the rights, fundamental freedoms, as well as the dignity of natural persons, with particular reference to confidentiality, personal identity and the right to protection of personal data, ensuring that the data are processed lawfully and fairly.


In light of the above, Covisian S.p.A., with registered office in via dei Valtorta, 47 – 20127 Milan (MI), in its capacity as Data Controller (hereinafter, the "Company"), provides you with the following information regarding the processing of Personal Data, as defined below, collected and processed through this website (hereinafter, the "Website") and the Company's pages on social networks (hereinafter, the "Social Networks").


This privacy notice may be amended, integrated or updated periodically, also in consideration of any changes in the applicable legislation or provisions of the Italian Data Protection Authority and/or the European Data Protection Board.


The processing of Personal Data for the purposes of recruitment is described in the specific policy.

  1. Which personal data concerning you may be processed

For the purposes of this privacy notice, "Personal Data" or "Data" shall mean, as a whole (possibly including the Special Categories of data, as defined below and within the limits clarified hereafter) all the information concerning your person, suitable for identifying you directly and/or indirectly, better described as below:

  • identification data, such as, for example, your name and surname (hereinafter, "Identification Data");

  • contact details, such as e-mail addresses and any other contact details spontaneously provided by you in the context of requests for information and/or other communications (hereinafter, "Contact Details");

  • data relating to how you use the Website (such as pages visited, your choices regarding cookies, technical data relating to the connection, including IP addresses or the domain names of the computers used to connect to the Website, the URI addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server, etc.), including the information collected through cookies, the privacy notice of which can be consulted at the following address (Cookie Policy) (hereinafter, "Usage Data");

  • data relating to the Social accounts you may use to access the Social pages, as well as other data provided by you to such Social Networks, which may be communicated based on the privacy preferences you have set on them (hereinafter, "Social Data");

  • other data, non-contact related, such as the Company to which you belong to, the job title/corporate role and/or data you may have spontaneously transmitted in the context of requests for information (hereinafter, "Other Data").

As a rule, the Personal Data processed will not concern personal beliefs, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, information relating to health or sex life or sexual orientation (hereinafter "Special Categories of Personal Data"), nor data relating to criminal convictions and offences (hereinafter, "Data relating to criminal convictions and offences"). In the event that it is necessary to process Special Categories of Personal Data and/or Data relating to criminal convictions and offences, the Company undertakes to process such data in accordance with applicable legislation, including by supplementing this privacy notice.

  1. Purposes and legal basis

The Data will be processed for the following purposes:

  1. Use of the Website.


Your Usage Data will be processed by the Company to ensure the proper functioning of the Website's features and to analyse web traffic related to the Website itself, also to improve your experience and that of other users. Please note that, should you have freely given your consent for the installation of the relevant cookies, the Data Controller will also pursue this purpose by processing Social Data, or any other personal data that may be made visible according to the preferences you have set or based on the privacy policy of the social network. We therefore invite you to read the privacy policy of your social network, also for further information regarding such preferences.

Legal basis for the processing: legitimate interest in providing, verifying and improving the Website user experience (art. 6, par. I, letter f), GDPR). The provision of Usage Data is mandatory, regarding data processed through so-called "technical cookies" (better described in the Cookie Policy) and for technical data relating to the connection, while it is optional regarding any further Usage Data and/or Social Data, which depend on your potential consent to the installation of categories of cookies other than "technical cookies": failure to provide such optional data may result in the impossibility of improving your experience of using the Website.


b. Requests for information / other communications.


Your Identification Data, Contact Details and Other Data will be processed to provide feedback to your requests for information and/or any other communications sent to the Company.

Legal basis for the processing: performance of a contract to which the Data Subject is party (Article 6, par. I, letter b), GDPR). The provision of Identification Data, Contact Details and Other Data is optional, but in default thereof, it will not be possible to respond to your requests for information.


c. Marketing Purposes / Newsletter.


Your Identification Data and Contact Details will be processed, subject to your explicit and specific consent, for commercial/marketing activities, as well as for sending informative/promotional communications, such as newsletters, initiatives, events, workshops, including those of the Group (where there is a reasonable expectation, or consent, of the Data Subject to receive communications relating to services or products offered by the Company and/or by the companies of the Covisian Group (hereinafter, "Group").

Legal basis for the processing: consent of the Data Subject (art. 6, par. I, lett. a), GDPR). The provision of Data is optional, but without such Data we will not be able to pursue this purpose. Likewise, the provision of consent is optional, but failure to provide results in the impossibility of receiving commercial offers and/or informative/promotional communications, including those of the Group. You may, in any case, exercise your right to withdraw consent, in the manner described in paragraph 7 of this privacy notice.


d. Aggregate analysis and improvement of products/services.


Your Data will be processed in aggregate form, in such a way as to exclude your personal identification, to analyse, review and improve the Company's services and/or to conduct surveys aimed at measuring the level of interest and/or general satisfaction with the Company's products and/or services, as well as for the efficient management of resources and for further internal statistical analysis, including on the perception of the aforementioned Company.

Legal basis for the processing: legitimate interest in improving its services and the management of the relationship with users (art. 6, par. I, lett. f), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this additional purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this one (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for its processing, as well as the link between the purposes mentioned above and this further purpose).


e. Purposes related to the protection of rights, including those of the Data Subject.


Your Data will be processed by the Company to protect its rights, also with respect to any requests, or to take legal action, including bringing claims against you or third parties, as well as to be able to prove having provided feedback to any requests for the exercise of one or more of the rights of the Data Subject, described in detail below in paragraph 7 of this privacy notice.

Legal basis for the processing: legitimate interest in the protection of rights (art. 6, par. I, lett. f), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this further purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this one (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for their processing, as well as the link between the purposes mentioned above and this further purpose).


f. Fulfilment of legally binding requests to comply with legal obligations, regulations or orders/requests from competent authorities, including supervisory authorities.


Your Data may be processed to comply with a legal obligation and/or orders/requests from competent authorities, including supervisory authorities.

Legal basis for the processing: compliance with legal obligations to which the Company is subject (art. 6, par. I, lett. c), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this further purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for their processing, as well as the link between the purposes mentioned above and this additional purpose).

  1. Use of the Website.


Your Usage Data will be processed by the Company to ensure the proper functioning of the Website's features and to analyse web traffic related to the Website itself, also to improve your experience and that of other users. Please note that, should you have freely given your consent for the installation of the relevant cookies, the Data Controller will also pursue this purpose by processing Social Data, or any other personal data that may be made visible according to the preferences you have set or based on the privacy policy of the social network. We therefore invite you to read the privacy policy of your social network, also for further information regarding such preferences.

Legal basis for the processing: legitimate interest in providing, verifying and improving the Website user experience (art. 6, par. I, letter f), GDPR). The provision of Usage Data is mandatory, regarding data processed through so-called "technical cookies" (better described in the Cookie Policy) and for technical data relating to the connection, while it is optional regarding any further Usage Data and/or Social Data, which depend on your potential consent to the installation of categories of cookies other than "technical cookies": failure to provide such optional data may result in the impossibility of improving your experience of using the Website.


b. Requests for information / other communications.


Your Identification Data, Contact Details and Other Data will be processed to provide feedback to your requests for information and/or any other communications sent to the Company.

Legal basis for the processing: performance of a contract to which the Data Subject is party (Article 6, par. I, letter b), GDPR). The provision of Identification Data, Contact Details and Other Data is optional, but in default thereof, it will not be possible to respond to your requests for information.


c. Marketing Purposes / Newsletter.


Your Identification Data and Contact Details will be processed, subject to your explicit and specific consent, for commercial/marketing activities, as well as for sending informative/promotional communications, such as newsletters, initiatives, events, workshops, including those of the Group (where there is a reasonable expectation, or consent, of the Data Subject to receive communications relating to services or products offered by the Company and/or by the companies of the Covisian Group (hereinafter, "Group").

Legal basis for the processing: consent of the Data Subject (art. 6, par. I, lett. a), GDPR). The provision of Data is optional, but without such Data we will not be able to pursue this purpose. Likewise, the provision of consent is optional, but failure to provide results in the impossibility of receiving commercial offers and/or informative/promotional communications, including those of the Group. You may, in any case, exercise your right to withdraw consent, in the manner described in paragraph 7 of this privacy notice.


d. Aggregate analysis and improvement of products/services.


Your Data will be processed in aggregate form, in such a way as to exclude your personal identification, to analyse, review and improve the Company's services and/or to conduct surveys aimed at measuring the level of interest and/or general satisfaction with the Company's products and/or services, as well as for the efficient management of resources and for further internal statistical analysis, including on the perception of the aforementioned Company.

Legal basis for the processing: legitimate interest in improving its services and the management of the relationship with users (art. 6, par. I, lett. f), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this additional purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this one (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for its processing, as well as the link between the purposes mentioned above and this further purpose).


e. Purposes related to the protection of rights, including those of the Data Subject.


Your Data will be processed by the Company to protect its rights, also with respect to any requests, or to take legal action, including bringing claims against you or third parties, as well as to be able to prove having provided feedback to any requests for the exercise of one or more of the rights of the Data Subject, described in detail below in paragraph 7 of this privacy notice.

Legal basis for the processing: legitimate interest in the protection of rights (art. 6, par. I, lett. f), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this further purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this one (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for their processing, as well as the link between the purposes mentioned above and this further purpose).


f. Fulfilment of legally binding requests to comply with legal obligations, regulations or orders/requests from competent authorities, including supervisory authorities.


Your Data may be processed to comply with a legal obligation and/or orders/requests from competent authorities, including supervisory authorities.

Legal basis for the processing: compliance with legal obligations to which the Company is subject (art. 6, par. I, lett. c), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this further purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for their processing, as well as the link between the purposes mentioned above and this additional purpose).

  1. Use of the Website.


Your Usage Data will be processed by the Company to ensure the proper functioning of the Website's features and to analyse web traffic related to the Website itself, also to improve your experience and that of other users. Please note that, should you have freely given your consent for the installation of the relevant cookies, the Data Controller will also pursue this purpose by processing Social Data, or any other personal data that may be made visible according to the preferences you have set or based on the privacy policy of the social network. We therefore invite you to read the privacy policy of your social network, also for further information regarding such preferences.

Legal basis for the processing: legitimate interest in providing, verifying and improving the Website user experience (art. 6, par. I, letter f), GDPR). The provision of Usage Data is mandatory, regarding data processed through so-called "technical cookies" (better described in the Cookie Policy) and for technical data relating to the connection, while it is optional regarding any further Usage Data and/or Social Data, which depend on your potential consent to the installation of categories of cookies other than "technical cookies": failure to provide such optional data may result in the impossibility of improving your experience of using the Website.


b. Requests for information / other communications.


Your Identification Data, Contact Details and Other Data will be processed to provide feedback to your requests for information and/or any other communications sent to the Company.

Legal basis for the processing: performance of a contract to which the Data Subject is party (Article 6, par. I, letter b), GDPR). The provision of Identification Data, Contact Details and Other Data is optional, but in default thereof, it will not be possible to respond to your requests for information.


c. Marketing Purposes / Newsletter.


Your Identification Data and Contact Details will be processed, subject to your explicit and specific consent, for commercial/marketing activities, as well as for sending informative/promotional communications, such as newsletters, initiatives, events, workshops, including those of the Group (where there is a reasonable expectation, or consent, of the Data Subject to receive communications relating to services or products offered by the Company and/or by the companies of the Covisian Group (hereinafter, "Group").

Legal basis for the processing: consent of the Data Subject (art. 6, par. I, lett. a), GDPR). The provision of Data is optional, but without such Data we will not be able to pursue this purpose. Likewise, the provision of consent is optional, but failure to provide results in the impossibility of receiving commercial offers and/or informative/promotional communications, including those of the Group. You may, in any case, exercise your right to withdraw consent, in the manner described in paragraph 7 of this privacy notice.


d. Aggregate analysis and improvement of products/services.


Your Data will be processed in aggregate form, in such a way as to exclude your personal identification, to analyse, review and improve the Company's services and/or to conduct surveys aimed at measuring the level of interest and/or general satisfaction with the Company's products and/or services, as well as for the efficient management of resources and for further internal statistical analysis, including on the perception of the aforementioned Company.

Legal basis for the processing: legitimate interest in improving its services and the management of the relationship with users (art. 6, par. I, lett. f), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this additional purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this one (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for its processing, as well as the link between the purposes mentioned above and this further purpose).


e. Purposes related to the protection of rights, including those of the Data Subject.


Your Data will be processed by the Company to protect its rights, also with respect to any requests, or to take legal action, including bringing claims against you or third parties, as well as to be able to prove having provided feedback to any requests for the exercise of one or more of the rights of the Data Subject, described in detail below in paragraph 7 of this privacy notice.

Legal basis for the processing: legitimate interest in the protection of rights (art. 6, par. I, lett. f), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this further purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this one (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for their processing, as well as the link between the purposes mentioned above and this further purpose).


f. Fulfilment of legally binding requests to comply with legal obligations, regulations or orders/requests from competent authorities, including supervisory authorities.


Your Data may be processed to comply with a legal obligation and/or orders/requests from competent authorities, including supervisory authorities.

Legal basis for the processing: compliance with legal obligations to which the Company is subject (art. 6, par. I, lett. c), GDPR). In this case, no new and specific provision of data is required, as the Company will pursue this further purpose, where necessary, by processing data already collected for the pursuit of other purposes, deemed compatible with this (also due to the context in which such data were collected, the relationship between you and the Company, the nature of the data itself and the appropriate guarantees for their processing, as well as the link between the purposes mentioned above and this additional purpose).

  1. From which sources may data be collected and how

Data may be collected by the Company through:

  • your use of the Website and/or Social Networks;

  • communications sent by you, including any requests for assistance and/or information, also through channels other than those indicated on the Website or on the Social Network pages.

The Data may be updated and/or supplemented based on information available publicly and/or collected from third parties, and/or directly from you.

  1. How we keep your personal data secure and for how long

The processing of your Data will be based on the principles of fairness, lawfulness and transparency and may also be carried out through automated methods.


Processing will, in any case, take place using tools suitable to guarantee confidentiality by procedures suitable to avoid the risk of loss, unauthorized access, unlawful use and dissemination, as well as the use of security measures appropriate to the risk. We limit access to your Data to only those who need to use it for relevant purposes.


We store your Data only for the time strictly necessary to achieve the purposes for which they were collected or for any other related legitimate purpose. Therefore, if the Data are processed for two different purposes, we will retain such Data until the purpose with the longer term ends; however, we will no longer process the Data for that purpose for which the retention period has ended. Data that are no longer necessary, or for which there is no longer a legal basis for their storage, are irreversibly anonymised (and in this way may be stored) or securely destroyed.

Below we report the retention period in relation to the different purposes listed above:

  1. Use of the Website.


The Data processed for the pursuit of this purpose will be stored for a period of time not exceeding one year.


b. Requests for information / other communications.


The Data processed for the pursuit of this purpose will be stored for a period of time not exceeding one year from the conclusion of the individual response to your communication, without prejudice to your right to object in the manner provided for in paragraph 7 of this privacy notice.


c. Marketing Purposes / Newsletter.


The Data processed for the pursuit of this purpose will be stored for up to 24 months from their collection or, if earlier, until the withdrawal of consent/cancellation of your subscription to the Newsletter, which the Data Subject may exercise at any time, as clarified in the following section relating to the rights of the Data Subject.


d. Aggregate analysis and improvement of products/services.


The Data processed for the pursuit of this purpose will be processed in aggregate and anonymous form, for the time necessary to achieve the purposes described in this privacy notice.


e. Purposes related to the protection of rights, including those of the Data Subject.


The Data processed for the pursuit of this purpose will be stored for the entire duration of the relevant proceedings, and in any case for the time reasonably deemed necessary by the Company for the protection of its rights, also in relation to the relevant statutes of limitations.

With particular reference to the data stored to provide proof of feedback to the Data Subject, such Data will be stored for a period of five years from the last request of the Data Subject, or from the last communication interrupting the statute of limitations, in line with the limitation periods provided by the applicable regulations.


f. Fulfilment of legally binding requests to comply with legal obligations, regulations or orders/requests from competent authorities, including supervisory authorities.


The Data processed for the pursuit of this purpose will be stored for the entire duration of the proceedings before the relevant competent authorities, in addition to the related limitation periods.

  1. Use of the Website.


The Data processed for the pursuit of this purpose will be stored for a period of time not exceeding one year.


b. Requests for information / other communications.


The Data processed for the pursuit of this purpose will be stored for a period of time not exceeding one year from the conclusion of the individual response to your communication, without prejudice to your right to object in the manner provided for in paragraph 7 of this privacy notice.


c. Marketing Purposes / Newsletter.


The Data processed for the pursuit of this purpose will be stored for up to 24 months from their collection or, if earlier, until the withdrawal of consent/cancellation of your subscription to the Newsletter, which the Data Subject may exercise at any time, as clarified in the following section relating to the rights of the Data Subject.


d. Aggregate analysis and improvement of products/services.


The Data processed for the pursuit of this purpose will be processed in aggregate and anonymous form, for the time necessary to achieve the purposes described in this privacy notice.


e. Purposes related to the protection of rights, including those of the Data Subject.


The Data processed for the pursuit of this purpose will be stored for the entire duration of the relevant proceedings, and in any case for the time reasonably deemed necessary by the Company for the protection of its rights, also in relation to the relevant statutes of limitations.

With particular reference to the data stored to provide proof of feedback to the Data Subject, such Data will be stored for a period of five years from the last request of the Data Subject, or from the last communication interrupting the statute of limitations, in line with the limitation periods provided by the applicable regulations.


f. Fulfilment of legally binding requests to comply with legal obligations, regulations or orders/requests from competent authorities, including supervisory authorities.


The Data processed for the pursuit of this purpose will be stored for the entire duration of the proceedings before the relevant competent authorities, in addition to the related limitation periods.

  1. Use of the Website.


The Data processed for the pursuit of this purpose will be stored for a period of time not exceeding one year.


b. Requests for information / other communications.


The Data processed for the pursuit of this purpose will be stored for a period of time not exceeding one year from the conclusion of the individual response to your communication, without prejudice to your right to object in the manner provided for in paragraph 7 of this privacy notice.


c. Marketing Purposes / Newsletter.


The Data processed for the pursuit of this purpose will be stored for up to 24 months from their collection or, if earlier, until the withdrawal of consent/cancellation of your subscription to the Newsletter, which the Data Subject may exercise at any time, as clarified in the following section relating to the rights of the Data Subject.


d. Aggregate analysis and improvement of products/services.


The Data processed for the pursuit of this purpose will be processed in aggregate and anonymous form, for the time necessary to achieve the purposes described in this privacy notice.


e. Purposes related to the protection of rights, including those of the Data Subject.


The Data processed for the pursuit of this purpose will be stored for the entire duration of the relevant proceedings, and in any case for the time reasonably deemed necessary by the Company for the protection of its rights, also in relation to the relevant statutes of limitations.

With particular reference to the data stored to provide proof of feedback to the Data Subject, such Data will be stored for a period of five years from the last request of the Data Subject, or from the last communication interrupting the statute of limitations, in line with the limitation periods provided by the applicable regulations.


f. Fulfilment of legally binding requests to comply with legal obligations, regulations or orders/requests from competent authorities, including supervisory authorities.


The Data processed for the pursuit of this purpose will be stored for the entire duration of the proceedings before the relevant competent authorities, in addition to the related limitation periods.

  1. Who we may share your personal data with

The Data may be accessed by subjects duly authorized and instructed.

In particular, for the performance of certain Data processing activities, the Company may communicate the same to the following categories of external subjects, who will process such Data as independent data controllers or as data processors, duly designated by the Company in accordance with current legislation (depending on the role they play in relation to the processing):

  • other companies of the Covisian Group, of which the Company is a part, as part of the related Group relationships;

  • external consultants and providers such as cloud service providers, IT providers or hosting providers;

  • suppliers of tools/solutions for the pursuit of marketing purposes (mailing, etc.);

  • professional firms/consultants, especially where necessary for the protection of the Company's rights;

  • police forces, and other public administrations, in fulfillment of obligations provided for by laws, regulations or applicable legislation.

You may contact the Company in the manner provided in the "Contacts" section below if you wish to request to view the list of data processors and other subjects to whom we communicate the Data.

  1. International transfers

The Company may need to transfer your Data to countries that are not part of the European Economic Area (EEA) (hereinafter, "Third Countries") whose Data protection laws may have different standards than those of the EEA. In the latter case, the Company will ensure that all of your Data accessible outside the EEA are processed with appropriate safeguards.


In particular, the Company will provide adequate guarantees and safeguards for such cross-border transfers, in accordance with the provisions of personal data protection legislation; these include the use of Standard Contractual Clauses approved by the European Commission, Codes of Conduct and/or Binding Corporate Rules. Such clauses impose similar data protection obligations directly on the recipient, unless the applicable data protection law allows the transfer the data without such formalities.

In any case, where such transfer is necessary, the Company will take care to specify in advance the destination Third Country as well as the specific instrument adopted for the transfer of Data to that country.

  1. Your data protection rights and your right to lodge a complaint with a supervisory authority

Under the conditions set out in the GDPR, you have the right to request from the Company:

  • access to the Data concerning you, as well as their rectification;

  • the erasure of the Data;

  • the restriction of processing;

  • within the limits of the Data processed for contractual purposes and/or based on your consent, and processed by automated means, the receipt of such Data in a structured, commonly used and machine-readable format and/or the transmission of the same to another data controller (so-called "portability").

To exercise your rights, you may contact the Company at the following address: privacy@covisian.com.


Right to object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of Data by the Company for the pursuit of its legitimate interest and/or for direct marketing purposes, for the purposes referred to above under 2.a, 2.c, 2.d, and 2.e. The objection request should be addressed to the following address: privacy@covisian.com.


Withdrawal of consent: You have the right to withdraw, at any time, any consent granted for the purpose referred to in point 2.c above. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. The request for withdrawal of consent may be addressed to privacy@covisian.com or may be exercised by clicking on the “unsubscribe” link at the bottom of the newsletter.


The exercise of Data Subject rights is subject to certain exceptions, in particular aimed at safeguarding the public interest (e.g. the prevention or identification of crimes) and/or protecting the Company’s rights. Should you exercise any of the aforementioned rights, it shall be the Company’s responsibility to verify that you are entitled to exercise them and you will be acknowledged, as a rule, within one month.


The Company will take into close consideration any complaints or reports about how we process your personal data and will make every effort to respond to your requests. However, you may lodge complaints or reports with the competent Supervisory Authority, or refer a judicial remedy.

  1. Contacts

The Company's contact details, as data controller are as follows: Covisian S.p.A., with registered office in via dei Valtorta, 47 – 20127 Milan (MI) | e-mail: privacy@covisian.com.


The contact details of the Company's Data Protection Officer (DPO) are as follows: dpocorporate@covisian.com.


Last modified: 13 May 2026

The Company's contact details, as data controller are as follows: Covisian S.p.A., with registered office in via dei Valtorta, 47 – 20127 Milan (MI) | e-mail: privacy@covisian.com.


The contact details of the Company's Data Protection Officer (DPO) are as follows: dpocorporate@covisian.com.


Last modified: 13 May 2026