Privacy Policy

I – INFORMATION ON THE SITE’S PRIVACY POLICY
1. This section contains information on the processing of user data by IG Operation and Maintenance S.p.A.
2. This information is valid for the purposes of Article 13 of Regulation (EU) No. 2016/679, relating to the protection of natural persons with regard to the processing of personal data and the free circulation of such data.

II – PRIVACY POLICY
1 – DATA CONTROLLER
1. With regard to this website, the Data Controller is: IG Operation and Maintenance S.p.A., with registered office in Via Campobello, 1 – 00071, Pomezia (RM), in the person of its legal representative p.t., reachable at the following email address: privacy@igomspa.it.
2- OBJECT OF THE PROCESSING
The normal functioning of the website makes it necessary to acquire personal data from users.
This is information that could allow users to be identified through processing and association with data held by third parties (so-called navigation data, such as the IP address).
The Data Controller also processes the personal data provided by you through the contact tools indicated in the “Contacts” sections: name, surname, email, telephone number as well as any other data included in the message.
The data processed in relation to the “Work with us” section are governed by the specific information pursuant to art. 13 GDPR available in correspondence with the section.
3- PURPOSE AND LEGAL BASIS OF THE PROCESSING
The so-called navigation data will be processed so that the Data Controller can ensure the regular functioning of the site. The legal basis that legitimises the processing of the user’s data to pursue these purposes lies in art. 6, par. 1, letter f) GDPR.
The personal data acquired through requests for information as well as contact requests will be processed for the sole purpose of providing you with feedback. The legal basis of the processing is therefore found in the legitimate interest of the Data Controller to follow up on the requests made (art. 6, par. 1, letter f) GDPR).
The personal data provided by filling in the “Work with us” form and sending the curriculum vitae are processed to evaluate and select potential candidates for the purpose of carrying out selection interviews. The processing of data is, therefore, necessary for the management of pre-contractual activities; therefore, the legal basis can be found in art. 6, letter b), GDPR. See the information pursuant to art. 13 GDPR for further details.
4- NATURE OF THE PROCESSING
The acquisition of navigation data occurs during the normal functioning of the computer systems and software procedures used to operate this website, the same is configured as implicit in the use of Internet communication protocols.
The provision of personal data by the user via form or e-mail is optional. Failure to provide such data may make it impossible to obtain what is requested or to carry out the indicated activity.
5- PROCESSING METHODS
The processing of the user’s data will be carried out in a lawful and correct manner, adopting the appropriate security measures aimed at preventing unauthorized access, disclosure, modification or unauthorized destruction of the data. The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated.
Each processing takes place in compliance with the methods referred to in Article 32 GDPR and through the adoption of adequate security measures.
6- STORAGE PERIOD
The data collected by the site during its operation are used exclusively for the purposes indicated above in point 3 and stored for the time strictly necessary to carry out the specified activities, and in any case no longer than 2 years from the collection of the data.
The data acquired from the “Contacts” section will be stored for the time necessary to fulfill the aforementioned purposes and in any case for a period not exceeding 12 months from sending and receiving.
7- DISSEMINATION AND COMMUNICATION
The personal data processed by the Data Controller will not be disseminated, or will not be disclosed to unspecified subjects, in any possible form, including that of making them available or simply consulting them.
However, they may be communicated to subjects to whom communication is mandatory by law. For example, the data may be communicated to the Judicial Authority, such as the IP address, in order to block attempts to damage the site or to cause damage to other users, or in any case harmful or criminal activities.
In some cases, categories of Persons in Charge involved in the organization of the site (administrative staff, lawyers, system administrators), specifically authorized and trained, or external subjects (such as third-party technical service providers, third-party hosting providers) may have access to the data.