Privacy and Cookie Policy

WEB PRIVACY POLICY & COOKIES

This Privacy Policy is intended to describe the use of cookies and other tracking tools (hereinafter indicated “cookies”) of this web site (hereinafter indicated “SITE”) with reference to and the processing of personal data of visitors who consult it.

This is information provided, pursuant to Regulation 2016/679/EU (General Data Protection Regulation – hereinafter GDPR), of the Code regarding the protection of personal data (Legislative Decree 196/03, the c.d. Privacy Code), as amended by Legislative Decree 101/2018 and the General Provision of the Privacy Guarantor of 8 May 2014 regarding cookies, as integrated by the Guidelines of the Privacy Guarantor of 10 June 2021 regarding cookies and other tracking tools, to those who connect to the «SITE».

This Privacy Policy is provided only for this «SITE» www.sacal.it and its possible subdomains, but not for other websites, which may be consulted by the user through special hypertext links (links), of which «SITE» is unrelated to the relative services.

OWNER OF THE TREATMENT OF PERSONAL DATA

The Data Controller is Società Aeroportuale Calabrese S.p.A. – S.A.CAL. S.p.A. (hereinafter «SACAL»), with headquarters in Via Aeroporto – 88046 Lamezia Terme (CZ) – Tax Code and P.I. 01764970792. For matters relating to privacy, the Data Controller can be contacted by e-mail privacy@sacal.it.

SACAL has appointed a Data Protection Officer, who can be contacted at the SACAL headquarters or by sending an e-mail to dpo@sacal.it.

LEGAL BASES OF THE TREATMENT

The Data Controller processes the personal data of Users for the following legal goals:

  • Article 6 c. 1 letter a) GDPR – concerning any consent to voluntary additional services such as for example the sending of a CV, a confidential communication. Consent is optional and can be revoked at any time.
  • Article 6 c. 1 letter f) GDPR – for a legitimate interest of the Data Controller (pursuant to this could occur for the following purposes:
    ✓ general business management and development of services and products;
    ✓ information security assurance and IT operations;
  • Article 6 c. 1 letter c) GDPR – for legal and/or regulatory obligations.

METHODS OF PROCESSING NAVIGATION DATA

This “SITE” uses only technical cookies as defined in paragraph 4 of the provision of the Guarantor for the protection of personal data of 10 June 2021 (art. 122, paragraph 1, of the Code regarding the protection of personal data – Legislative Decree 30 June 2003, n. 196), for the installation of which the prior consent of the users is not required (paragraph 5 of the provision).

Commercial profiling cookies are not used in any way.

The computer systems and software procedures used for the functioning and security of this website acquire, during their normal operation, some data from the connected device whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to allow subsequent identification of the User, but which is used for the sole purpose of obtaining anonymous statistical information on the use of the website, to check its correct functioning and to preserve evidence in the event of analysis on cyber incidents.

This information, which is not collected in association with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified, is treated as follows.

Automatic collection concerns the following categories of data:

  • IP address or domain name of the device used by the User;
  • date and time of access to the web page of the site;
  • user agent of the User’s browser;
  • URL (Uniform Resource Locator) to the accessed web part.

Any processing can be carried out, through tools automatically and anonymously for aggregations for statistical purposes on the use of the “SITE”, or manually for any post-accident analysis by the personnel in charge of IT security or by the competent authorities for the ‘assessment of responsibility in the event of computer crimes against the website.

The retention of the original data is approximately six months, except for a longer and limited period for the purposes of IT security or ascertaining responsibility. The data reside on servers in the Italian territory and are only handled by authorized technical personnel for processing (pursuant to Article 29 of the GDPR). The Data Controller adopts adequate technical and organizational measures to protect personal data from unauthorized or illegal processing and against accidental loss, disclosure, destruction or damage.

No transmission of data outside the countries of the European Union is authorized and the communication can only take place towards:

  • competent law enforcement agencies for possible investigations and judicial measures;
  • authorities that carry out control activities on the activity of SACAL (for example CONSOB).

DATA PROVIDED VOLUNTARILY BY USERS

If users, connecting to this “SITE”, send their personal data to request information, for communications or otherwise, by e-mail or by filling in the web form, this will involve the acquisition by SACAL of the sender’s address and/or of any other personal data that will be used exclusively to respond to the request.

The Data Controller may process, pursuant to art. 6 c. 1 lit. a) of the GDPR), the following data:

  • Personal data (Ex: name, surname, gender, residential address…)
  • Contact details (Ex: telephone contacts, e-mail…)

The personal data provided by users will be communicated to third parties only if the communication is necessary to comply with the user’s requests or for legal or regulatory obligations. The data communicated through the web form are treated in the e-mail server as a sending by user e-mail. Unless otherwise requested by the user or required by law, spontaneous communications are kept for one year.

DATA RECIPIENTS

As mentioned, the data may be communicated to subjects operating as independent data controllers.

Furthermore, they may be communicated and processed, on behalf of the Data Controller, by subjects designated as Data Processors pursuant to art. 28 GDPR. In particular, the data may be communicated to:

  • companies belonging to the same corporate group to which the Data Controller belongs, which act as Data Processors;
  • natural and/or legal persons who provide services of various kinds in favor of the Data Controller (e.g. service providers for the management of the Site, companies that deal with internet connection services, etc.).

THE RIGHTS OF THE INTERESTED PARTIES

The interested party has the right, at any time, to obtain confirmation of the existence or not of data collected or transferred concerning them. You also have the right to request the rectification of inaccurate personal data and/or the integration of incomplete ones and to exercise any other right provided for by articles 15 to 22 of the GDPR where applicable, by contacting the Data Controller.

If the interested party believes that the treatment has taken place in a way that does not comply with the GDPR, he can also contact the Supervisory Authority, pursuant to art. 77 of the GDPR. Further information regarding the personal data protection rights of the interested party can be found on the website of the Guarantor for the Protection of Personal Data at the address www.garanteprivacy.it.

METHODS OF EXERCISING RIGHTS

The exercise of rights can be requested through the appropriate form from the Data Controller and/or the DPO. It is possible to view the procedural ITER and download the relative form on the following link dpo@sacal.it.

INTELLECTUAL PROPERTY

All rights to the contents (by way of example, texts, images and site architecture) are reserved in accordance with current legislation.

The contents of the website pages may not, either totally or in part, be copied, reproduced, transferred, uploaded, published or distributed in any way without the prior written consent of SACAL, except for the possibility of storing them on your computer or print extracts from the pages of this site for personal use only.

Any non-compliance with these provisions, unless explicitly authorized in writing, will be prosecuted in the competent civil and criminal courts.
The specific conditions of use possibly provided for individual services, set out in the relative information pages, remain unaffected.

LIMITATIONS OF LIABILITY

SACAL cannot be held responsible in any way for damages of any nature caused directly or indirectly by accessing the site, by the inability or impossibility of accessing it, by reliance on the information contained therein or by their use.
SACAL reserves the right to modify the contents of the «SITE» and of this page at any time without notice.

SACAL invites users, in communications or requests for services, not to send names or other personal data of third parties that are not strictly necessary.

SACAL assumes no responsibility for services offered by third parties, with which this “SITE” has activated a hypertext link, and for any other content, information or anything else contrary to the laws of the Italian State present in the resource of the third party connected via the link mentioned.

Any links to external third-party sites are provided as a simple service to users, with the exclusion of any responsibility for the correctness and completeness of the set of links indicated or the information contained in the sites indicated.

The Owner reserves the right to update this information.