- Directive 2002/58/EC – on “the processing of personal data and the protection of privacy in the electronic communications sector”
- Regulation (EU) 2016/679 of the European Parliament and of the Council of the Union of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
- Legislative Decree 30 June 2003 no. 196 – “Privacy Code”, and subsequent amendments and integrations.
THE DATA CONTROLLER
Following consultation of this site, data relating to identified or identifiable
persons may be processed. The “Data Controller” of their processing is RAI
WAY S.p.A., tax code and VAT no. 05820021003, with registered office in Via
Teulada, 66, 00195 – Rome.
PLACE OF DATA PROCESSING and STORAGE TIME
The processing operations connected to the web services of this site take place
at the aforementioned premises of the Data Controller and are carried out only
by personnel expressly authorised by the latter, or by any third-party suppliers
appointed to perform occasional maintenance operations, who are appointed as
Data Processors pursuant to article 28 of the GDPR. The data collected will be
kept – for each type of data processed – only for the time necessary to fulfil the
specific purposes set out in the specific summary information displayed on the
pages of the site and prepared for particular services.
TYPES OF DATA PROCESSED
The computer systems and software procedures used to operate this website
acquire, in the course of their normal operation, certain personal data whose
transmission is implicit in the use of Internet communication protocols. This
information is not collected in order to be associated with identified data
subjects, but by its very nature could, through processing and association with
data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users that
connect to the website, URI (Uniform Resource Identifier) addresses of the
resources requested, the time of the request, the method used to submit the
request to the server, the size of the file obtained in response, the numerical
code indicating the status of the response from the server (successful, error,
etc.) and other parameters regarding the operating system and the user’s IT
environment. This data is only used to obtain anonymous statistical information
regarding use of the website and to verify its correct operation and is deleted
immediately after processing. The data could be used to ascertain responsibility
in case of hypothetical cyber crimes against the site: at present, with the
exception that the data on web contacts do not prolong for more than seven
Data provided voluntarily by the user
The optional, explicit and voluntary sending of personal data by the user in the
contact forms on the Site entails the subsequent acquisition of the data provided
by the user, which is necessary to reply to requests. Specific summary
information is published and accessible from the pages offering data collection
Cookies are small text files containing a certain amount of information
exchanged between a website and the user’s terminal (usually the browser).
They are mainly used for the purpose of making websites work and operate
more efficiently, as well as for the purpose of providing information to the site
owners. Cookies can be either session or persistent. Session cookies are stored
in the terminal for a short period of time and are deleted as soon as the user
closes the browser. Their use is strictly limited to the transmission of session
identifiers (consisting of random numbers generated by the server) necessary to
enable the safe and efficient exploration of the site. Persistent cookies, on the
other hand, remain stored in the user’s terminal until a predetermined expiry
date. These, which are not directly deleted when the browser is closed, make it
possible to remember the choices made by the user on the site, as well as to
collect information about the pages of the site visited by the user, the frequency
with which the site is visited and to identify the user’s browsing pattern, in order
to improve the experience on this site. Cookies, whether session cookies or
persistent cookies, can be either First Party cookies or Third Party cookies
depending on whether the party installing the cookies on the user’s terminal is
the same operator of the site that the user is visiting (in which case they are First
Party cookies) or a different party (in which case they are Third Party cookies).
Cookies used by this site
This website makes use of both First Party and Third Party cookies as it makes
use of the functionality of the Google Analytics services, offered by Google Inc.
of the websites visited by the user. For more information on Google Analytics
Additional cookies are also used for data traffic analysis (Matomo) and, for
services that provide for it or will provide for it, Linkedin and Meta
(Facebook) cookies for authentication, remarketing, and links to company
pages on the relevant social networks.
In addition to the cookies in the table, this site also makes use of so-called
session cookies (e.g. the PHPSESSID cookie, which relates to the work
session), i.e. those cookies that are not stored persistently on the user’s
computer and disappear when the browser is closed. Their use is strictly limited.
Normally, browsers allow control of most cookies via the browser settings.
Please note, however, that the total or partial disabling of so-called technical
cookies may compromise the use of the site’s functionalities. However, if you do
not wish to receive any kind of cookies on your computer, either from this site or
from others, you can increase the level of privacy protection by changing the
security settings of your browser:
Mozilla Firefox: https://support.mozilla.org/it/kb/Gestione dei cookie
Google Chrome: https://support.google.com/chrome/answer/95647?hl=it
Internet Explorer: http://windows.microsoft.com/it-it/windows-vista/block-or-
Safari 6/7 Mavericks https://support.apple.com/kb/PH17191?viewlocale=it_IT&locale=i
Safari 8 Yosemite https://support.apple.com/kb/PH19214?viewlocale=it_IT&locale=it
Safari on iPhone, iPad, or iPod touch https://support.apple.com/it-
it/HT201265 Some of the services listed below collect statistics in aggregate
form and may not require the user’s consent or may be operated directly by the
owner – as described – without the help of third parties.
Google Maps widget (Google Inc.)
Google Maps is a map display service operated by Google Inc. which allows this
Application to integrate such content into its pages. Personal data collected:
OPTIONAL CONFERRAL OF DATA
Apart from what is specified for browsing data, the user is free to provide his/her
own personal data. However, failure to provide them may result in the
impossibility of obtaining what has been requested.
PROCESSING METHODS and STORAGE TIME
Personal data are processed, including by means of automated tools, for the
time strictly necessary to achieve the purposes for which they were collected.
Specific security measures are observed to prevent loss of data, unlawful or
incorrect use and unauthorised access. The Data Controller has taken all the
minimum security measures required by law and, drawing inspiration from the
main international standards, has also adopted additional security measures to
minimise the risks concerning the confidentiality, availability and integrity of the
personal data collected and processed.
DATA SHARING, COMMUNICATION AND DISSEMINATION
The data collected may be transferred or communicated to other companies for
activities strictly related and instrumental to the operation of the service, such as
the management of the computer system. The personal data provided by users
who request sending of informative material (brochures, informational material,
etc.) are used solely for the purpose of performing the service or provision
requested and are communicated to third parties only if necessary for that
purpose (companies that provide enveloping, labelling, mailing services).
Outside of these cases, personal data will not be disclosed unless provided for
by contract or law, or unless specific consent is requested from the data subject.
In this sense, personal data may be passed on to third parties, but only and
exclusively in the event that:
- there is explicit consent to share the data with third parties;
- there is a need to share information with third parties in order to provide
the requested service;
- this is necessary to comply with requests from the Judicial or Public
No data from the web service is disseminated.
RIGHTS OF DATA SUBJECTS
The legislation on the protection of personal data expressly provides for certain
rights of the person to whom the data refer (so-called data subject). More
specifically, in accordance with articles 15 et seq. of Regulation (EU) 2016/679,
each data subject shall have the right to obtain confirmation as to whether or not
data relating to him or her exist, to be informed of the source of the data and the
purposes and methods of the processing, to obtain the updating, rectification,
restriction, integration of the data as well as their erasure if they are processed
unlawfully or if one of the reasons specified in article 17 of Regulation (EU)
2016/679 applies. The data subject also has the right to lodge a complaint with a
supervisory authority if he/she considers that the rights set out herein have not
been granted to him/her.
The Controller periodically checks its privacy and security policy and, if
necessary, revises it in relation to regulatory, organisational or technological
changes. If the policies change, the new version will be published on this page
of the site.
QUESTIONS, COMPLAINTS, SUGGESTIONS AND EXERCISE OF RIGHTS
Anyone interested in more information, to contribute their own suggestions or to
make complaints or objections regarding the privacy policies, the way in which
our Company processes personal data, as well as to assert their rights under the
legislation on the protection of personal data, may contact the Data Controller by
writing to RAI WAY S.p.A, Tax Code and VAT no. 05820021003, with registered
office in Via Teulada, 66, 00195 – Rome or by sending an e-mail to
LAW AND JURISDICTION
The interpretation and execution of these conditions shall be governed by Italian
law. The Court of Rome (Italy) shall have exclusive jurisdiction for any dispute in
any way connected with these conditions. The Holder reserves the right to
obtain urgent remedies in any court, including abroad, to protect its interests and
enforce its rights.