Privacy policy Information on the processing of personal data

Personal data is processed in a limited and proportionate manner for the following purposes.

Data is processed predominantly by computer. Appropriate security measures are observed to prevent loss of data, illegal or incorrect use and unauthorised access.

Click on one of the following icons to find out more about the processing you are interested in.

• Contact, information, complaints and website
• Metered areas
• Litigation and debt collection
• APCOA Flow
• Video surveillance
• Suppliers and consultants

With reference to the personal data of customers, the data shall be processed for purposes connected with the management of ordinary contractual and commercial relations and, specifically, for the keeping of accounts payable, invoicing, and creditor management for the fulfilment of all obligations provided for by current regulations.

The data may also be processed by APCOA ITALIA SPA for exclusively internal statistical and market research purposes.

The personal data collected may be communicated to parties, internal or external to APCOA, in respect of whom such communication is configured as the fulfilment of legal or contractual obligations or as necessary for the pursuit of the purposes specified above.

Specific information on the communication and dissemination of data can be found in each processing description sheet. Below, you will find general information on the processing methods carried out by APCOA.

The data may be disclosed to third parties, exclusively for technical and operational requirements strictly related to the purposes set out in the individual information sheets, and in particular to the following categories of subjects

a. The data may be disclosed within the APCOA business group, e.g. to APCOA Group GmbH in order to pursue its own legitimate interests with reference to internal administrative purposes, including the processing of personal data of customers or employees.

b. from/to public authorities for purposes connected with the fulfilment of legal obligations.

c. from/to parties to whom the right to access personal data is recognised by provisions of law or secondary or EU regulations, as well as by specific contracts and agreements duly signed;

d. from/to banks, financial institutions, insurance companies or other parties to whom the communication of the data is necessary for the performance of our company's activities in relation to the fulfilment by us of contractual/commercial obligations towards customers

e. from/to parties to whom the communication of personal data is necessary or functional for the performance of existing contractual obligations.

f. from/to public and private entities on whose behalf APCOA ITALIA SPA carries out its activities, for the purposes and within the limits provided for in the relevant contracts.

g. to the competent Municipal Police in order to allow the interested party to take advantage of possible facilitations or for necessary administrative fulfilments.

h. to the Pubblico Registro Automobilistico (PRA) and to A.C.I. with registered office in Rome, Via Magenta no. 5, for the fulfilment of all technical and operational requirements strictly connected to the exercise of the contractual rights envisaged by the Parking Regulations/General Conditions of Contract that govern the parking of motor vehicles and/or motorbikes in the car parks and/or parking meter areas managed and/or administered by us, in our own name and/or on behalf of third parties.

APCOA may also communicate, for the pursuit of the above-mentioned purposes, certain personal data to third parties who provide a service to the Data Controller, for example for the provision of technological services including, in particular, the e-mail service and cloud infrastructure, the provision of the APCOA Flow mobile application, for the mailing and dispatch of reminders, for substitute storage services, for the issue of invoices on behalf of the Data Controller for the provision of management software and maintenance of CCTV systems, or in any case in connection with the fulfilment of all technical and operational requirements strictly related to the exercise of the contractual rights provided for by the Parking Regulations/General Terms and Conditions of Contract governing the parking of motor vehicles and/or motorbikes in the car parks and/or parking meter areas managed and/or administered by us, in our own name and/or on behalf of third parties.

These parties process personal data as data controllers within the meaning of Article 28 of the GDPR.

Further information on the data processors can be requested from the Controller at any time by writing toprivacy@apcoa.it

Personal data will not be disclosed.

The cases in which the data will be subject to dissemination are indicated in the individual data sheets in Section 2 of this notice.

Personal data is mainly processed within the European Union.

We use Microsoft Office365 services for email and cloud use or for using the Microsoft Teams application for video conferencing and meetings.

Microsoft has stated that the data centres used are located within the territory of the European Union. Where there are transfers of personal data, Microsoft is obliged to protect the data on the basis of the signed Standard Contractual Clauses.

Service providers based outside the European Union will be appointed as data controllers and the transfer of your personal data to such entities, limited to the performance of specific processing activities, will be regulated in accordance with Chapter V of the GDPR. In particular, where an adequacy decision pursuant to Article 45 GDPR is lacking, adequate safeguards pursuant to Article 46 GDPR will be used.

The data subject may obtain confirmation that personal data concerning him or her is being processed by obtaining more information about the processing and a copy of the personal data.

It may rectify inaccurate data or supplement them.

In the cases provided for by law, he may request that the data be forgotten and/or deleted.

The data subject may request that processing be restricted by opposing its deletion insofar as it is necessary for the exercise or defence of a right in court or in other cases provided for by law.

The data subject has the right to receive the personal data provided in a commonly used structured format when they are processed by automated means on the basis of consent or a contract.

For particular reasons, you may object to processing based on legitimate interest or in other cases provided for by law.

You may lodge a complaint with the Garante per la Protezione dei dati personali [Italian Data Protection Authority].

More information:https://bit.ly/2w1mcjS

You can ask for more information or exercise your rights using the following contact form or by sending an email to: privacy@apcoa.it

Click here to request the exercise of your privacy rights.

Single privacy policy on the processing of personal data - Parking meter areas

Single privacy policy on the processing of personal data

List of external managers

Video surveillance policy - Parking Orio al Serio - Bergamo

Information on video surveillance - other car parks

Privacy policy for debt collection

Information with consent for processing of sensitive data APCOA

APCOA FLOW - Questionnaire information

APCOA Whistleblowing Notice

License Plate Detection Privacy Policy

Privacy Policy ANPR Number Plate Recognition Reserved Lanes Ospedal Grande

APCOA Italia Spa disclosure for Sesto San Giovanni

Information on Parking Meter Areas Parking Taverna - Piacenza

Candidate Information

E-commerce policy