Information on the processing of personal data for communication activities

Data Controller

IVASS, in its capacity as Data Controller, informs that the processing activities carried out as part of its functions of institutional communication and promotion of the image of the Institute - which include, among other things, the organization of institutional events such as the presentation of the Annual Report, conferences, workshops, seminars, meetings, thematic events, speeches - are carried out in accordance with European and national regulations on privacy and in compliance with the guidelines provided on the subject by the Authority for the protection of personal data.

Purposes of the processing

Data and information collected by IVASS will be processed exclusively to increase and disseminate knowledge of institutional activities and to make citizens better informed when faced with insurance choices.

Legal basis for the processing

Personal data are processed for the performance of a task related to the exercise of public authority, as established by Law No. 150/2000, which regulates the information and communication activities of public administrations. In specific cases, data are processed on the basis of the implicit or explicit consent of the data subject, who can always revoke it, without prejudice to the lawfulness of the processing carried out up to that point.
The legal basis for processing is also Legislative Decree No. 209 of 7 September 2005 (Private Insurance Code).

Arrangements for data processing

Data will be processed mainly by electronic and telematic means, with the use of appropriate security measures to ensure the confidentiality of personal data as well as to prevent undue access to the data by third parties or unauthorized personnel.
Such data will be processed only for the time strictly necessary to fulfil the purposes for which it was requested.

Recipients to whom the personal data may be disclosed

Data will be processed only by IVASS’ staff and collaborators or by firms expressly appointed as processors.

Rights of data subjects

Data subjects may exercise towards the Data Controller - IVASS - Via del Quirinale 21, 00187, Rome - ph. +39 06421331 - e-mail address: ufficiostampa@ivass.it- the right of access to the personal data, as well as the other rights recognized by law, including the right to rectification, to erasure and to render personal data anonymous.

Complaint

If the data subject considers that the processing of personal data relating to him or her infringes the law, he or she can lodge a complaint with the Authority for the protection of personal data.

IVASS data protection officer

IVASS data protection officer (DPO) can be reached at the following address: IVASS - Data Protection Officer, Via del Quirinale, 21, 00187, Rome – e-mail address: DPO.IVASS@ivass.it - certified electronic mail: ivass@pec.ivass.it