In compliance with the obligations deriving from national legislation (Legislative Decree 30 June 2003 No. 196, Code for the protection of personal data) and Community, (European Regulation for the protection of personal data No. 679/2016, GDPR) and subsequent changes, this site respects and protects the privacy of visitors and users, putting in place every effort possible and proportionate to not infringe the rights of users. This privacy policy applies only to the online activities of this site and is valid for visitors / users of the site. It does not apply to information collected through channels other than this website. The purpose of the privacy statement is to provide maximum transparency regarding the information that the site collects and how it is used.

Data controller
The data controller is the administrator of the site, banchero costa finanziaria. S.p.A. con sede in Via Pammatone 2, 16121 Genova, p.iva 02276800105, can be contacted via email at info@bancosta.it.

Responsible for processing
The data controller is identified as the Data Controller, together with the web hosting appointed co-responsible for data processing, limited to the services provided of which it is supplier, processing the data on behalf of the owner. The web hosting co-responsible for data processing is located in the European Economic Area and acts in accordance with European standards.
Technical Information and Location of Servers Provided:
The servers are located in the Italian territory data center specifically: Datacenter Equinix, Via Savona, Milano – They are equipped with firewalls. The servers used produce daily backups with a 5-day history.

Legal basis of the processing
This site processes data based on consent. With the use or consultation of this site visitors and users explicitly approve this privacy statement and consent to the processing of their personal data in relation to the methods and purposes described below, including any disclosure to third parties if necessary for the provision of a service. The provision of data and therefore the consent to the collection and processing of data is optional, the User can refuse consent, and may revoke at any time a consent already provided by email privacy@bcaccount.it. However, denying consent may make it impossible to provide certain services and the browsing experience on the site may be compromised. Starting from 25 May 2018 (date of entry into force of the GDPR), this site will process some of the data based on the legitimate interests of the data controller.

Data collected and purposes
Like all websites, this site also makes use of log files in which information collected in an automated manner is kept during user visits. The information collected could be the following:

  • internet protocol (IP) address;
  • type of browser and device parameters used to connect to the site;
  • name of the Internet service provider (ISP);
  • date and time of visit;
  • web page of origin of the visitor (referral) and exit;
  • possibly the number of clicks.

The above information is processed in an automated form and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons (from 25 May 2018 such information will be treated according to the legitimate interests of the owner).

For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may possibly also include personal data such as IP address, which could be used, in accordance with applicable laws, in order to block attempts at damage to the site itself or to cause damage to other users, or in any case harmful activities or constituting a crime.

Such data are never used for the identification or profiling of the user, but only for the purposes of protection of the site and its users (from 25 May 2018 such information will be treated according to the legitimate interests of the owner). If the site allows the inclusion of comments, or in the case of specific services requested by the user, the site automatically detects and records some identification data of the user, including the email address. These data are voluntarily provided by the user at the time of requesting service delivery.

By inserting a comment or other information, the user expressly accepts the privacy policy, and in particular agrees that the contents included are freely disseminated to third parties. The data received will be used exclusively for the provision of the requested service and only for the time needed to provide the service.

The information that users of the site deem to make public through the services and tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any liability regarding any violation of laws. It is up to the user to verify that they have permission to enter personal data of third parties or contents protected by national and international standards.

The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the activities specified. In any case, the data collected from the site will never be provided to third parties, for any reason, unless it is a legitimate request by the judicial authority and only in the cases provided by law. The data used for security purposes (block attempts to damage the site) are kept for 24 months.

STATEMENT PURSUANT TO ART 13 OF THE European Regulation 679/2016 (hereinafter “GDPR”)
Job Applications / Career

Pursuant to Art. 13 of GDPR and in relation to your data, provided by you, by filling Career section of the website www.bancosta.com, we hereby inform you of the following.

1. The controller of the personal data directly provided by you is Banchero Costa & c. S.p.A. Should you need to contact us, you may reach our Chief Administrative Officer – email: privacy@bcaccount.it.

2. Your personal data will be used for recruiting and staff selection procedure by our company.

3. Your personal data may be processed only after your expressed consent which may be withdrawn by you at any time by giving notice to the following e-mail address: privacy@bcaccount.it. The withdrawal of consent shall not affect the lawfulness of processing before the withdrawal.

4. Your personal data, for the above mentioned purposes, may be communicated to third companies which our company may outsource recruting and staff selection activities or to other Banchero Costa group companies.

5. There is no legal and/or contractual obligation that forces you to provide your personal data to us. By not providing such data, in full or partly, may result in our company being unable to assess and envaluate your application.

6. Your personal data will be stored for the necessary time to accomplish the above specified purposes and, in any case, no longer than 3 years after the application.

7. You have the right:
– to ask the processing controller for access to personal data for (Art. 15 GDPR), rectification (Art. 16 GDPR) and erasure (Art. 17 GDPR) or restriction of processing (Art. 18 GDPR);
– to object to processing (Art. 21 GDPR), in addition to the right of data portability (Art. 20 GDPR);
– to lodge a complaint with the Garante della Privacy [Italian Data Protection Authority].


STATEMENT PURSUANT TO ART 13 OF THE European Regulation 679/2016 (hereinafter “GDPR”)

Newsletter

Pursuant to Art. 13 of GDPR and in relation to your data, provided by you, we hereby inform you of the following.

1. The controller of the personal data directly provided by you is Banchero Costa & C. S.p.A. Should you need to contact us, please write to the Chief Administrative Officer – email: privacy@bcaccount.it.

2. Your personal data will be processed to send information, also via newsletters, regarding the activities, services and projects, of the companies belonging to the Group Banchero Costa.

3. Your personal data may be processed only after your expressed consent which may be withdrawn by at any time by giving notice to the following e-mail address: privacy@bcaccount.it. The withdrawal of consent shall not affect the lawfulness of processing before the withdrawal.

4. There is no legal and/or contractual obligation that forces you to provide your personal data to us. By not providing such data, in full or partly, may result in our company being unable to provide information referred to point 2.

5. Your personal data will be stored until cancellation is requested by you.

6. You have the right:
– to ask the processing controller for access to personal data for (Art. 15 GDPR), rectification (Art. 16 GDPR) and erasure (Art. 17 GDPR) or restriction of processing (Art. 18 GDPR);
– to object to processing (Art. 21 GDPR), in addition to the right of data portability (Art. 20 GDPR);
– to lodge a complaint with the Garante della Privacy [Italian Data Protection Authority].

COOKIE POLICY

This website makes use of necessary and monitoring cookies. You can deny or consent to use all or some cookies.

What are cookies
Cookies are small text files that can be used by websites to make the experience more efficient for the user. The law states that we can store cookies on your device if they are strictly necessary for the operation of this site.

For all other types of cookies we need your permission. This site uses different types of cookies. Some cookies are placed by third-party services that appear on our pages. At any time you can change or withdraw your consent from the Cookie Statement on our website. Find out more about who we are, how you can contact us and how we process personal data in this Privacy Statement.

Your consent applies to the following websites: www.bancosta.com
For the Cookie declaration and for change your consent or revocation you can use the following links:Revoca il consenso / Revoke consent

Disabling cookies
Cookies are connected to the browser used and CAN BE DISABLED DIRECTLY FROM THE BROWSER, thus refusing / withdrawing consent to the use of cookies. It should be noted that disabling cookies may prevent the correct use of some features of the site itself. Instructions for disabling cookies can be found on the following web pages:

Mozilla Firefox – Microsoft Internet Explorer – Microsoft Edge – Google Chrome – Opera – Apple Safari

Third-party cookies
Third party cookies are used to provide additional services and features to visitors and to improve the use of the site, such as social network cookies or google analytics.

In particular, this site uses cookies of the following third parties:

Google Analytics:
A Google analysis tool that through the use of cookies (performance cookies), collects anonymous browsing data (IP truncated to the last octet) and exclusively aggregates for the purpose of examining the use of the site by users, compiling reports on activities on the site and providing other information, including the number of visitors and pages visited. Google may also transfer this information to third parties where required to do so by law or where such third parties process the information on Google’s behalf. Google will not associate the IP address with any other data held by Google. Data transmitted to Google are stored on Google’s servers in the United States. On the basis of a specific agreement with Google, which is designated as the data controller, the latter undertakes to process the data according to the requests of the Data Controller (see at the end of the information), given through the software settings. Based on these settings, the advertising and data sharing options are disabled.
Further information on Google Analytics cookies can be found on the Google Analytics Cookie Usage on Websites page.
The user can selectively disable the collection of data by Google Analytics by installing the appropriate component provided by Google on their browser (opt out).

Youtube
A platform owned by Google, for sharing videos, which uses cookies to collect information from users and navigation devices. The videos on the site do not convey cookies when the page is accessed, since the “advanced privacy (no cookie)” option has been set, according to which YouTube does not store visitor information unless they voluntarily reproduce the video. For more information on the use of data and their processing by Google, it is recommended to view the information on the page provided by Google, and on the page on how to use the data by Google when using sites or apps of partners.

Transfers of data to non-EU countries
This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized on the basis of specific decisions of the European Union and the Guarantor for the protection of personal data, in particular Decision 1250/2016 (Privacy Shield – here the information page of the Italian Data Protection Authority), for which no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.

Security measures
This site processes the data of users in a lawful and correct manner, adopting the appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of data. Processing is carried out using IT and / or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the owner, in some cases, may have access to the data categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external subjects (as suppliers of third-party technical services, postal couriers, hosting providers, IT companies, communication agencies).

User rights
Pursuant to European Regulation 679/2016 (GDPR) and national regulations, the User can, in accordance with the procedures and within the limits established by current legislation, exercise the following rights:
1. request confirmation of the existence of personal data concerning him / her (right of access);
2. know its origin;
3. receive intelligible communication;
4. have information about the logic, methods and purposes of the processing;
5. request the updating, correction, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
6. in cases of consent-based processing, receive only the cost of any support, its data provided to the holder, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
7. the right to lodge a complaint with the Supervisory Authority (Privacy Guarantor – link to the Guarantor page);
8. as well as, more generally, exercise all the rights that are recognized by the current provisions of the law.

Requests should be addressed to the Data Controller. In the event that the data are processed on the basis of legitimate interests, the rights of data subjects are guaranteed (with the exception of the right to portability that is not provided for by the regulations), in particular the right to oppose the treatment that can be exercised by sending a request to the data controller.