Privacy policy
This website, www.investinitaly.gov.it, operates for entities intending to invest in Italy, as a channel of access to services for the purposes set forth in Art. 25 of Italian Decree-Law no. 50 of 17 May 2022, converted, with amendments, by Italian Law no. 91 of 15 July 2022, containing “Urgent measures concerning national energy policies, business productivity and investment attraction”, which establishes the one-stop shop for investment attraction.
Agenzia Nazionale per l’Attrazione degli Investimenti e lo Sviluppo d’Impresa S.p.A. - Invitalia (a subject in house of the Central State Administrations) and the Italian Ministry of Enterprise and Made in Italy (MIMIT), operate as autonomous data controllers in full compliance with Regulation (EU) 679/2016 and current regulations.
Users may review each other’s privacy policies and notices (Privacy Policy - Invitalia; MIMIT legal notes https://www.mimit.gov.en/en/note; MIMIT privacy policy https://www.mimit.gov.it/it/privacy-sito) released by the Data Controllers pursuant to Art. 13 of the aforementioned EU Regulation.
MIMIT notice pursuant to Art. 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016
As per EU Regulation 2016/679 and current regulations, this page describes how the personal data of users viewing this Invest in Italy website (www.investinitaly.gov.it) and expressing their wish to be contacted are processed. This information does not concern other sites, pages or online services that may be published on the website but refer to resources outside the domain.
Autonomous data controllers
Autonomous data controllers are:
- the Italian Ministry of Enterprises and Made in Italy (hereinafter referred to as MIMIT), with headquarters at Via Vittorio Veneto, 33 - 00187 Rome (Italy), VAT no. 80230390587;
- Agenzia nazionale per l’attrazione degli investimenti e lo sviluppo d’impresa S.p.A. (hereinafter “Invitalia”) represented by its legal representative pro tempore, with registered office at Via Calabria, 46 - 00187 Rome (Italy), tax ID 05678721001.
Purpose and legal basis of processing
The personal data indicated on this page are processed by MIMIT in the performance of its public interest tasks or related to the exercise of its public powers. The personal data provided are processed for the purposes set out in Art. 25 of Italian Decree-Law no. 50 of 17 May 2022, converted, with amendments, by Italian Law no. 91 of 15 July 2022, containing “Urgent measures concerning national energy policies, business productivity and investment attraction”, and for purposes strictly connected and necessary to the use of the site and the services requested or for purposes functional to the performance of research, analysis and statistics, the sending of informational material and updates on Ministry initiatives and programmes pursuant to Art. 6 section 1(e) of EU Regulation 679/2016.
Types of data processed
- Data communicated by the user
The personal data (such as name, surname, position held, e-mail, telephone) and company data required to send a request through the portal, as well as the optional, explicit and voluntary sending of messages to the addresses indicated on this site, private messages sent by users to institutional profiles/pages, and the completion and forwarding of formats on the site entail the acquisition of the sender’s data as well as any other personal data included in the communication.
These data are processed by the administration for the purpose of completing the work processes for the prescribed purposes, in compliance with the regulations in force.
Processing will be carried out using mainly computerised procedures suitable for guaranteeing their security and confidentiality. The data will be processed in accordance with the principles of lawfulness, purpose limitation and data minimisation pursuant to Art. 5 of the EU Regulation.
- Browsing data
The IT systems and software procedures for the functioning of this site gather certain personal data during normal operation, the transmission of which is implicit in use of Internet communication protocols.
This category of data includes IP addresses or domain names of computers and terminals users use, the addresses, in URI (Uniform Resource Identifier)/URL (Uniform Resource Locator) form, of resources requested, the time of the request, the method used to make the server request, the size of the file received in response, the numerical code indicating the status of the server’s response (successful, error, etc.) and other parameters regarding the user’s operating system and IT environment.
These data, required to use web services, are also processed to obtain statistical information on the use of services (most visited pages, number of visitors per time slot or per day, geographical areas of origin, etc.) and check the proper functioning of the services offered. The data could also be used to determine liability in the event of hypothetical cyber crimes against the site and/or other users. Except in this case, data on web contacts are not stored for longer than is strictly necessary for the use of the site or for the fulfilment of obligations in force for public security or required by the supervisory authorities.
Optional provision of data
Apart from what has been specified for browsing data, users are free to provide the personal data indicated in the registration forms for the site’s services, request information and send suggestions and reports to the site’s editorial staff or however indicated in telephone contacts with the MIMIT departments.
Failure to provide these data may result in the inability to obtain what has been requested.
For services provided by third parties, for which the site is only an exhibition space, MIMIT is neither the data controller nor responsible for the data collected.
Storage period
In order to ensure fair and transparent processing, data is stored for a period of time not exceeding that necessary for the purposes for which it was collected or subsequently processed in accordance with legal obligations.
Data Protection Officer
The contact details for MIMIT’s Data Protection Officer (DPO) can be found on the MIMIT institutional website: https://www.mimit.gov.it/it/privacy-sito.
The MIMIT DPO can be contacted at the following email addresses: protezionedati@pec.mise.gov.it and protezionedati@mise.gov.it.
Rights of data subjects
Data subjects have the right to obtain, in the cases provided for, access to their personal data, rectification or deletion thereof, restriction of the processing concerning them or to object to the same processing (Articles 15 et seq. of the Regulation).
The appropriate application may be submitted to:
- the MIMIT Data Protection Officer at the following addresses: protezionedati@pec.mise.gov.it, protezionedati@mise.gov.it, Via Vittorio Veneto, 33 - 00187 Rome (Italy).
Right to complain
Data subjects who consider that the processing of personal data relating to them is in breach of the provisions of the data protection regulations have the right to lodge a complaint with the Guarantor, as provided for in Art. 77 of Regulation (EU) 2016/679, or to take appropriate legal action (Art. 79 of the aforementioned Regulation). Further information on your personal data protection rights can be found on the Guarantor’s website at www.garanteprivacy.it.
Updates
This notice may be updated to comply with national and European regulations on the processing of personal data and/or to adapt to the adoption of new internal systems or procedures, or for any other reason that may be appropriate and/or necessary.
This Privacy Policy may therefore be amended at any time without prior notice. Users are therefore asked to periodically consult this page of the website.
Cookie policy
Pursuant to the provisions of the Guarantor’s Order no. 299 dated 8 May 2014 “Simplified Arrangements to Provide Information and Obtain Consent Regarding Cookies”, we provide some information on the cookies used on the site.
Cookies are small text strings that sites a user visits send to the user’s terminal (usually to their browser), where they are stored and then retransmitted to the same sites the next time the same user visits.
In the course of browsing a site, the user may also receive cookies on their terminal that are sent by different sites or web servers (“third parties”), on which certain elements (for instance, images, maps, sounds, specific links to pages on other domains) may reside on the site that the same person is visiting.
Technical cookies are used for the sole purpose of “carrying out the transmission of a communication over an electronic communications network or to the extent strictly necessary for the provider of an information society service explicitly requested by the subscriber or user to provide such service” (see Art. 122(1) of the Code). They are not used for any further purposes and are normally installed directly by the owner or operator of the website.
Technical cookies can be divided into:
- navigation or session cookies, which ensure normal browsing and use of the website (for example, enabling a purchase to be made or authentication to access restricted areas);
- analytical cookies, similar to technical cookies when used directly by the site operator to collect information, in aggregate form, on the number of users and how they visit the site;
- functionality cookies, which allow the user to navigate according to a set of selected criteria (e.g. language, products selected for purchase) to improve the service rendered to the user.
The user’s prior consent is not required for the installation of such cookies, while the obligation to provide information pursuant to Art. 13 of the Code remains in place, which the site operator may provide in the manner it deems most appropriate.
Cookies improve the services offered, for instance:
- they allow a service to recognise your device to avoid entering the same information several times during an activity;
- they calculate how many users are using the services to facilitate their use and ensure the necessary capacity for fast surfing.
Users who do not wish to receive cookies are required to change their browser settings. Certain services and pages may not function properly.
Users who wish to delete any cookie files already on their computer can read the instructions for their browser by clicking on “Help” in the relevant menu.