Privacy Policy

Processing the personal data of website and app users

When you use our services, you agree that our company may collect some of your personal information. The purpose of this page is to illustrate who we are, what information we collect, how we handle it, to whom it may be disclosed, where it may be transferred and what your rights are.

The following information is provided pursuant to art. 13 of EU Regulation 679/2016 "European Regulation on the Protection of Personal Data - GDPR" to all users who interact with web services accessible electronically from the address of the official website of Prometeia Group and the Group's apps and regarding the activites of all entities of the Group.

The information is provided exclusively for the site and apps in question and not for other websites that the user may consciously use via links.

Prometeia is committed to protecting the Personal Data entrusted to it. Therefore, their management and security are guaranteed with the utmost care, in accordance with the requirements of privacy law (EU Regulation 2016/679).


Data processing holder

Your data will be processed, as data processing holder, by Prometeia S.p.A. - Piazza Trento e Trieste, 3 - 40137  Bologna - Tel.+39 051 6480911 - Email:

Prometeia has also appointed its own Personal Data Protection Manager, who can be contacted at the address of the Data Controller or through the "Sites and contacts" section on the website or by sending an e-mail to or


Place of data processing

Processing operations connected to the web services of this website and the Group's apps are carried out at the premises of the Prometeia and are carried out only by technical staff in charge of processing, or by anyone in charge of occasional maintenance operations.

No data deriving from the web services is communicated or disclosed.

The personal data provided by users who ask for further information materials is used only to carry out the service or performance requested and is communicated to third parties only when necessary for this purpose.


Persons in charge of processing and communication of your data to third parties

Prometeia designated data processors:

a) for the management of relations with customers and, more generally, with third parties, also for accounting and administrative purposes;

b) for the management of communications, also of a commercial and promotional nature and for the provision of information, promotional and profiling services;

c) for the management, including IT, of its archives;

d) the subjects, possibly sub-delegates of the aforesaid who, from time to time, will carry out the activities indicated in letters a), b) and c) above;

e) the subjects or categories of subjects who process the data of the site


Types of data processed

Navigation data

The computer systems and software procedures used to operate this website and apps acquire, during their normal operation, personal data whose disclosure is implicit to the use of Internet communication protocols. This information is not collected in order to be associated with identified interested parties but, due to its nature, it could allow users to be identified through processing and association with the data owned by third parties. This data category includes IP addresses or the domain names of the computers used by those who visit the website, the URI (Uniform Resource Identifier) addresses of requested resources, the time of request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code that indicates the response status given by the server (successful, error, etc.) and other parameters related to the operating system and the computing environment of the user. This data is used only to obtain anonymous statistics on the use of the website and to check its correct operation. The data could be used to check responsibility in the event of hypothetical cyber crimes against the website and the apps: the data is cancelled after 12 months.


Data voluntarily provided by users

The optional, explicit and voluntary submission of e-mails to the addresses indicated on this website and the Group's apps entails the subsequent acquisition of the address of the sender, which is necessary to respond to requests, as well as any other personal data included in e-mails.

Specific summarised statements will be progressively added or displayed on the website pages dedicated to special services on request.


Candidates' CVs data processing

Regarding the specific processing of the data included in the CVs of candidates, please refer to the relative privacy information notice.


Retention time of processed data

The data acquired during navigation will be stored for 12 months, while those provided by the user regarding the transmission of communications by e-mail, will be deleted immediately after the cessation of activities voluntarily requested, unless an explicit request by the interested part.



No personal data of users is acquired intentionally by the website. We do not use persistent cookies of any kind, namely, systems for tracing users. The use of c.d. session cookies (which are not memorised persistently on the user’s computer and disappear when a browser is closed) is strictly limited to transmitting session identifiers that consist of random numbers generated by the server, which are necessary for safe and efficient navigation on the website.

The c.d. session cookies used on this website avoid the use of other IT tools that may compromise the privacy of navigation for users and do not allow acquisition of personal data that identify the user.


Optional submission of data

Aside from the specifications about  navigation data, users are free to provide the personal data included in the company’s request forms. The absence of this data may make it impossible to fulfil the requests made.


Processing procedures

Personal data is processed with automated tools for the time that is strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent the loss of data, illicit or incorrect use, and unauthorised access.


Rights of data subjects

The data subjects to whom the personal data refers have the right, at any time, to obtain confirmation of its existence and of its content and origin, to check its accuracy or ask it to be integrated, updated or amended (Article 7 of Legislative Decree no. 196/2003). For the purposes of this article, data subjects have the right to request the deletion, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose, in any case and for legitimate reasons, to its processing.

Requests are to be submitted to Prometeia s.p.a. avente sede in Piazza trento e Trieste 3 – 40137 Bologna (BO) - or