PRIVACY POLICY

PRIVACY POLICY

This page describes how the website www.aurigaspa.com is managed with regard to the processing of the personal data of users who consult it. Personal data provided by users are processed with the utmost confidentiality and used solely to execute submitted requests, in compliance with the specific information notices provided pursuant to Art. 13 of Italian Legislative Decree 196/2003 ("Privacy Code") and Art. 13 of Regulation (EU) 2016/679 ("GDPR").

1. DATA CONTROLLER

The Data Controller is Auriga S.p.A., with registered office in Altamura (BA) at Via Selva n. 101, operational headquarters in Bari at Via Don Luigi Guanella n. 17, and VAT number 05566820725. Requests regarding the exercise of data subject rights can be sent to the following email address: compliance@aurigaspa.com.

2. PURPOSES OF PROCESSING

Personal data collected through the Site are processed by Auriga S.p.A. for the following purposes:

  • Managing requests for contact, information, and support submitted by the user via the dedicated forms;
  • Marketing and commercial communication activities, through the dispatch of promotional and informational material (e.g., subscription to the Newsletter);
  • Notifying and inviting users to industry events, including follow-up communications for sharing editorial or technical content;
  • Managing, analyzing, and optimizing marketing activities, including statistical analysis and technical audits of the website (e.g., via Matomo and GA4);
  • Developing the company's core business, optimizing the performance of services offered, and implementing new applications within the product portfolio;
  • Conducting market surveys and customer satisfaction research;
  • Fulfilling legal obligations concerning the Whistleblowing policy adopted in compliance with Italian Legislative Decree No. 24 of March 10, 2023;
  • Statistical user profiling related to browsing preferences, conditional upon consent granted via the cookie banner.

3. LEGAL BASIS FOR PROCESSING

Auriga S.p.A. processes personal data based on the following lawfulness conditions (Art. 6 GDPR):

  • Consent of the Data Subject (Art. 6, par. 1, lit. a, GDPR): For direct marketing activities, newsletter delivery, event registration, and tracking via profiling or non-anonymized statistical cookies. Consent can be freely withdrawn at any time by writing to compliance@aurigaspa.com or via the cookie widget.
  • Performance of a contract or pre-contractual measures (Art. 6, par. 1, lit. b, GDPR): For managing contact/support forms and evaluating professional profiles in the "Careers" section.
  • Compliance with a legal obligation (Art. 6, par. 1, lit. c, GDPR): For handling reports under Whistleblowing regulations and for general fiscal or statutory obligations.
  • Legitimate interest of the Controller (Art. 6, par. 1, lit. f, GDPR): To ensure the IT security of the website, prevent fraud, and guarantee the optimized, technically error-free display of web pages (data collection within server log files).

4. TYPES OF DATA PROCESSED

Data may be collected automatically during navigation or voluntarily provided by the user.

A. Browsing Data (Server Log Files)

The computer systems automatically collect certain technical information, the transmission of which is implicit in the use of Internet communication protocols: IP address, device and browser parameters, internet service provider (ISP) name, date and time of visit, and time spent on individual pages.

B. Data Provided Voluntarily by the User
  • Newsletter Subscription: Email address.
  • Contact Form: First name, last name, email address, and any personal data included within the body of the message.
  • Careers Section (Job Applications): First name, last name, city, address, primary phone number, date of birth, nationality, residence, email address, and all personal and professional data contained within the uploaded Curriculum Vitae.

5. DATA RETENTION PERIOD

Data are retained only for the time strictly necessary to achieve the purposes for which they were collected, in accordance with the principle of data minimization:

  • Browsing data and log files: Retained for a maximum period of 30 days, unless required for the investigation of cybercrimes by the Judicial Authority.
  • Contact and support requests: Retained for the time necessary to process the request and for a maximum of 12 months from the closure of the inquiry.
  • Curricula Vitae (Careers Section): Retained within corporate systems for a maximum period of 24 months from the date of receipt, to allow for potential future selection processes.
  • Marketing and Newsletters: Retained until the user requests unsubscription (opt-out) or withdraws consent.
  • Whistleblowing Reports: Retained for a maximum duration of 5 (five) years from the date of communication of the final outcome of the procedure, in compliance with applicable law.

6. DISCLOSURE AND SCOPE OF DATA COMMUNICATION

Personal data will not be disseminated to unspecified parties under any circumstances. They may, however, be communicated—solely for the purposes specified in Section 2—to employees and collaborators of Auriga S.p.A. authorized to process data, to subsidiary or affiliate companies belonging to the Group, or to third-party providers of technical and technological services (e.g., hosting providers, marketing automation platforms like Brevo) formally appointed as External Data Processors pursuant to Art. 28 of the GDPR. Personal data will not be transferred to third parties for their own promotional purposes without the user's explicit consent.

7. DATA SECURITY

The Data Controller has adopted appropriate technical and organizational measures, consistent with the provisions of Art. 32 of the GDPR, to guarantee a security level appropriate to the risk, protecting data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access.

8. RIGHTS OF THE DATA SUBJECT

In accordance with Articles 15-22 of the GDPR, users may exercise the right to:

  1. Obtain confirmation as to whether or not personal data concerning them are being processed, and access such data (Art. 15);
  2. Request the rectification or integration of inaccurate data (Art. 16);
  3. Request the erasure of data (Right to be forgotten, Art. 17);
  4. Request the restriction of processing under specific conditions (Art. 18);
  5. Request data portability in a structured, commonly used, and machine-readable format (Art. 20);
  6. Object at any time to processing for direct marketing or profiling purposes (Art. 21);
  7. Not be subject to decisions based solely on automated processing (Art. 22).

Requests must be sent via email to: compliance@aurigaspa.com. Data subjects also have the right to lodge a complaint with their competent national Data Protection Authority (such as the Italian Garante Privacy) if they believe that the processing violates current regulations.

9. CHANGES TO THIS PRIVACY POLICY

This Privacy Policy is subject to updates based on legislative amendments or the implementation of new functionalities on the Site. Users are invited to consult this page regularly to check the most recent version.

SUBSCRIBE TO THE NEWSLETTER

Join the Auriga community

Auriga Spa - Copyright © 2026 - All rights reserved | Legal Notice | Privacy Policy | Whistleblowing Policy | Social Media Policy
P.I. 05566820725 - Capital € 1.196.055 i.v. - R.E.A. 426675

TOP