The purpose of this Policy is to describe how we process the personal data of our website (http://www.aeroportodinapoli.it/ ) users.
We recommend that you read this privacy policy carefully before providing your data.
This communication is provided in accordance with the European Union legislation on the processing of personal data, the Italian Personal Data Protection Code (art. 13 of Legislative Decree no. 196/2003) and the European legislation set out in EU Regulation n 2016/679 (GDPR), art. 13.
The data controller is GESAC S.P.A., with registered office at Capodichino Airport - 80144 Naples (hereinafter referred to as "Data Controller").
An updated list of data processors is available upon request sent to privacy@gesac.it
This Privacy Policy only applies to this website and it is not intended to be applicable to any linked, non-GESAC SpA website.
The purpose of this website is to
• provide information about the activities carried out by GESAC S.p.A. for Naples and Salerno Airports;
• provide an interaction with users in relation to airport and related services;
For specific sections, such as "Newsletter", "FlyForYou", "Recruitment" and "Complaints and Suggestions", you will be asked to provide your personal data by filling out a data collection form.
Before providing your data, we encourage you to read the privacy notice that contains information on how your data are used, as well as other statutory information.
In limited cases where it is necessary to collect personal data for other purposes, this will be clearly stated in the privacy notice, in order to provide transparency and information to the user.
These notices contain information on how and to what extent your data is used for each service. You can freely choose whether you want to provide your consent (if necessary) and authorise the collection of your data and its subsequent use.
The IT system and the software used to operate this website automatically collect certain personal data, whose communication is inherent in the use of Internet communication protocols.
These data include your IP address, browser type, operating system, domain name, pages that you visit before and after using the Site, the website pages you view and the length of time spent on a single page, the date and time of your visit, the way in which you navigate the Site, and other data relating to your operating system and IT environment.
These technical/IT data are collected and used exclusively in an aggregate and non-identifiable way; they may be used for fact-finding purposes in case of cyber attacks against the website or upon request by public authorities.
For information about cookies used by this website check our Cookie policy .
Our website may provide links to third-party websites. GESAC SpA is not responsible for the privacy practices of such websites and for the management of authentication credentials provided by third parties.
We retain your personal data for no longer than is necessary for the objectives for which they were collected.
However, you have the right to ask us to delete your personal data when legitimate grounds apply.
Unless otherwise specified, you can object to our processing your personal data. However, please note that this may impact on our ability to provide our services.
Your data are processed at our registered office, which is responsible for managing the server.
Personal data are handled only by dedicated technical staff, or by staff in charge of occasional maintenance operations.
The personal data collected through this website are only accessed by persons acting on behalf of the Data Controller, specifically designated as data managers, coordinators or appointees and responsible for managing the requested service. These data are not disclosed.
For more information about data processing staff, email us to privacy@gesac.it
Given the international nature of GESAC SpA's activities, data may be sent abroad and processed, for the sole purposes mentioned above, by suppliers of the Data Controller located in the territory of the European Union and in third countries.
In such cases, the transfer of data abroad is subject to specific data protection safeguards through the adoption of contractual clauses on data protection approved by the European Commission, or similar safeguards.
Pursuant to Articles 15 et seq. of the GDPR you have a right to ask for and obtain from the company/organisation confirmation as to whether or not it holds any personal data which concerns you.
If they do have your personal data then you have the right to access that data, to verify its accuracy or to request that it be supplemented, updated or corrected.
You also have the right to ask us to delete your personal data, to anonymise it, or to stop processing your data, where we may have processed them unlawfully, or, when legitimate grounds apply, you can object to our processing your data.
To request any of the above, please send us an email to: privacy@gesac.it
Any new sector-specific regulations, or the regular review and update of end-user services, may lead us to change the way we process personal data. Accordingly, our policy may change over time, and this is why we encourage you to check this page periodically.
