Assirecre Consulting srl, Assirete srl, and Assigesco srl, in their capacity as Data Controllers, process the personal data of various stakeholders (including customers, employees, shareholders, suppliers, etc.) as part of their regular relationship management. Consent, as required by Legislative Decree 196/2003 and the European General Data Protection Regulation 2016/679 (GDPR), is obtained when necessary. Commercial processing only occurs when expressly authorized by the data subject.
Additionally, Assirete srl and Assigesco srl, acting as Data Processors, handle personal and sensitive data of policyholders/insured individuals from insurance companies (Assirete srl also includes its Clients’ Funds) in the context of managing insurance claims delegated to them. They receive their appointment as Data Processors from the Clients (the “Data Controllers”) and, when necessary, authorization to process the data from the data subjects, in accordance with Legislative Decree 196/2003 and the European General Data Protection Regulation 2016/679 (GDPR).
In all cases, the companies ensure that only strictly necessary data is processed, fully compliant with prevailing legislation, both in physical and electronic formats. Some data may be indispensable, and their absence could impede the management of ongoing relationships. These data are processed by our employees, serving as either Data Processors or Delegates. For certain services, we also engage outsourced partners in Italy who perform technical, organizational, and operational tasks on our behalf. Personal data is not disclosed unless specifically required by legal obligations.
The comprehensive list of internal and external data processors is regularly updated and can be obtained free of charge by submitting a request to the provided address.
Every data subject holds the right to exercise their access rights, which allow them to learn about the personal data we hold, its origin, and how it is used. They can also request updates, corrections, integrations, or deletions of their data, request data blocking, and object to its processing. Furthermore, they can seek additional information regarding the processing of their personal data by contacting the Data Controller as specified in Article 7 of Legislative Decree 196/2003.