Privacy policy

Aware of the trust placed in us when providing your data, by way of this privacy policy (hereinafter the “Privacy Policy”), for the purposes and pursuant to Article 13 of EU Regulation 679/2016 (hereinafter, “GDPR”), Acea S.p.A. intends to provide you with clear and transparent information regarding the website management procedures insofar as concerns the processing of your personal data.

This information notice is issued only for the website and related subdomains, if any, and does not cover any other websites that may be consulted by the user via appropriate links. The website is owned by Acea S.p.A. and managed by Message S.p.A. Navigation and use of the website imply acknowledgement and acceptance of the Legal Notes and this Privacy Policy, therefore, users/visitors are invited to carefully read this Privacy Policy before forwarding any type of personal information and/or filling out any electronic forms present on the website. Acea S.p.A. reserves the right, at any time, to amend the terms of the Privacy Policy, in the event of website revisions, and these amendments will enter into effect to coincide with the date of said revisions. Explicit information on the processing of data concerning, for example, registration procedures, access, other service requests or participation in promotional activities or surveys, may be included in specific information notices located in subsections of the portal.

Processing of the data collected will be carried out in full observance of principles of lawfulness, correctness, transparency, storage limitation, integrity and confidentiality, within the scope of expressly determined purposes, only within the limits strictly necessary for the pursuance thereof. If you choose not to authorize the said processing, please refrain from using the services provided by the platform.



The services offered via this website are exclusively designed for use by an adult public. If it should come to our attention that the personal data of a minor have been collected without the required consent of a parent or legal guardian, we shall take steps in real time to destroy and delete all such data.


Data Controller, data processors and authorised persons

The Data Controller is Acea S.p.A. (hereinafter the “Data Controller”), with registered office in Piazzale Ostiense 2, 00154 Rome, tel. +39 06 57 991, PEC (certified e-mail): In order to provide the services offered, the Data Controller may avail itself of specifically designated third parties, who will act on behalf as Data Processor in consideration of their specific appointment. Your data may also be disclosed to parties who will operate in the capacity of persons authorised for processing purposes, who will follow specific instructions.

As for the Facebook page, Acea S.p.A., as page administrator, acts as co-Data Controller of the statistical data together with Facebook Ireland Limited (“Facebook Ireland”). The shared proprietorship agreement that Acea S.p.A. has signed can be found at the following link


Type of data processed, purposed and legal basis

For Privacy Policy purposes, personal data shall be construed as any information that might enable your identification. More specifically, through website navigation the following may be gathered:

- Navigation data: the website’s computer systems and software procedures, in the normal course of operations, acquire certain personal data which is then transmitted through the use of Internet communication protocols. In view of its nature, the information in question could, via association and elaboration with data held by third parties, allow identification of users and visitors (for example, IP address, domain names of computers used by the users/visitors connecting to the website, etc.); the data is gathered automatically and exclusively for the purpose of enabling website navigation and, in a totally anonymous form, may also be used for statistical surveys.

Acea S.p.A. uses cookies. Please read the Cookie Policy.


Processing procedure

Processing of the data is performed via automated means (for example, using electronic procedures and aids) and/or manually (for example, paper-based) for the time strictly necessary to achieve the purposes for which the data was collected in order to enable your navigation experience and allow you to use the requested services and in any case in compliance with applicable regulatory provisions in force. Acea S.p.A. implements  technical and organizational measures that ensure a level of data security appropriate for the level of risk presented by processing personal data, in accordance with the principles of art. 32 of the GDPR, in order to prevent loss, unlawful, incorrect and unauthorized use of data.


Nature of data provided

The navigation data will be collected automatically.