Privacy Policy and Cookies

This document governs the processing of personal data of users of the site, by the Company Reale Mutua di Assicurazioni (hereinafter the “Company” or “Owner”) pursuant to Articles 13 and 14 of Regulation (EU) 679/2016 - General Data Protection Regulation (hereinafter also “Regulation”), as well as the use of cookies. The interested party must also inform about the content of this document those subjects on whose behalf he or she may request the provision of services available on the site.

The privacy notice is provided only for this site and not for other websites that may be consulted by the user via links. The conditions set out below are subject to change over time and, consequently, may be updated at any time.


The computer systems and software procedures that regulate the operation of the site in the course of their normal activity acquire some personal data whose transmission occurs automatically in web communications. This information is not collected for identified interested parties, however, due to its nature, through processing and cross-referencing with third party data, it may allow users to be identified. This category of data includes IP addresses, the names that may characterise the computers of users who connect to the site, URI (Uniform Resource Identifier) addresses, the time and duration of the visit, the method of connection to the server, the size of the file obtained in feedback from the server, the numerical code qualifying such feedback, and other parameters of the user's operating and computer system. This data is used exclusively for statistical purposes and without name identification, regarding the use of the site and to verify its regular operation and is deleted immediately after processing. The data could be used to determine possible responsibilities in the event of computer crimes against the site. 


Cookies are small text strings that the websites you visit send to your device (usually to your browser), where they are stored and then transmitted to the same websites the next time you visit. The cookie is then re-read and recognised by the website that sent it each time the user makes a further connection, allowing actions and preferences (such as login details, language or font size) to be retained so that they do not have to be indicated again on the successive visit. 

Cookies can be stored permanently or have a variable duration (so-called persistent cookies), but they can also disappear when the browser is closed or have a limited duration (so-called session cookies). Cookies may be installed by the owner of the Site (so-called  “first party cookies”) or may be installed by other websites (so-called  “third party cookies”). In addition to cookies, the website also makes use of pixel tags, small images that are embedded in a website in order to monitor users' activities on the site and their interaction with certain content.

Cookies and pixel tags are often interlinked: acceptance of pixel tags may trigger one or more cookies.

2.1 Use of pixel tags

Pixel tags are capable of acquiring various information, such as, for example, the time a web page was viewed, the language set and the type of browser that obtained the pixel tag. 

Pixel tags may also collect information about users' visits and activities on the website in order to improve the user experience. They may also be used to personalise advertisements that appear on other websites.

2.2 Types of cookies used

Based on their type of use, the cookies used by the website are divided into:

TECHNICAL browsing cookies: cookies aimed at linking the pages visited to the same work session, as well as being necessary to allow specific functionalities that guarantee a normal browsing and use of the website (allowing, for example, authentication to access reserved areas). They are temporary and are deleted at the end of the duration period, they are not executable files, they do not perform any operation and they do not contain personal information, nor are they able to receive or extract it and transmit it to the web server that generates them.

TECHNICAL functionality cookies: cookies that allow the site to memorise the choices made by the user during navigation (for example, the language set or the products selected for purchase) in order to improve the service provided and the experience within the site. They are temporary and are deleted when the session expires, they are not executable files, they do not perform any operation, nor are they able to receive or extract it and transmit it to the web server that generates them, but they may contain personal information.

ANALYSIS cookies: statistical cookies designed to collect and anonymously analyse aggregate statistical information relating to the use of the site by users (allowing, for example, to know which pages are the most visited, or to calculate the total number of users accessing the site and the services offered). This information cannot be used for commercial purposes, but it allows the owner of the website to have a better knowledge of its users and to use this information to improve the functioning of the website itself. They are not executable files, they do not perform any operations and do not contain any personal information nor are they able to receive or extract it and transmit it to the web server that generates them.

These cookies are used by the website, but are managed by a third party (Google Analytics), which is not allowed to use the information collected for purposes other than those just specified.

PROFILING cookies: cookies used to track and improve the user's online browsing experience by creating profiles of the user's tastes, interests, habits, choices, etc.. These cookies, used by the website and sometimes managed by third parties (so-called third-party profiling cookies) who are not allowed to use the information collected for purposes other than those just specified, allow advertising messages to be sent to the user's terminal in line with the preferences already expressed by the user while browsing the site.

SOCIAL cookies, third-party cookies: cookies used to allow users to interact with social networks (Facebook, Twitter, ...) and especially to share, on these social networks, content from the sites.









PD_STATEFUL_<sessione esadecimale>


Browsing and functionality

First part

Of session

The owner of the website is not responsible for the content of third-party websites that may or may not set cookies.

2.3 Changing the cookie settings

If you do not wish to receive cookies, you can change the settings of your browser at any time in order to be informed in advance of a cookie being sent and to decide whether or not to accept it. You can also automatically reject all cookies (with the exception of “technical” cookies) by first activating the relevant option on your browser. The use of this latter automatic rejection setting may, however, prevent you from fully and easily consulting the site, since some of the site's operations may be partially or fully impaired.

Each browser has different procedures for handling cookies, below is a link to specific instructions for the most popular ones:
- Microsoft Internet Explorer
- Google Chrome
- Mozilla Firefox
- Apple Safari

For more comprehensive information on cookies identified as "third party", please consult the privacy policies of these parties:

For more information about cookies, how to view those set on your device and to manage or delete them, visit and


The Company will process your personal data, especially personal data, identification data, contact data and browsing data. These data may be provided directly by you and/or taken from your communications and/or acquired during navigation on our site.

The data will be processed by the Company for purposes strictly related to the execution of the services and functions provided within the site, especially:

- to manage and acknowledge your request for a booking of guided tours to visit the Reale Mutua History Museum and related activities;
- to acknowledge your requests and/or answer your questions should you contact us for information;
- for the Company’s internal management and control requirements and to carry out data analysis and processing for analysis and statistical purposes;
- to exercise and/or defend the Company's rights in court;
- to fulfil legal obligations.

With reference to the purposes a) and b), the legal basis warranting the processing is the performance of a service and/or the response to a request, activities for which explicit consent is not required under current legislation. Regarding purposes c) and d) the legal basis is represented by the legitimate interest of the Owner.

The provision of data is strictly related to the purposes described above; failure to provide such data will make it impossible for us to provide the services requested.


The data will be processed by our Company - the Data Controller - using methods and procedures, which also involve the use of electronic or automated means as well as the use of dedicated algorithms, necessary to provide you with the services you have requested. In our Company the data will be processed by employees and collaborators, within the scope of their respective functions and in accordance with the instructions received, always and only for the achievement of the specific purposes indicated in this information notice and in compliance with the provisions of the law in force. For some services, the Company may use third parties who will carry out activities of a technical, organisational and operational nature on behalf of and in accordance with the Company's instructions, such as, for example, IT, online and administrative service companies. These subjects will have the status of Data Processors.

The data will be stored for a period of time between 2 and 5 years, without prejudice to longer storage periods established by sector regulations, or as a result of balancing the legitimate interests of the Data Controller and the observance of the rights and freedoms of the data subject. In any case, on a periodical basis, the Company will take steps to verify the actual permanence of the interest of the subject whom the data refer to with respect to the purposes previously mentioned and, in its absence, to initiate the relative cancellation. If you exercise your right to cancel the data, and if the conditions are met, the Company will promptly process your request.


In exceptional cases, your personal data may be transferred to countries outside the European Economic Area (EEA), always within the scope of the purposes indicated in this privacy notice and in compliance with the international regulations and agreements in force. In this case, the transfer will take place on the basis of the assumptions provided for by current legislation, including the use of so called Binding Corporate Rules (BCR), the application of standard contractual clauses defined by the European Commission or following a prior assessment of the adequacy of the personal data protection system of the country importing the data.

6. RIGHTS OF THE INTERESTED PARTY (Articles 12-23 of the Regulation)

Pursuant to Articles 12-23 of the Regulation, if the legal requirements are met and are in accordance with the procedures laid down in the Regulation, you have the right to:

- know what data we hold about you, where they come from and why and how they are processed;
- request the updating, integration, rectification and deletion of your personal data;
- receive a copy of the data in a structured format (the so-called  “right to data portability”), request its blocking, restriction or object to its processing;
- apply to the Data Protection Authority, according to the procedures indicated on the website

In order to exercise your rights, as well as to obtain more detailed information about the persons or categories of persons to whom the data are communicated or who acquire a knowledge of them, please do not hesitate to contact


The data controller is Società Reale Mutua di Assicurazioni - Via Corte d'Appello, 11 - Turin.

If you have any questions concerning the processing of your personal data, you may contact the Data Protection Officer (DPO) directly at the following e-mail address: