PRIVACY POLICY

In this page we describe how the site is managed with regard to the processing of personal data of its users.
This information is provided pursuant to Article 13 of Regulation (EU) 2016/679 (“GDPR”) and current national legislation, to those who interact with the web services accessible from the following address, corresponding to the home page of the official KROLL SRL website:

www.kroll-amkro.com

The information is provided only for said KROLL SRL website and its subdomains (e.g., www.maindomain.it/ subdomain), and not for other external websites accessed by the user using any links on the website itself.
The information is also based on Recommendation No. 2/2001 adopted on May 17 by the European authorities for the protection of personal data, gathered in the Group established by Article 29 of Directive No. 95/46/EC, and aimed at identifying certain minimum requirements for the collection of personal data online, and, in particular, the methods, timing, and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of said connection.

Who processes personal data

The Data Controller, the subject who determines the purposes and means of the processing of personal data, is KROLL SRL, with registered office in Via Luigi Mazzon, 21 – 30020 Quarto d’Altino (VE) – Italy.

Type of data processed and purposes of processing

Navigation data

During normal operation, the IT systems and software used in this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and IT environment.
This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and is deleted after processing. The data could be used to assess responsibility in the event of computer crimes against the site.

Data voluntarily provided by the user

The optional, explicit, and voluntary sending of emails to the addresses indicated on this website, including by filling out specific forms, entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data that may have been included in the message by the sender.

The collection and processing of personal data voluntarily provided is carried out for the following purposes and on the basis of the respective legal grounds:

Purposes Legal basis (Article 6 GDPR)
Processing requests for information on services provided and products/solutions marketed directly by KROLL SRL, and processing reports of any kind. User request, by sending a request and/or communication, including by using the contact form.
Management of e-recruitment and/or other forms of professional collaboration, based on unsolicited applications. User request, by sending a job application.
Registration in the Reserved Area, which allows users to access the download service for information material reserved for registered users.
 User request, by using the appropriate form.

Any specific information will be progressively reported or displayed on the pages of the website dedicated to any particular on-demand services.

Data will be collected and recorded for specific, explicit, and legitimate purposes and in a manner compatible with those purposes, within the scope of the processing necessary for the operation of the business. Such data will be processed according to the principle of accuracy and, if necessary, appropriately updated, so that it is always relevant, complete, and not excessive in relation to the purposes for which it was collected, and so that its storage is functional to the period of time necessary for the purpose for which it was collected and subsequently processed in accordance with the GDPR and current national legislation.
Personal data may be processed with the aid of both paper and electronic tools and, in any case, in such a way as to guarantee its security and protect the confidentiality of the data subject. Specific security measures are observed to prevent data loss, illicit or incorrect use, and unauthorized access in full compliance with Article 32 of the GDPR and current national legislation.

Cookies, plugins, and interaction with external platforms

Full information on the use of cookies and on the use of services for interacting with external platforms (e.g. social networks) is available at the following link:

Cookie Policy del sito www.kroll-amkro.com

Nature of data provision

Apart from what has been specified for navigation data, the provision of data by the User is voluntary. Failure to provide such data may make it impossible for KROLL SRL to provide the requested services.
Consent, where required for specific purposes, is always optional and, if given, may be revoked at any time by sending a request to the following address: kroll@kroll-amkro.com.

Data communication

Without prejudice to communications and disclosures made in compliance with legal obligations, all data collected and processed may be communicated to:

  • Subjects to whom it is necessary to communicate the data for the performance of a contract to which the Data Subject is party r in order to take steps at the request of the Data Subject, as well as, in general, for the pursuit of the purposes mentioned in this Privacy Policy;
  • Subjects who carry out processing on behalf of the Data Controller as Data Processors pursuant to Article 28 of the GDPR, such as, by way of example and without limitation: subjects who provide services for the management of the information system and telecommunications networks (including email). The complete and updated list of Data Processors is available to those entitled to it upon request at the Data Controller’s offices;
  • Subjects authorized to access the data by current legislation and/or to whom the data must be communicated in compliance with legal obligations.

Personal data may be processed by personnel assigned to the relevant offices of the Data Controller, explicitly authorized to process the data in accordance with the provisions of Article 29 of the GDPR and current national legislation.

Data transfers abroad

Personal data may be transferred abroad only for the purposes set out in this policy, or for strictly technical reasons related to the structure of the company’s IT system and/or the application of technical and organizational security measures deemed appropriate by the Data Controller, and exclusively in compliance with Articles 44 et seq. GDPR (in the presence of adequacy decisions and/or adequate safeguards, provided that the data subjects have enforceable rights and effective remedies, or provided that one of the specific exceptions provided for by the legislation specifically applies).

Data retention

The data shall be retained for a period of time not exceeding the fulfillment of the purposes indicated in this Privacy Policy. Specifically, the data provided will be stored in our archives according to the following parameters:

  • Data provided voluntarily by the user: until the service is provided or according to any deadlines set by law;

In relation to the specific limitation periods provided for by law, the data which are necessary for the exercising or defending a right in a court of law may be subject to longer retention periods.
The obsolescence of the data stored in relation to the purposes for which it was collected is assessed periodically.

Data Subject Rights

The data subject has the right to obtain, in the cases provided for, access to their personal data and the rectification or erasure of the same or the restriction of processing concerning them or to object to the processing (Articles 15 et seq. of the GDPR), by contacting the Data Controller at the following email address: kroll@kroll-amkro.com.

Right to lodge a complaint

Data subjects who deem that the processing of their personal data violates the provisions of GDPR have the right to lodge a complaint with the supervisory authority of the European Union Member State in which they habitually reside or work, or in which the alleged violation occurred, as provided for in Article 77 of GDPR 2016/679, or they have the right to take appropriate legal action.

For more information, please contact the Data Controller:

KROLL SRL
Via Luigi Mazzon, 21 – 30020 Quarto d’Altino (VE) – Italy
Tel. +39 0422 823794 – Fax +39 0422 826728
eM.: kroll@kroll-amkro.com

Last modified: 19/08/2025

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.