This page describes how the website (“Website”) operates and is managed with regard to the processing of the personal data of the users who consult it and use its services.

The information is provided pursuant to art. 13 of EU Regulation no. 679/2016 ("General Data Protection Regulation" or "Regulation") to those who interact with Fincantieri S.p.A.'s web services, accessible electronically from the address

The information is provided only for the website and not for other websites that may be consulted through the links present and for which Fincantieri S.p.A. is not responsible.

1. Data Controller

Following consultation of the Website, data relating to identified or identifiable persons may be processed.

The data controller for the processing of your personal data is Fincantieri S.p.A., VAT no. 00629440322, with registered office in Trieste, Via Genova 1, (hereinafter also referred to as “Controller" or “Company”), email , tel. +39 040 3193111 fax +39 040 3192305.

The Data Protection Officer ("DPO") of Fincantieri S.p.A. can be contacted at the following e-mail address:

2.  Place and principles of data processing

The processing connected to the web services of the Website takes place at the headquarters of Fincantieri S.p.A. or at the offices of the suppliers who support the Controller. In general, these systems are, however, kept within the boundaries of the European Union.

The data collected during the use of the Website are processed, exclusively by authorized persons, with automated and non-automated means, and for the time necessary to achieve the purposes for which they were collected.

In order to prevent the loss of data, as well as unlawful or incorrect use thereof, specific security measures are implemented to ensure confidentiality and to avoid illegitimate access by third parties or unauthorized personnel, in accordance with legal obligations.

3. Types of data processed

Anonymous navigation data

The computer systems and software procedures used to operate the Website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of computers used by users connecting to the Website, the URIs (Uniform Resource Identifiers) of resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the user’s operating system and IT environment.

This data is used only to obtain anonymous statistical information on the use of the Website and to check its correct functioning.

4. Cookies

4.1 What are cookies?

Cookies are a kind of “memorandum", short "lines of text" containing information that can be saved on a user's computer when the browser (e.g. Chrome or Internet Explorer) calls up a certain website.

Thanks to cookies, the server sends information that will be re-read and updated each time the user returns to that site. In this way, the website can automatically adapt to the user, improving the browsing experience.

4.2 What cookies are for?

Cookies are used for different purposes, have different characteristics, and can be used both by the controller of the site you are visiting, and by third parties.

Cookies are mainly used for:

  • improving the user’s navigation experience by, for example, storing information on specific configurations for users accessing servers;
  • providing the operator of the site with information on user browsing, obtaining statistical data on the use of the site and improving navigation.

4.3 Technical cookies

These cookies are necessary to allow:

  • navigation and use of the website (for example, they allow you to authenticate your identity to gain access to restricted areas, "navigation or session cookies");
  • navigation based on a set of selected criteria (e.g. language, "functionality cookies") in order to improve the service provided to the user.

They are essential to navigate within the site, using all its features. The installation of cookies does not require the user’s consent, but only carries the obligation to inform users of their use.

4.4 Analytics cookies

Analytics cookies are designed to create anonymous user profiles and are used to analyse the flow of navigation on the site.

Cookies other than the technical ones indicated above are installed or activated only following the consent given by users.

A record of this consent is kept for subsequent visits. The user must always be able to revoke all or part of the consent given.

4.5 Which cookies does Fincantieri use?

The Website uses the following cookies:

Cookie name






Permanent (1 year)

Cookie for displaying synthetic information banners



Navigation (at the end of the session)

Load balancer persistent cookie



Navigation (at the end of the session)

Session Identification Cookie


ipo_1, ipo_2


Navigation (1 year)

Information request cookie for access to the INVESTOR RELATIONS > IPO section


4.6 Management of cookies from browser settings

The Website works optimally if cookies are enabled. You can still prevent cookies from being installed on your computer by using the browser configuration tools. If you disable cookies completely, you may disable some features of the Website or prevent them from working properly. Even with all cookies disabled, your browser will continue to store a small amount of information, necessary for the basic functionality of the Website.

Below are direct links to support pages on the sites of different browsers for more information on how to change these settings:


5. Purpose and legal basis of personal data processing

Your personal data will be processed, with the support of computerised means, limited to the purposes of managing the Website. The processing, where not attributable to the performance of a contract and/or for compliance with a legal obligation to which the Controller is subject, shall take place on the basis of the legitimate interest pursued by the Controller aimed at carrying out checks on the processes and activities performed by the Company.

6. Recipients of personal data

Your personal data may be transmitted, strictly in relation to and compatible with the purposes set out above, to the following categories of subjects:

  • service providers that perform outsourcing activities on behalf of the Controller, in their capacity as external data processors.

The contact details of the external processors carrying out activities on behalf of the Controller may be requested by you at the following e-mail address

7. Transfer of personal data to a third country or international organisation

The Controller may transfer your personal data outside the European Economic Area ("EEA"). In order to protect your data in the context of international transfers, the Controller will adopt appropriate safeguards, i.e. European Commission adequacy decisions pursuant to Article 45 of the Regulation, standard contractual clauses approved by the European Commission and contractual instruments providing adequate safeguards (Article 46 of the Regulation); alternatively, transfers will take place subject to the exceptions provided for in Article 49 of the Regulation (i.e. consent of the data subject, necessity of the transfer for the purposes of contractual/pre-contractual measures, overriding public interest, right of defence before the courts, vital interests of the data subject or of other persons, data entered in a public register).

8. Period of data retention

The data retention periods are set out in the table in section 4.5.

9. Rights of data subjects

We inform you that as a data subject you have the right to obtain from the Controller:

Right of access:

(Article 15 of the Regulation)

confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, the right to obtain, among other things, access to your personal data and information regarding the purposes of the processing, the categories of personal data concerned and the recipients or categories of recipient to whom the personal data have been or will be disclosed.

Right to rectification:

(Article 16 of the Regulation)


(i) rectification without undue delay of inaccurate personal data concerning you and (ii) completion of your personal data, where incomplete.

Right to erasure ("right to be forgotten"):

(Article 17 of the Regulation)

erasure of personal data concerning you without undue delay.

Right to restriction of processing:

(Article 18 of the Regulation)

restriction of processing in the cases set out in Article 18 of the Regulation.

Right to data portability:

(Article 20 of the Regulation)

receipt in a structured, commonly used and machine-readable format of personal data concerning you; the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, in the cases set out in Article 20 of the Regulation.

Right to object for processing carried out under Article 6(1)(e) or (f):

(Article 21 of the Regulation)

objection, at any time, on grounds relating to your particular situation, to the processing of personal data relating to you under Article 6(1)(e) or (f), including profiling on the basis of such provisions.


At any time you will be able to exercise the above-mentioned rights by sending a request to the following e-mail address:

You also have the right to lodge a complaint with the Supervisory Authority for the protection of personal data if you believe that the processing of your personal data violates the provisions of EU Regulation no. 679/2016.

This policy is subject to change. Users are invited to periodically consult the cookie policy on the Website for updates.