Italo recognizes the strategic value and importance in guaranteeing the security and confidentiality of personal data. In line with the Company’s Code of Ethics and the principles established in the relevant legislation, the ultimate aim is to protect the freedom and fundamental rights of the people to whom the personal data relates. In terms of customer data, Italo primarily handles general, personal and contact details.

Several of activities were carried out within two macro-areas:

• Security and Data Privacy Governance, with the aim of defining and updating data protection management policies;
• GDPR Implementation and Awareness, with the aim of driving continuous improvement of the data protection management system-

The Company’s Data Protection Officer (DPO) has the key role of overseeing compliance with data processing regulations and provides advice to all internal departments with the aim of ensuring that their processes comply with data protection legislation