top of page

Privacy & Policy

Information on the Processing of Personal Data on Doubles Insurance


Information on the processing of personal data pursuant to and by effect of art. 13, Legislative Decree no. 196/2003 and in compliance with EU Regulation no. 2016/679 (General regulation on data protection, the so-called "GDPR") In compliance with the provisions of Legislative Decree no. 196/2003, as amended by EU Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereafter GDPR), the necessary information is provided regarding the purposes and methods of processing your personal data, in the context of communication and dissemination of the same. This policy applies to all users, including registered and unregistered visitors, of our website: The user is invited to read this information carefully. In case of doubts or questions, the user can contact us at:

Data Controller and Data Protection Officer

The Data Controller is Double S Insurance Broker SPA, Via Mazzini 3, 07100, Sassari
Data Protection Officer (DPO) is Alessandro Asole, ZI Predda Niedda str 1

Personal data processed

Name, surname, place and date of birth, tax code/VAT number, residence, identity document number, telephone contracts, email addresses, Iban codes, etc.

Purpose of the Treatment

Users' personal data will be processed in compliance with current legislation and the principles of correctness, lawfulness, transparency and confidentiality. These data will be processed with and without the aid of electronic and IT tools. Users' personal data will be processed by the Data Controller, by the Data Processor, also external, sub-managers and/or persons in charge of the treatment. Users' personal data will not be subject to automated decision-making processes, nor to any type of profiling, except as provided for in points 6 and 7 below.

Legal basis of the treatment

A) navigation on our website: Legitimate interest pursuant to art. 6 lett. f) and recital 47: the processing is necessary for the pursuit of the legitimate interest of the data controller or of third parties, provided that the interests or fundamental rights and freedoms of the data subject who require the protection of personal data do not prevail, taking into account the reasonable expectations fed by the interested party based on his relationship with the data controller. Activities strictly necessary for the functioning of the site and for the provision of the navigation service on the platform. B) compilation of forms on our site to collect user requests: Execution of pre-contractual measures and/or execution of a contract adopted at the request of the interested party pursuant to art. 6 lett. b) and recital 44; consent of the interested party pursuant to art. 6 lett. a) and recitals 42 and 43.

Personal data

By personal data, we mean: any information relating to a natural person, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number; personal data that allow the direct identification of the data subject.

Navigation data

The computer system used to operate this website acquires some personal data of the user during normal operation, the transmission of which is implicit in the use of internet communication protocols. This is information that is not collected to be associated with identified interests, but which by their very nature could, through further processing and association with data held by third parties, allow users to be identified. This category of data includes: the IP addresses or domain names of the computers used by users who connect to the site; the URI (Uniform Resource Identifier) rotation addresses of the requested resources; the time of the request; the method used in submitting the request to the server; the size of the file obtained in response; the numerical code indicating the status of the response given by the server (e.g. error, success, etc.) and other parameters relating to the user's operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning.


A cookie is a small text file transferred from the server to the user's computer, the purpose of which is to inform the server about the user's access to that particular web page as well as providing further information that is obtained from the system's readable parameters via functions contained in the web page. Cookies can be temporary or permanent. This site uses cookies to: keep track of browsing sessions anonymously; improve navigation within the site; customize services. These data are not disclosed to third parties and are not subject to disclosure. The user has the option to disable or selectively accept the use of cookies, in which case some site functions may not be available and some web pages may not be displayed correctly.

Data provision and refusal

Apart from that specified for navigation data, the user is free to provide personal data in dedicated areas on the site. The provision of the user's personal data for the purposes indicated in this information is necessary to perfect the specific functions and use the services offered by the Data Controller through the Site. Failure to provide personal data may make it impossible to obtain the service requested or to use the services offered by the site.

Data communication

The user's personal data may be communicated, for the purposes referred to in point 2 of this information, to the following categories of subjects: employees and collaborators of the Data Controller; service providers (e.g. web hosting; web agency; mobile payment companies, etc.) and third parties who provide services instrumental to satisfying user requests. Studies and Companies in the context of assistance and consultancy relationships; Competent authorities for fulfillment of legal obligations and/or provisions of public bodies, upon request. The subjects belonging to the aforementioned categories perform the function of Data Processor, sub-processor, person in charge of processing, or operate in total autonomy as separate Data Controllers.

Data Recipients

The data may be processed by external subjects acting as data controllers such as, for example: a. Authorities and supervisory and control bodies; b. Insurance companies; c. Liquidators; d. Law Firms; and. Other Insurance/Professional Intermediaries. The data may also be processed, on behalf of the Company, by external subjects designated as managers, who are given adequate operational institutions. These subjects are essentially included in the following categories: a. Companies that offer email sending services; b. Companies that offer website maintenance services; c. Companies that offer support in carrying out market studies.

Data transfer

Personal data is stored on servers located within the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the servers even outside the EU. In this case, the Data Controller ensures from now on that the transfer of data outside the EU will take place in compliance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses envisaged by the European Commission.

Subjects Authorized to Process

The data may be processed by employees and collaborators of the corporate functions responsible for pursuing the aforementioned purposes, who have been expressly authorized for processing and who have received adequate operating instructions.

Storage time of the collected data

The Data Controller will process the personal data collected for as long as necessary to fulfill the purposes referred to in point 2 of this information. Subsequently, the user's personal data will be stored, and not further processed, for a period of time that can vary significantly depending on: purposes pursued, type of data processed (e.g. navigation data, personal information), law (e.g. tax, administrative, etc.). In any case, if it is no longer necessary to keep said data, they will be deleted/destroyed in accordance with the provisions of the GDPR.

User rights

By contacting the DOUBLE S INSURANCE BROKER SPA Office via e-mail at, the interested parties can ask the holder to access the data concerning them, their cancellation, the rectification of inaccurate data, the integration of incomplete data, the limitation of treatment in the cases provided for by Art. 18 of the GDPR, as well as the opposition to the treatment in the hypotheses of legitimate interest of the owner. Furthermore, in the event that the treatment is based on consent or on the contract and is carried out with automated tools, the interested parties have the right to receive the data in a structured format, commonly used and readable by an automatic device, as well as, if technically feasible , to transmit them to another holder without impediments. Interested parties have the right to revoke the consent given at any time for marketing and/or profiling purposes, as well as to oppose the processing of data for marketing purposes, including profiling connected to direct marketing. The possibility remains for the interested party who prefers to be contacted for the aforementioned purpose exclusively through traditional methods, to express his opposition only to the receipt of communications through automated methods. Interested parties have the right to lodge a complaint with the competent Supervisory Authority in the Member State in which they usually reside or work or in the State in which the alleged violation occurred.

Methods of exercising rights

The interested party may at any time exercise the rights referred to in this information and in general the provisions of the GDPR legislation: (I) by sending a registered letter with return receipt to the Data Controller at the registered office of the company located in 07100 – Sassari, Via Mazzini 3. (II) by sending an email

Consent to the processing of data

Pursuant to and for the purposes of art. 6, par. 1, lit. a) of the GDPR, the interested party gives his consent to the processing of his personal data within the scope, for the purposes and according to the methods referred to above. This consent is to be considered valid until written revocation to be sent according to the methods described in the previous point.

Changes to this Privacy Policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this website as well as, if technically and legally feasible, by sending a notification to Users via one of the contact details in its possession. Therefore, please consult this page frequently, referring to the date of the last modification indicated at the bottom. If the changes concern treatments whose legal basis is consent, the Data Controller will collect the User's consent again, if necessary.

Date of last revision: April 12, 2022

bottom of page