Privacy and cookie policy

1. Recitals

When you browse our website or use our services, we collect information and data personal information that concerns you. For this reason, in compliance with the provisions of the EU Regulation n. 679/2016 (hereinafter “GDPR”) and any implementation laws, we have created this document (hereinafter “Privacy Policy”) for the purpose of describing the personal data we collect, the purposes and methods of processing of the same and the security measures that we take to protect such data.

This Privacy Policy constitutes disclosure to interested parties issued pursuant to applicable legislation on personal data protection and has been drawn up in compliance with Recommendation n. 2/2001, adopted on May 17, 2001 by the Working Group for the Protection of Personal Data - Article 29 in relation to the minimum requirements for online data collection in the European Union. In addition, we inform you that this Privacy Policy applies to the website of which the company is the data controller (hereinafter, the “Website”) and our services, apps and social network accounts (hereinafter, the “Services”) and does not apply to third party websites potentially mentioned by way of link or banner within the Website.

2. Sources of data and purposes of the data processing

2.1 Browsing data

The IT systems used to run the services acquire, during their normal operation, certain personal data, the transmission of which is implicit in the use of Internet communication protocols. This information is not processed with the aim of identifying you, but it could be possible to identify you if such information is combined with data held by third parties.
This category of data includes the IP addresses or domain names of your computer, the addresses denoted in Uniform Resource Identifier (URI) strings of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server response and other parameters relating to your operating system. We use this information solely to obtain anonymous statistical data on use of the Services and verify that the Website is functioning correctly. All such data is erased immediately after processing. The data could be used to ascertain responsibility in the event of computer crimes, which are detrimental to the Services. 

2.2 Information for specific services

Browsing our Website does not require the creation of a personal account.

However, in certain parts of the Website it is possible send information via email, telephone, fax, mail. The data spontaneously provided by the user via the sending of communication and/or requests for information will be processed by the Company exclusively for the purposes of dealing with the request and/or responding the communication sent. Should you collect, process and communicate information to third parties, you must do so in accordance with the provisions of the Regulation and, therefore, you must provide them with information on processing in advance and, if necessary, you will have to collect the free and express consent before carrying out such processing.

When you decide to subscribe to the “We Build Value” newsletter, we collect your personal data such as your name, surname, e-mail address, work place and process them exclusively for sending the requested newsletter. Further information is available when registering for the service.

2.3 Nature of the conferral

Providing us with the information referred to in point 2.1. is mandatory to be able to browse on our Website. Provision of the additional information referred to in point 2.2. is optional. Your refusal to provide such information would still allow you to use our Website but would prevent you from using specific services indicated therein or to discover and explore their full potential.

2.4 Information collected via cookies and other technology

Cookies are small text files downloaded on to a device when the user visits a website. On each subsequent visit, the cookies are sent back to the originating website (first-party cookies) or to another site that recognizes them (third-party cookies). Cookies are helpful because they allow a website to recognize the user’s device. Cookies have different purposes, for example letting you navigate between pages efficiently, remembering your preferences, and generally improving your browsing experience. They also help ensure that the advertising content displayed online is more relevant to you and your interests. Depending on the function and purpose of use, cookies can be divided into technical cookies, profiling cookies and third-party cookies. This Website uses technical cookies and third-party cookies only.

- Technical cookies

Technical cookies are those used which do not require the user’s consent. Technical cookies include essential cookies, also called strictly necessary cookies, which enable functions, without which you would not be able to make full use of the Website. These cookies are used exclusively by the Company and are therefore first-party cookies. They are stored on your computer only during the current browser session.

This type of cookie is also used to save your decision in relation to cookies on the Website.

Technical cookies also include cookies used for statistical analysis related to accesses or visits to the Websites, also called "analytics", which are for statistical purposes only (and not marketing or profiling purposes) and collect information in aggregate form without the possibility to identify any particular individual user. These cookies can be blocked and/or deleted using the browser settings. All modern browsers allow cookie settings to be modified. These settings are usually found in "options" or in the "favourites" menu of the User’s browser. The following links can be useful for gaining an understanding of these settings, or the "Help" option on the browser can be used to get more information.

Impostazioni dei cookie in Internet Explorer

Impostazioni dei cookie in Firefox

Impostazioni dei cookie in Chrome

Impostazioni dei cookie in Safari and iOS

If cookie use is blocked, the service offered to the User through the Website will be limited and this will affect the Website’s user experience.

The table below shows, for each technical cookie, the name, purpose and duration.

NameExpiration TimePurposeDomain
ASP.NET_SessionldSessionSession cookie (i.e. expires and then removed from the browser when the browser is closed), is a technical cookie aimed at expediting navigationWebsite domain
adm_2_0 o sgloginSessionUser authentication management cookie whose purpose is to maintain knowledge of the authenticated user profile (i.e., user who registered by accepting the confidentiality document and who subsequently explicitly authenticated at least once on the site with username and password) thus enabling the use of content reserved for such user.Website domain
sgLang6 monthsUser authentication management cookie whose purpose is to maintain knowledge of the authenticated user profile (i.e., user who registered by accepting the confidentiality document and who subsequently explicitly authenticated at least once on the site with username and password) thus enabling the use of content reserved for such user.Website domain
BNES_*SessionCookies required for the management of security of the WebsiteWebsite domain
AOLPrivacyCookie10 yearsUsed to memorize acknowledgment of privacy policyWebsite domain

- Third-party cookies

While browsing, the User may receive cookies from other websites or web servers on his/her device (so-called "third-party cookies"): this happens because the Website may contain elements such as images, maps, sounds, specific links to webs pages of other domains hosted on servers different from where the page requested is located.  In other words, these cookies are set directly by website or server providers which are different from this Website. These third parties could, in theory, set up cookies while you visit the Website and thus obtain information on the fact that you have visited the Website.

You can find out more on the use of cookies by clicking on the link indicated. If you decide that you do not want to permit the use of third-party cookies, you will only be able to use those functions on the website which do not require these cookies.

The table below shows, for each third-party cookie on the Website, the name, purpose, name of the third party retaining the information and the related link to the third party website.

1.   MATOMO (formerly PIWIK)
Tool for analysis of the traffic on the Website in aggregate and anonymous form:

List of cookies:

Cookie nameDurationPurposeDomain
_pk_id*1 yearUsed in order to count the visits made by the browser on the Website. This cookie is increased at each visit and also contains the date-time of the last visit. The standard setting allows for a validity of 2 years for the cookie.Website domain
_pk_ses*30 minutesUsed to manage, along with the previous _pk_id.*, the increase in count.Website domain
_pk_ref*6 mesiUsed to trace the origin on the Website from third party websites. This cookie contains the URL of the original website. The standard setting allows for a validity of 6 months for the cookie.Website domain
_pk_cvar*variabilePossible custom variablesWebsite domain


Tool for analyzing the traffic on the Website.
Please refer to the official google documentation.

Technical notes:

Google Analytics:

Link to privacy policy:;
Link to page describing the cookies installed:

Link to the download page to the tool that allows you to disable the installation of these cookies:

Cookie nameExpiration TimePurpose
ga2 yearsUsed to distinguish users.
_gid24 hoursUsed to distinguish users.
_gat*1 minuteUsed to throttle request rate.
__utma2 years from set/updateUsed to distinguish users and sessions. The cookie is created when the javascript library executes and no existing __utma cookies exists. The cookie is updated every time data is sent to Google Analytics.
___utmt10 minutesUsed to throttle request rate.
__utmb30 mins from set/updateUsed to determine new sessions/visits. The cookie is created when the javascript library executes and no existing __utmb cookies exists. The cookie is updated every time data is sent to Google Analytics.
__utmcEnd of browser sessionNot used in ga.js. Set for interoperability with urchin.js. Historically, this cookie operated in conjunction with the __utmb cookie to determine whether the user was in a new session/visit.
__utmz6 months from set/updateStores the traffic source or campaign that explains how the user reached your site. The cookie is created when the javascript library executes and is updated every time data is sent to Google Analytics.
__utmv2 years from set/updateUsed to store visitor-level custom variable data. This cookie is created when a developer uses the _setCustomVar method with a visitor level custom variable. This cookie was also used for the deprecated _setVar method. The cookie is updated every time data is sent to Google Analytics.
gac<property-id>90 daysContains campaign related information for the user. If you have linked your Google Analytics and AdWords accounts, AdWords website conversion tags will read this cookie unless you opt-out.
AMP_TOKEN30 seconds to 1 yearContains a token that can be used to retrieve a Client ID from AMP Client ID service. Other possible values indicate opt-out, inflight request or an error retrieving a Client ID from AMP Client ID service.


Please refer to the official documentation:

The Website and the Services may contain applications and materials (“API”) that use data taken from your accounts opened on social networks such as Facebook, Linkedin, etc. For example, an API can be created that allows you to post comments directly on the social network to which you are subscribed. When you use an API of this type, your personal data is transmitted to the social network site. Such data are governed by the privacy notice of this social network. You can also create an API that allows you to get information and content related to you, your friends, your user ID and other types of content taken from the social network used. This information and content will not be acquired, unless you have given your consent to the social network site. If such consent is given, the aforementioned information will be used in accordance with this Privacy Policy and the rules on APIs of such social network.

3. Processing mechanisms and conservation of data

We process your personal data with the help of electronic tools and in continuous compliance with the safety requirements required by applicable law. Our security measures include contractual arrangements with any contractor (e.g., service providers) or agent in order to ensure the protection of the security and confidentiality of your personal data in accordance with provisions set forth by applicable legislation on personal data protection.

We keep your personal data for the time necessary to fulfill the purpose for which they are collected. With reference to the specific Services you can consult the privacy policy. In case of creating an account, we keep your personal information until your account is active. Notwithstanding the closure of the same, we will retain the data to the extent that this will be necessary for comply with the obligations imposed by laws or regulations, to protect our rights, to prevent fraud or to enforce this Privacy Policy. With particular reference to protection of our rights, we specify that we adopt a period of data retention personal data for ten years starting from the closure of the account, based on the limitation period of ten years referred to in art. 2946 of the Civil Code.

4. Context of the communication

4.1 Internal and external communication of personal data

Your personal data will be processed only by persons previously authorized to process or data processors. In particular, your data may be disclosed to following categories of external persons: professional and/or technical service providers, consultants and professionals, including in an associated form, legitimate recipients according to the law. The recipients of the data act as data controllers or processors according to the applicable legislation. Should we be involved in a reorganization, acquisition or sale of our company or part of it, we will communicate your data to the third parties the subject of the procedure.

Any third party which, as part of this procedure, will be the recipient of your data will be able to use them within the limits established by this Privacy Policy. To receive the updated list of data processors, as well as the list of recipients of your personal data, contact us by sending an email to the following address:

4.2 Transfer of data abroad

Your personal data may be transferred by us to another country to third parties established within the European Union. This transfer is permitted as each country in the European Union guarantees an adequate level of data protection. However, we could transfer your data also to third countries, not belonging to the European Union, which do not guarantee the same level of data protection. We hereby inform you that such transfer to third countries will always be in accordance with the provisions of the GDPR, i.e. by collecting your consent, when necessary, or by adopting every necessary measure to ensure the security of the data being transferred, e.g. EU Standard Contractual Clauses.

5. Rights of the data subjects

At any time, you can exercise the rights recognised in the GDPR, as follows:

  • Request for access to your personal data: you have the right to obtain from the data controller confirmation that processing of personal data concerning you and, in this case, access. Access entails the availability of certain information, including the purposes of the processing, the categories of personal data processed and the recipients to whom the data are communicated. However, there is no absolute right of access and the interest of other individuals may limit your right of access. You also have the right to obtain a copy of the personal data being processed. For additional copies, a monetary contribution may be applied.
  • Correction of your personal data: you have the right to obtain the correction of inaccurate personal data concerning you, as well as to obtain the integration of incomplete personal data, including by providing an additional declaration.
  • Erasure of your personal data: you have the right to obtain from the data controller the erasure of personal data concerning you without undue delay, and the data controller is obliged to cancel the personal data without undue delay in certain circumstances, including the elimination of the need for data with respect to the purposes for which they were collected or the withdrawal of consent.
  • Limitation of the processing of your personal data: in certain circumstances - including in the case of disputing the accuracy of data - you have the right to request the limitation of the processing of personal data concerning you.
  • Data portability: you have the right to receive the personal data concerning you provided to a data controller in a structured, commonly used and form which is readable on an automatic device, and you have the right to send this data to another data controller without impediment on the part of the data controller to whom you have provided the data if the processing has been based on consent and is carried out by automatic means.
  • Opposition to processing: you have the right to object to the processing of personal data concerning you at any time, for reasons connected to your particular situation.

The right to lodge a complaint with the competent supervisory authority (Guarantor for Personal Data Protection) remains unaffected.

To exercise these rights, please contact us using the contact details below.

6 • Data Controller
The Website and the Services are managed by Webuild S.p.A., with registered offices in Via dei Missaglia, 97, 20142 Milan (Italy), telephone 0244422111; fax 0244422293; e-mail, which acts as data controller.