Privacy policy

General Introduction

The purpose of this Policy is to describe the management methods of the FCA Bank S.p.A. (hereinafter “FCA Bank”), website, with reference to the processing of personal data of users who access it.
This Disclaimer is provided to users interacting with the FCA Bank S.p.A. web services from the address www.fcabankgroup.com, corresponding to the home page of the FCA Bank website, pursuant to the EU Regulation on Personal Data Protection 2016/679 and the applicable Italian law in force.
The Disclaimer applies only to the FCA Bank website and not to other websites which may be browsed by the user through links.

1) The Data Controller

The Data Controller is FCA Bank S.p.A. having registered office in Turin, Corso Giovanni Agnelli n 200, Tax Code 08349560014, Italian Register of Banks no. 5764.

2) Type of Data Processed and Purpose of Processing

2.1) Data Provided Voluntarily by The User

After reading the Disclaimer, you may disclose your personal data to the website in order to access freely chosen products and services. According to your consent, your personal data will be processed to activate the freely chosen product and/or service.
Providing your consent is optional. You will not be able to proceed with the activity if you do not provide your consent.
You are entitled to revoke the previously provided consent at any time with reference to the purposes described by means of the methods indicated in paragraph 6) below.

Processing will always:

  1. comply fully with the current law, on the basis of information provided in equal and transparent manner;
  2. be performed by collecting a minimum amount of data and in all cases by collecting only the data needed for the contractual functions;
  3. be accurate and updated;
  4. be performed conserving data only for the time needed to perform the contractual functions.

2.2) Navigation Data

During their normal operation, the computer systems and software procedures used to operate this website acquire some personal data for communication that is implicit in the use of internet communication protocols. These are data which are not collected to be associated with identified persons, but which by their very nature could, if processed and associated with data held by third parties, allow the identification of users. This data category includes IP addresses, type of browser, operating system, domain name and addresses of websites from which access is made or left, information on the pages of the site visited by the users, time of access, time spent on each page, analysis of internal path followed within the site and other parameters concerning the user's operating system and IT environment. This information concerning technical matters and IT is collected and used in an aggregate and anonymous manner for the sole purpose of:

  1. improving the quality of the service and optimising site functionality;
  2. understanding the user's behaviour in order to improve on-line communication;
  3. preparing statistical information concerning the use of the site.

Your data may be used:

  1. to comply with the requirements of national laws and communications, as well as the regulations set forth by Supervisory Bodies and with regards to the obligations for monitoring operative and credit risks on bank level and
  2. to ascertain responsibility in case of computer crimes against the site and in case of disputes.

Providing the data above is necessary for navigating the website and your refusal to provide them will imply the impossibility to do so.
The supplied data will be processed for the time necessary for the operations described here.

This site uses technical and analytics cookies to allow correct use of the website and improve your browsing experience. See the Cookie Policy to learn more, know the cookies used by the site and possibly disable them.

2.3) Marketing and Promotion

Furthermore, on the basis of your consent, the pages dedicated to collecting your personal data will be processed for the following purposes:

  1. to receive promotions on FCA Bank S.p.A. products
    Processing includes traditional and non-conventional marketing, telemarketing, commercial information, sending advertising material, or market surveys, direct sales activities or interacting commercial communications on products, services and other activities of the Data Controller, and refers to all products active at the time of subscription or activated later in time.
    Providing your data is optional and failure to do so will compromise performing the aforesaid activities. You are entitled to revoke the consent previously provided at any time with reference to the purposes described in this paragraph by means of the methods indicated in paragraph 6).
    The provided data will be processed for twenty-four months from when you provide them and will be either anonymised or eliminated afterwards.
  2. to receive promotions tailored to your preferences and behaviours.
    Processing includes analysis personal data collected in order to evaluate and predict personal aspects, including professional efficiency, economic situation, preferences, interests, behaviour, location or movements to limit promotional activities only to similar products or promotions on the basis of the previously performed analyses.
    Providing your data is optional and failure to do so will compromise performing the aforesaid activities.
    You are entitled to revoke the consent previously provided at any time with reference to the purposes described in this paragraph by means of the methods indicated in paragraph 6).
    The provided data will be processed for twelve months from when you provide them and will be either anonymised or eliminated afterwards.
  3. to receive commercial promotions related to products and services offered by other companies.
    Processing includes communicating personal data to FCA Bank partner companies - including, by way of non-exhaustive example, third parties and/or other companies of the FCA Bank and FCA Group and of the Crédit Agricole Group - for traditional and non-conventional marketing, telemarketing, commercial information, sending advertising material, or for market surveys, direct sales activities or interacting commercial communications on products, services and other activities of the third parties.
    Providing your data is optional and failure to do so will compromise performing the aforesaid activities.
    You are entitled to revoke the consent previously provided at any time with reference to the purposes described in this paragraph by means of the methods indicated in paragraph 6).

3) Personal Data Recipients

For the various purposes described hereto, the Data Controller may communicate your data, in all cases respecting the rights and guarantees set forth in current law, to:

  1. FCA Bank, FCA and Crédit Agricole Group companies or subsidiaries or connected companies;
  2. finance and insurance service providers;
  3. your reference dealer, as party accredited with FCA Bank S.p.A.;
  4. subjects who provide data acquisition, handling and processing services needed to perform the instructions received from customers;
  5. subjects who provide IT system management services of the Bank and of the telecommunication network (including email);
  6. subjects who perform transmission, enveloping, handling and sorting operations of communication addressed to you;
  7. subjects who perform documentation and data entry filing activities;
  8. subjects who perform customer assistance activities (e.g. call centre, customer services, etc.);/li>
  9. subjects who perform promotional and sales activities of products/services of the Bank and of other companies of the group of which FCA Bank S.p.A. is part;
  10. subjects who perform activities related to controlling, auditing and certifying the activities provided by the Bank also in the interest of customers.

Where required, the indicated subjects will be adequately appointed as Data Processors in the forms required by the law in force.

4) How we process your data

Data is processed using automated and/or manual methods for the time only needed for the purposes for which they were collected, according to the current laws in force.
Specific safety measures are observed to prevent loss of data, illicit or incorrect use and unauthorised accesses or processing which is not authorised. The provision of personal data by persons under 16 years of age is expressly forbidden.

5) Data Protection Officer

For all direct contacts – formal and urgent, different from those for exercising your rights stated in paragraph 6) – you may contact the Data Protection Officer at the following:

  1. Email: This email address is being protected from spambots. You need JavaScript enabled to view it.;
  2. Telephone: 011.4488.203 – an operator of our Customer Care will answer and redirect the call to the Data Protection Officer;
  3. Traditional mail: FCA Bank S.p.A., C.so Giovanni Agnelli 200 - 10135 Torino, Italy, “Attention of the Data Protection Officer”.

6) Your Rights

In relation to the aforesaid personal data processing you may ask:

  1. confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data, as well as the origin of said data, the purposes and methods of treatment and the logics applied in case of processing performed with use of electronic instruments;
  2. to update, integrate, correct, delete or transform into anonymous form your personal data;
  3. to limit or oppose to the processing of your personal data;
  4. to receive your personal data in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller (right to data portability);
  5. ask to certify that such operations have been notified to the individuals to whom they were communicated or disseminated.

You are entitled to exercise your rights by contacting the FCA Bank S.p.A. Customer Care at the following addresses:

  1. Telephone: 011.4488.203;
  2. Email: This email address is being protected from spambots. You need JavaScript enabled to view it.;

The Data Controller will reply to your requests within 30 (thirty) days from reception, extended to 60 (sixty) days taking complexity and number into account; after these terms, you are entitled to submit a complaint to the Personal Data Protection Supervisor in the forms and according to the methods stated in the law in force.

FCA Bank may make changes to this Policy and the user is responsible for checking it regularly.