italy-insurance.com is committed to protecting personal data and handling it responsibly, transparently, and in line with the EU General Data Protection Regulation (GDPR) and applicable Italian privacy laws, including the Italian Data Protection Code as amended. This Privacy Policy explains what information we collect, why we collect it, how it is protected, and the choices and rights available to users in 2026. Our approach is data minimisation: we request only the information that is necessary to provide travel insurance quotes, support a purchase, meet legal obligations, prevent fraud, and improve the reliability and security of our services.
We collect information that you provide directly when you request a travel insurance quote, purchase a policy, contact customer support, or communicate with us for administrative purposes. Depending on your request, this may include identification and contact details (such as name, email address, phone number, and country of residence), trip details (travel dates, destination(s), and trip cost), and information needed to tailor coverage (such as age and any optional medical-related disclosures required for specific products). For payments, we do not store full card details on our servers; payment processing is handled through secure payment providers, and we retain only limited transaction references and billing-related information needed for accounting, chargeback handling, and compliance. We also collect certain technical data automatically, such as IP address, device and browser information, language preference, approximate location derived from IP (not precise geolocation unless you explicitly consent), and usage data necessary to keep the platform secure and functioning.
We use personal data for clear, limited purposes and only under an appropriate legal basis under GDPR. The primary purpose is to generate insurance quotes and facilitate policy issuance, which generally relies on performance of a contract or steps taken at your request prior to entering a contract. We may use data to respond to enquiries, manage customer service, send policy documents and legally required notices, and to detect and prevent fraud or abuse, which may rely on our legitimate interests and, where applicable, legal obligations. If we send marketing communications, we do so only where permitted by law and, where required, based on your consent; you can opt out at any time using the instructions provided in the message or by contacting us. We do not sell personal data to third parties, and we do not allow third parties to use your data for their own independent marketing purposes.
Insurance quotes and purchases often require sharing certain information with carefully selected partners involved in the provision of coverage, such as insurers, underwriting partners, and claims administrators, strictly to the extent necessary to provide the requested service. For example, trip details and insured persons’ information may be transmitted to an insurer to calculate premium and issue a certificate. If you make a claim under a policy, additional information may be requested as required by the insurer or claims handler to assess coverage, prevent fraud, and comply with regulatory requirements. We share information with service providers that help us operate italy-insurance.com, such as hosting, analytics, email delivery, and payment processing, under contracts that require confidentiality, appropriate security measures, and GDPR-compliant processing terms. Where required, we act as a data controller for our platform operations and as a processor for certain services provided on behalf of insurance partners; the specific role depends on the context, and we provide clarity upon request.
Security is built into how italy-insurance.com is designed and operated. We use encryption in transit (such as TLS/HTTPS) to protect data exchanged between your browser and our systems. We apply access controls and least-privilege principles so that only authorised personnel can access personal data, and only for legitimate business purposes. Our infrastructure is monitored to detect suspicious activity, and we maintain logging and auditing mechanisms to support incident response and compliance. We employ secure development and vulnerability management practices, and we regularly review vendor security standards, including for cloud and payment providers. No online system can be guaranteed 100% secure, but we aim to apply security measures proportionate to the sensitivity of the data and the risks involved.
We use cookies and similar technologies to make the site work, protect it from abuse, and understand how visitors use our pages so we can improve performance and usability. Some cookies are strictly necessary (for example, to maintain session security or remember a language choice). Others may be used for analytics and measurement, subject to your preferences where required by law. In 2026, transparency and user control remain central: you can manage cookie preferences through the cookie settings presented on the site and through your browser controls. We aim to provide clear information about cookie categories, duration, and purpose, and to honour user choices in line with EU and Italian rules on tracking technologies.
Under GDPR, you have rights over your personal data, subject to conditions and certain legal exceptions. These include the right to access your data, correct inaccurate or incomplete information, request deletion, restrict processing, object to certain processing, and receive a copy of your data in a portable format where applicable. You also have the right to withdraw consent at any time for processing based on consent, without affecting the lawfulness of processing carried out before withdrawal. We retain personal data only for as long as necessary for the purposes described, including legal, accounting, and regulatory requirements relevant to insurance distribution and financial transactions, after which data is deleted or anonymised. If you wish to exercise your rights, or if you have questions about how italy-insurance.com handles personal data, you can contact our Data Protection Officer (DPO) at [email protected]. You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali) or your local EU supervisory authority.
International data transfers may occur where our service providers or insurance partners process data outside the European Economic Area. In such cases, italy-insurance.com uses appropriate safeguards recognised under GDPR, such as European Commission adequacy decisions where available, or Standard Contractual Clauses and supplementary measures to protect data. We assess transfer risks and limit transfers to what is necessary for service delivery, security, and compliance. We may update this Privacy Policy periodically to reflect legal developments, operational changes, or improvements in transparency; the effective date will be indicated on the site, and material changes will be communicated where required.