Cookie policy

Who is the Data Controller?

The Data Controller is illimity SGR S.p.A., with registered office in via Soperga 9, 20124, Milano. you can contact the Data controller by sending an e-mail to or a certified- email to

As Data Controller, illimity SGR S.p.A. (hereafter “illimity” or the “Company”) ensures the highest level of confidentiality, protection and safety to the personal data referred to the data subjects it enters in contact with.

Preliminarily, the User surfing this website is invited to read all the sections of the present document, where a description of the cookies’ operating method with respect to the processing of users’ personal data is provided.

This is an information given pursuant to the EU Regulation 679/2016 (GDPR) and to the national regulation applicable to everybody who interacts with illimity web services that are available at the addresses belonging to the Bank.

This information notice refers to the website

Further websites that you may access by clicking a weblink contained into this website are not under the Data Controller responsibility. We suggest that you consult the privacy notice published by the companies you get in contact with before exchanging your personal data.

What is a cookie?

A “cookie” is a small text file containing data, such as the name of a server or a unique ID, generated by a website and saved by the web browser that you use. Its purpose is to log the users’ access to the website as well as other information about the navigation activities.

Cookies might be memorized in a permanent way and have a variable duration (so called persistent cookies), but they might also disappear when you close the browser or have a limited duration (so called session-cookies). Likewise, cookies might be installed both by the website you are visiting (so called first-party cookies) and by other websites (so called third parties’ cookies) and they might be used for different purposes, such as online authentication, monitoring browsing sessions and retention of information on the activities carried out by users browsing the website. Depending on the intended purposes it is possible to identify the following cookies’ categories: technical, analytics and profiling/marketing cookies.

This website uses cookies that can be classified into the following categories: technical cookies (including session and preferences ones) and analytics/statistical cookies, both first and third parties’ ones.

For each category of cookies, you can find below a description of the purposes pursued through their installation alongside with an analytical list of the cookies used on the Website.

Categories of cookies installed on the Website

Technical cookies

Technical cookies are needed in order to guarantee the proper functioning of the Website, both to offer the user a smooth browsing experience (e.g. to maintain access on reserved areas for the entire stay on the Website) and to correctly provide them the services required when browsing.

Thus, they are means used to guarantee, for instance, an efficient browsing, stability of the session, login’s consistency and preselection of the selected browsing country. Moreover, they are needed to remember the user’s choices related to the visualization of some of the elements of the page, like informative banners or the language (also called “elements of preference”).

In order to use technical cookies and for the related processing activities the user’s consent is not needed. The legal basis to process those data is the performance of services required directly by the data subject (article 6.1. b) of the GDPR).

Analytics/statistical cookies

This Website uses analytics. In particular, through analytics cookies – including third parties’ ones – are gathered information on the ways users interact with the Website (number of visitors, visited pages, length of the stay, etc.) This information is used to improve the Website’s features, allowing to record possible errors detected by the users and to ensure them a smoother and more immediate browsing experience. Since data is gathered in an aggregate form only – not allowing to identify the users in any way – these cookies are placed on an equal footing with technical ones.

Cookies used on the website

Cookies used into this website are listed into the following table:

How can you disable cookies?

You can disable cookies at any time, through functionalities provided by the browser that you use. We specify that disabling cookies may imply a worse navigation, given that some website’s functions may not be available. Most browsers are configured to accept, manage, and disable cookies through the setting tools. Some websites describing the steps to disable cookies into the principal browser are reported below:

Internet Explorer:

Which types of personal data are processed?

illimity processes the personal data gathered by the website navigation (in the ways and for the purposes described above) as well as information voluntarily provided by the user when he/she gets in contact with the Controller or it decides to use its services. If that is the case, a specific information notice is always provided to the User, and, whenever necessary, the User is invited to give his/her consent. Optional, explicit, and voluntary sending of personal data determines their processing for the purposes and to the extents provided for in the specific policies. To this end, we invite you to refer to the Privacy Policy available on the website.

Users’ rights

In accordance with articles from 15 to 21 of the Regulation (EU) 679/2016, data subject may exercise specific data protection rights set out in the list above:

  1. Right of access: right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data and detailed information on the origin, the purposes, the categories of personal data concerned, the recipients and/or the transfer of data, and more;
  2. Right to rectification: right to obtain from the controller without undue delay the rectification of inaccurate personal data, as well as the right to have incomplete personal data completed, including by means of providing a supplementary statement;
  3. Right to erasure (“right to be forgotten”): right to obtain from the controller the erasure of personal data without undue delay when:
    • the personal data are no longer necessary in relation to the purposes for which they were processed;
    • consent on which the processing is based is withdrawn, and there is no other legal ground for the processing;
    • the personal data have been unlawfully processed;
    • the personal data have to be erased for compliance with a legal obligation;
  4. Right to object: right to object at any time to the processing of personal data having as a legal basis a legitimate interest of the Controller and/or to the processing for marketing purposes, including profiling. In the case of objection to the processing for marketing purposes, the personal data are not processed for those purposes anymore;
  5. Right to restriction of processing: right to obtain from the Controller restriction of processing where the accuracy of the personal data is contested (for a period enabling the controller to verify the accuracy of the personal data), the processing is unlawful and/or the data subject has objected to processing;
  6. Right to data portability: right to receive the personal data in a structured, commonly used and machine-readable format, and the right to have the data transmitted from one Controller to another, where technically feasible, only where the processing is based on consent or on an agreement and only for the data processed through electronic means;
  7. Right to lodge a complaint with a supervisory authority: without prejudice to any other administrative or jurisdictional claim, the data subject that considers the processing that concerns him/her is violating the Regulation has the right to lodge a complaint with the supervisory authority of the member state in which he resides or is established, as well as in the state where the assumed violation occurred;
  8. Right not to be subject to an entirely automated profiling: when the profiling is entirely automated, the right to obtain human intervention on the part of the Controller, to express his or her point of view and to contest the decision.

Moreover, the user has the right to revoke at any time the consent previously given to optional activities, notwithstanding the lawfulness of the processing activities carried out before the withdrawal.

Then, the user has also the right to file a claim before the Italian Data Protection Authority, using the template provided by the Authority itself.

Please note that any request to exercise data subjects’ rights have to be addressed to the Data Controller, according to the following references:

  • By ordinary mail at the Bank’s headquarters: illimity SGR S.p.A. – via Soperga 9 – 20124 Milano
  • By e-mail at the following e-mail address:

The website’s contents – script code, graphics, texts, tables, images, sounds as well as other sort of information – are compliant with the relevant copyright regulations. Companies and products reported/sponsored in this website are identified by their related brands, which may be protected by a specific patent released by the relevant Competent Authority. Software and contents, if permitted, may be downloaded only for personal use, by always reporting the source/owner.

illimity Società di Gestione del Risparmio S.p.A. | Headquarters: 9 Via Soperga - 20124 - Milan Share capital €1,000,000.00 fully paid in.
Enrolled in the Milan Business Register - Economic Registry (REA) no.: MI 2567666 - Tax no. 10936730968 - Participating company in the “illimity” VAT Group VAT Number 12020720962. Enrolled in SGR register ex art. 35 TUF - sezione gestori di FIA n. 183.
Sole shareholder company in the illimity Bank S.p.A. Group, enrolled in the Register of Banking Groups with no. 245.
Company subject to management and coordination by illimity Bank S.p.A.