Protecting and Adding Value to Data

In the Unipol Data Vision, we have made precise commitments regarding the protection and valorisation of personal data to all customers and stakeholders who interact with Group companies.

Responsible data management

The availability and proper use of personal data by insurance companies lies at the heart of the process to create and develop innovative products, services and solutions that respond to the actual needs of our customers. The creation of shared value for Unipol and for the community in which Unipol operates assumes the existence of a transparent, balanced relationship between the parties: this is the only way to realise the great social and economic development opportunities connected to the analysis of data.

The commitment of the Unipol Group to protect and add value to the personal data are contained in the “Policy to protect and add value to personal data” approved by the Board of Directors with the aim of consolidating the trust that customers and all stakeholders have in the insurance company.

Cyber security 

The Group Information Security Policy defines, also in accordance with the provisions of the ISO 27001 standard, the guidelines on cyber security, which support the implementation of the cyber security strategy and provide for the adoption of physical, logical and procedural security measures aimed at ensuring, for the information processed through the IT systems, appropriate and consistent protection throughout its entire lifetime. 

The Governance, Standards, Continuity and IT Systems Security function, on the staff of the Group Chief Information officer, operates in liaison with the IT operating functions for the correct implementation of company cyber security guidelines, in alignment with the Control Functions and the DPO for adopting regulations and assessing the action taken to implement them. 

The Chief Information Officer and the Head of the Governance, Standards, Continuity and IT Systems Security function report annually to the Board of Directors of the Parent and of the Companies falling within the scope of the Information Security Policy, as well as to the Control and Risk Committee of UnipolSai and Unipol Gruppo, to the extent of their responsibilities, with respect to the state of corporate cyber security in the reporting period. Note that no specific board member has been appointed to oversee cybersecurity, but the entire board approves the Information and Communication Technology (ICT) and security strategic plan and its progress.

We process your data according to our values RESPECT We take care of your data, more every day PROTECTION We generate benefits for you, for us, for society VALUE CREATION We transparently inform you about data use DISCLOSURE We build solutions that start from the individual UNDERSTANDING

RESPECT

The Unipol Group undertakes to collect, analyse and use data according to the values that guide its actions, as expressed in the Code of Ethics.

PROTECTION

Protecting the data we are responsible for is the first pillar to guarantee the rights of all the customers and stakeholders we come into contact with. The Unipol Group will continue investing to update and strengthen the system that protects data security.

VALUE CREATION

The Unipol Group believes that the use of data is a significant area for creating shared value, in particular:

  • For customers: thanks to the use of data, customers can benefit from the Company’s better understanding of their own protection needs and the proposal of solutions that give targeted and practical answers; data also makes it possible to develop tools, services and programs aimed at preventing and reducing risk;

  • For Unipol: the collection and the use of data help the Company gain a better knowledge of risks, which supports more aware risk assumption and greater overall sustainability; in addition, data allows the Company to develop products and services that are more effective in protecting customers and offer them greater opportunities;

  • For the community: the availability of data from the Group, and the technological expertise developed, support the development of solutions that bring together the contributions of multiple players, through public-private partnerships in particular, to respond to the needs of the community.

DISCLOSURE

Unipol transparently informs customers about how we use the data collected, in order to allow stakeholders to understand the impacts of their data sharing choices.

UNDERSTANDING

The development of solutions based on data and data processing, such as Artificial Intelligence (AI) systems, aims to identify innovative ways to improve products and processes. Even in the development of technological solutions, the Group undertakes to place the individual and their needs first; this understanding is essential for solution developers, in order to create inclusive and non-discriminatory systems.

Related documents

2023 Policy on the protection and valorisation of personal data