Governance

Protecting the confidentiality and security of information on individuals is a key factor in our activities, which is why we are committed to ensuring that the collection and further processing of personal data is carried out in compliance with applicable legislation.
 

Lawfulness, fairness and transparency. Storage limtiation. Integrity and confideantiality. Data accuracy and updating. Purpose limitation. Data minimization

• ESG audit controls to assess the level of preparedness for managing climate and environmental risks. The possible effects on internal policies and procedures, as well as on the internal control system, were also analysed.
• Verification of the Bank’s implementation of ESG regulatory framework with the aim of assessing the adequacy of the organisational procedures and systems for the prevention of non-compliance risks in the field of sustainability.

Integrity, confidentiality and availability of data are protected by an Information Security Management System which has been certified ISO/IEC 27001:2013 since 2006 and is constantly evolving. All employees are engaged in this area thanks to the internal IT Regulation, which promotes the secure use of digital resources. In an increasingly connected world, cybercriminals are targeting end users in particular: this is precisely why the Bank invests in the dissemination of good security practices, through the adoption of tools such as:

• the ten rules for online safety;
• the Navigosereno service, which provides practical advice and periodic checks on PCs, smartphones and tablets.

For further details: popso.it/sicurezza-online (in Italian).

Artificial Intelligence is revolutionising the way we do business, boosting efficiency through smart data analysis. With the introduction of the EU AI Act (Regulation (EU) 2024/1689) innovation develops in compliance with fundamental rights. We have launched concrete projects involving AI, such as Predittive, OutlAIer, Òmìnà and EWM, already operational at our headquarters and branches. FrodIA will be launched soon to combat bank transfer fraud.
We are currently also in the process of testing PopsoGPT mini, a generative AI assistant that helps employees find information using natural language: an innovative tool that has already received positive feedback and that will soon be extended to other business areas.

We are committed to making technology accessible to all, with particular attention to the needs of people with disabilities. The new www.popso.it website has been online since 23 December 2024, and it is designed to ensure browsing using screen readers, voice synthesisers and full usability from any device.

Our commitment to inclusion also translates into a complete range of digital services: bank transfers (including instant), Braille statements, top-ups, F24, IMU, and TARI tax payments, as well as pagoPA payments in favour of the public administration, which are also available on SCRIGNOPagoFacile and can be used by everyone, even non-customers.
Digital services are available in Italian, English, French and German, and the SCRIGNOapp and SCRIGNOIdentiTel apps include advanced, multilingual features.