Autoguidovie

Autoguidovie, headquartered in Italy, offers a mobile ticketing solution that allows users to purchase and validate travel tickets through a smartphone application. The application is not developed in‑house but is provided by the third‑party vendor MY CICERO, which hosts the platform and manages its backend infrastructure. Through this service, Autoguidovie enables customers to access ticketing functions remotely, reducing the need for physical ticket offices or paper‑based distribution. The mobile app represents the primary digital channel through which the organisation interacts with its users for fare collection. By relying on MY CICERO for the app’s operation, Autoguidovie focuses on delivering the ticketing service while the vendor handles technical maintenance and updates.

Specific quantitative details about Autoguidovie’s size, such as the number of active users, geographic coverage, or volume of transactions processed, are not disclosed in the available sources. Likewise, information regarding annual revenue, employee count, or fleet scale—if the organisation operates transport services—is absent from the provided material. Consequently, any description of the organisation’s scale must be limited to the qualitative facts that are explicitly stated. The lack of published metrics prevents a more detailed characterisation of its market reach or operational footprint.

Autoguidovie’s mobile ticketing platform processes personally identifiable information, including names, birth dates, tax codes and contact details, although it does not store payment card data externally. On 29 March 2025, the provider MY CICERO suffered a cybersecurity incident in which external malicious actors gained unauthorized access to its servers, resulting in a temporary outage of the app’s functionality and the subsequent exfiltration of the aforementioned user data to a remote cloud environment. The breach was confined to the ticketing application’s backend and did not affect externally stored financial information. In response, MY CICERO implemented containment measures and introduced additional security controls aimed at preventing recurrence of similar incidents. This event highlights Autoguidovie’s reliance on a third‑party service for critical customer‑facing technology and underscores the sensitivity of the data handled through its ticketing channel. The organisation’s headquarters in Italy situates it within a European regulatory framework that governs the protection of personal data.