Dear User, thank you for visiting our website. Below you will find information on how this website is managed with regard to the processing of personal data of users who consult it.

This notice is also provided pursuant to Article 13 of Legislative Decree No. 196/03 (Personal Data Protection Code) and Articles 13 and 14 of Regulation (EU) 679/2016 (hereinafter also referred to as “GDPR”) to those who interact with the web services directly provided by the Company. This information is provided solely for this website and not for other websites that may be consulted by the user via links. This policy is inspired by Recommendation No. 2/2001 adopted on 17 May 2001 by the European data protection authorities, gathered in the Working Group established under Article 29 of Directive 95/46/EC, which identifies minimum requirements for the online collection of personal data, in particular regarding the methods, timing and nature of the information that data controllers must provide to users when they access web pages, regardless of the purpose of the connection. We therefore invite you to read our Privacy Policy, outlined below. The Privacy Policy and standards adopted for the protection of personal data are based on the following principles:

A) DATA CONTROLLER

The Data Controller is the Company whose details are indicated in the footer of this website.

B) PRINCIPLE OF ACCOUNTABILITY

The processing of personal data is managed over time by specifically appointed persons within the Company’s organization.

C) PRINCIPLE OF TRANSPARENCY

Personal data are collected and subsequently processed in accordance with the principles set out in this Privacy Policy. At the time personal data are provided, the data subject is given a concise yet complete information notice, in compliance with Article 13 of Legislative Decree No. 196/03 and Articles 13 and 14 of the GDPR.

Personal data are processed lawfully and fairly; they are collected for specific, explicit and legitimate purposes; they are relevant and not excessive with respect to the purposes of processing; and they are retained for the time necessary to achieve the purposes for which they were collected.

D) PRINCIPLE OF PURPOSE LIMITATION

The purposes of the processing of personal data are communicated to the data subjects at the time of collection. Any new processing of data unrelated to the stated purposes will be carried out only after providing new information to the data subject and, where required by Legislative Decree No. 196/03 and the GDPR, obtaining their consent. In any case, personal data will not be disclosed to third parties or disseminated without the prior consent of the data subject, except in the cases expressly provided for by Article 24 of Legislative Decree No. 196/03 and by the GDPR.

E) PRINCIPLE OF VERIFIABILITY

Personal data are accurate and kept up to date. They are also organized and stored in such a way that the data subject may, if they so wish, be informed of which data have been collected and recorded, verify their quality, and request their correction, integration, deletion in the event of unlawful processing, or object to their processing, as well as exercise all other rights pursuant to and within the limits of Article 7 of Legislative Decree No. 196/03 and Articles 15 et seq. of the GDPR, by contacting the addresses indicated in the information notices pursuant to Articles 13 and 14 of the GDPR published on the Company’s website.

F) PRINCIPLE OF SECURITY

Personal data are protected by appropriate technical, IT, organizational, logistical and procedural security measures against the risks of destruction or loss, including accidental loss, and unauthorized access or unlawful processing. These measures are periodically updated in accordance with technological progress, the nature of the data and the specific characteristics of the processing, and are constantly monitored and verified over time. Third parties that provide any kind of support services for the delivery of services requested from the Company and that process personal data on its behalf are appointed as Data Processors and are contractually bound to comply with security and confidentiality measures. The identity of such third parties is made known to users.

The Company also assumes no responsibility for the rules and methods adopted by other websites for the processing of personal data, which may be accessed via links from this website, or for the content of any email services, web spaces, chats or forums provided to users.

Processing related to the web services offered by this website takes place at the Company’s premises and, where applicable, at the premises of the appointed Data Processors, and is carried out by authorized personnel responsible for managing the requested services, marketing activities (where requested by the user), data storage and occasional maintenance operations.

G) SCOPE OF DATA DISCLOSURE

Personal data provided may be disclosed to third parties in order to comply with legal obligations, execute orders from competent public authorities, or assert or defend a legal claim in court. Where necessary in relation to specific services or products requested, personal data may be disclosed to third parties acting as independent data controllers, whose activities are strictly related and instrumental to the provision of services or supply of products. Without such disclosure, these services or products could not be provided. Personal data will not be disseminated unless required for the provision of the requested service.

H) DATA VOLUNTARILY PROVIDED BY THE USER

The types of personal data collected and processed by this website are those necessary for the provision of the various services offered. Data are processed using paper-based, automated and electronic means and with logic strictly related to the purposes of processing. To provide the services, your telephone number and email address may also be used. It is therefore evident that failure to provide such data will make it impossible to supply the services that require their use.

The voluntary sending of emails to the addresses indicated on the website entails the acquisition of the sender’s email address, as well as any other personal data contained in the message. Such data will be used solely for the purpose of fulfilling the requested service or response.

I) BROWSING DATA

It should be noted that the software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. Although this information is not collected to be associated with identified users, it could, by its very nature and through association with data held by third parties (e.g. Internet service providers), allow users to be identified. This category includes IP addresses or domain names of the computers used by users connecting to the website, the URLs of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the server’s response (successful, error, etc.), and other parameters related to the user’s operating system and IT environment.

These data are used solely for the purpose of obtaining anonymous statistical information on website usage and to ensure its proper functioning. The Data Controller and, depending on the requested service, the appointed Data Processors retain connection and navigation logs for a limited period in accordance with applicable laws, in order to respond to any requests from judicial authorities or other competent public bodies in the event of investigations into computer-related offences.

Except as specified for browsing data, users are free to provide or not provide personal data requested in service registration forms. Some data may be marked as mandatory, as they are necessary for the provision of the requested service. Failure to provide such data will make it impossible to deliver the service.

At the time personal data are provided, pursuant to Article 13 of Legislative Decree No. 196/03 and Articles 13 and 14 of the GDPR, the data subject is provided with a concise, complete and transparent information notice regarding the purposes and methods of processing, whether the provision of data is mandatory or optional, the consequences of failure to provide data, the recipients or categories of recipients of the personal data, the scope of dissemination, the rights under Article 7 of Legislative Decree No. 196/03 and Articles 15 et seq. of the GDPR (access, rectification, updating, deletion, objection, etc.), and the identity and contact details of the Data Controller and Data Processors. Where required by law, the data subject is asked to provide informed, free and explicit consent. Where personal data are provided at a later stage, supplementary information notices and additional consent requests may be issued in accordance with the Privacy Code and the GDPR.

L) SECURITY MEASURES ADOPTED TO PROTECT COLLECTED DATA

The Company adopts secure architectures and technologies to protect personal data against unauthorized disclosure, alteration or misuse. These measures aim, in particular, to minimize the risks of destruction or loss, including accidental loss, unauthorized access or processing not compliant with the purposes of collection. Such security measures comply with the minimum requirements established by applicable law (Technical Regulations on minimum security measures pursuant to Articles 33 to 36 of Legislative Decree No. 196/03).

Data subjects have the right at any time to obtain confirmation as to whether or not personal data concerning them exist, to know their content and origin, verify their accuracy, or request their integration, updating or rectification (Article 7 of Legislative Decree No. 196/03 and Article 16 of the GDPR). They also have the right to request erasure, anonymization or blocking of data processed unlawfully, and to object to their processing for legitimate reasons. Requests should be addressed to the Company using the contact details provided in the footer of the website.