Privacy Policy

Data controller is:

All services on this website and other websites controlled by the Owner are governed by this Privacy Policy. End users may browse the website without providing personal information. Processed personal data falls into three types:

2.1.1 Mandatory data: personal information.

The Owner may collect personal information to directly communicate with the end user and respond to requests. When placing orders or requesting technical materials, the Owner may need to process personal information provided verbally, via web forms, or by email.

2.1.2 Optional data: commercial information, email addresses, and social/web pages.

Data that facilitates commercial information exchange, provided at the user's discretion upon explicit consent.

2.1.3 Technical data.

The Owner may collect technical information (e.g. IP address) to validate consent requests for data processing.

By accepting this privacy policy, users grant explicit consent to the use of their personal data. The processing is based on:

• The need to fulfill contract obligations for products and services provided under signed agreements.
• Consent, if required for legal purposes.
• Conformity to legal obligations, such as electronic invoicing requirements.

Data will be processed to allow activities related to the requested service. Commercial information will only be sent if expressly authorized. Data will be processed lawfully and with the utmost confidentiality, in compliance with GDPR security measures. Specifically for:

• Providing requested services and finalizing contracts;
• Administrative, accounting and tax purposes;
• Sending commercial communications, only with explicit consent;
• Business contacts by the Owner and partner companies;
• Gifts and promotional material.

Mandatory data may be disclosed to commercial consultants for administrative and accounting purposes, to lawyers for litigation management, and to banks for collecting due amounts. Data are not otherwise diffused, except for legitimate requests by judicial authorities.

Collected data are processed at the Owner's headquarters or at Web Hosting servers located within the European Union. The web hosting acts in accordance with European laws.

Mandatory data for contract and accounting purposes are kept for the time needed to manage the business relationship, and in any case not later than 10 years after the end of the relationship. Data of those who do not establish a commercial relationship, despite having had a previous contact, will be deleted within 60 days, unless informed consent for commercial promotion has been validly obtained.

In accordance with the GDPR, users may exercise the following rights by contacting the Owner:

• Access — obtain confirmation of the existence of personal data and their communication.
• Rectification — update or correct personal data.
• Deletion — obtain erasure of data processed in breach of law or no longer necessary.
• Restriction and portability — request limitation of processing or receive data in a structured format.
• Objection — object to processing for legitimate reasons.
• Withdrawal of consent — revoke consent at any time.
• Complaint — lodge a complaint with the relevant supervisory authority.

Users may exercise their rights via registered mail or via the Owner's certified email address.