Privacy Policy

Privacy Policy

This Informative Notice is released pursuant to Articles 13 and 14 of EU Regulation 2016/679 (hereinafter “GDPR”) for the users of website seguito, the “Website”).

1. Data controller

The Data Controller is

Notte Vandebosch Milano S.p.a.

Via Savona 97,

20144 Milano

Contact address: for any clarifications and questions concerning our privacy policy, the exercise of the rights of the interested party aa provided by the applicable laws, the contact address is as follows:

2. Policies of data controller regarding personal data - navigation of the website

Through the website the Controller may directly or indirectly collect personal data (also "Personal Data" or only "Data") of the user (hereinafter, "User" or for the purposes of the legislation on the subject of data privacy "Concerned” or “Interested person”) in accordance with the applicable laws.

The User, while on the website, is always provided with clear and transparent information regarding the processing and potential processing that is made of his/her personal data, specific collection and use cases are reported and, in the event that this is necessary, his / her consent to treatment is requested.

3. Ways of collection of data

The personal data of Users may be collected automatically or by effect of Users’ interaction with the Website, as specified below.

4. Purposes of the processing

The personal data of Users who browse for information on the Website will be processed for purposes related to the functionality of the Website and navigation within the various sections.

The data of Users wishing to access specific sections of the Website (for example, for collaborations or for submitting personal job applications or other) may be processed for these specific purposes. The additional processing activities that may be necessary for these activities are appropriately highlighted within the individual sections ,with specific information and, if necessary, consent is requested in accordance with the law, - so that the processing of personal data of Users may take place exclusively with the Users’ consent.

5. Data processed

By browsing this Website, common personal data such as name, address, user name, e-mail address and telephone number, or even the IP address of the device used or User’s preferences can be collected and processed, in particular:

(i) Data acquired automatically: navigation data

The computer systems and software procedures, used to operate this website, may temporarily acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified concerned parties, but which, by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of the computers used by the Users who connect to the Website, the addresses in the Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the User's computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the Website and to check its correct functioning. Said data are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical IT crimes to the detriment of the Website: apart from this eventuality, the data on web contacts do not persist for more than seven days. For more information, please read the Cookie Policy of this Website available by clicking here.

(ii) Data on geolocation

This Website may, with the prior consent of the User, locate its position in order to allow it to better enjoy the services. The geolocation option is connected to the device operating system.

The geolocation will be enabled only if the user gives his consent to the manufacturer of the operating system of his device in the appropriate box that will appear. Even if you have given your consent, you can deactivate the option even temporarily, reactivating it through the settings of your device whenever it deems appropriate.

(iii) Data voluntarily shared

Through specific sections of this Website, the User will be able to voluntarily release his / her personal data, including the e-mail address to request and receive information about services provided, as well as contact our staff to obtain information on the services offered or book a service. The Data Controller and the categories of data collected and any other information required by Articles 13 and 14 of the GDPR are specifically identified in the privacy information on the margins of the individual data entry forms.

In cases where the provision of the service implies the collection and use of health data, this will be specified.

For information on cookies and the use of this Website, please refer to the Cookie Policy.

6. Optional nature of the provision of data

The User is free to provide personal data contained in the information request forms. In some cases that will be appropriately highlighted, their non-conferment may make it impossible to obtained the required services.

7. Essentiality

Through this Website personal data are collected and stored only when this is essential for the achievement of the stated purpose.

In the management of information, we use quality criteria to minimize the possibility that inaccurate information is used.

8. Place of processing of personal data

The processing of personal data relating to the services of the Website takes place at the headquarters of the Owner and possibly of managers, sub-managers and persons in charge, as specified below.

Users' personal data may be made available to other companies that have the role of Data Processors for activities connected to the aforementioned purposes, or of any other person to whom the data must be communicated pursuant to legal and contractual obligations .

The treatment may, limited to these cases, take place at the premises of these subjects.

Managers, and other subjects in charge of the processing by the Data Controller will operate on the basis of specific instructions given by the Owner in the context of contractual agreements as foreseen by Art. 28 GDPR.,

A complete list of the persons appointed as Data Processors (“Responsabili”) will be made available by sending a written request to the contacts indicated in this Privacy Policy.

9. Processing methods

Personal data collected through navigation are collected electronically and processed using automated tools that guarantee security and confidentiality. The data acquired through specific sections of the Website may be processed by automated and manual means. Specific security measures are taken to prevent loss, illicit use and unauthorized access.

10. Storage of data

Users' data will be processed for the time and to the extent necessary to achieve the purposes for which they were collected.

11. Minors

Access to some features of the Website and / or some services and / or may be limited to underage Users or those users who are less than the age defined by the Owner (on the Website or indicated in other digital channels).
The Data Controller may use the personal data of underage users to carry out checks on their age and enforce any restrictions on the age they have defined or required by law.

12. External links to the Website

The Website contains external links to third-party websites. When clicking on these links, the Data Controller no longer has any influence on the collection, storage and processing of all details (for example the IP address or URL of the page on which the link is located) transmitted to them third parties, third party conduct is by definition beyond our control. The Data Controller accepts no responsibility for the processing of such personal data by third parties

13. Exercise of the rights of the interested party

The User, as an Interested party, can exercise his rights towards the Owner as defined in Articles 15-22 and 34 of the GDPR, specifically:

- exercise the opposition to the treatment in whole or in part;
- obtain the cancellation of data held by the holder;
- obtain the updating or correction of the data provided;
- ask and obtain in an intelligible form the data held by the holder (right of access);
- requesting and obtaining anonymous data transformation;
- request and obtain the block or limitation of data processed in violation of the law and those whose retention is no longer necessary in relation to the purposes of the processing;
- receive prompt communication regarding breaches of the integrity of their data according to Art 34 GDPR.

The interested party can directly contact the Data Controller for the exercise of his rights (interpello). Even if it is only the owner who is obliged to give feedback, the controller is obliged to collaborate with the owner for the purpose of exercising the rights.

In case of non-response, or inadequate response, you can contact the administrative (Guarantor) or judicial authority for the protection of your rights.

The deadline for the reply by the Controller is 1 (one) month for all rights. This term can be extended to 3 (three) months in cases of particular complexity.

753155 1440x360%23 0751 banner urban 01