Privacy Policy

INFORMATION MADE PURSUANT TO ART. 13-14 OF THE GDPR  (GENERAL DATA PROTECTION REGULATION)  2016/679

Last updated 13/06/2018

According to the indicated legislation, the processing of personal data will be based on principles of correctness, lawfulness, transparency and protection of your privacy and your rights.

Pursuant to the GDPR, our site manages the data of its users in compliance with current regulations, therefore, we provide you with the following information:

The information is not to be considered valid for other websites that may be consulted through links on the websites of the owner, who is not to be considered in any way responsible for the websites of third parties.

1. DATA CATEGORIES

The Data Controller, indicated below, will process your personal data such as:

Data collected automatically. The computer systems and applications dedicated to the operation of this website detect, during their normal operation, some data (the transmission of which is implicit in the use of Internet communication protocols) potentially associated with identifiable users. The collected data includes the IP addresses and domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters concerning the operating system, the browser and the IT environment used by the user. These data are processed, for the time strictly necessary, for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its regular functioning. The provision of such data is mandatory as it is directly connected to the web browsing experience.

Data provided voluntarily by the user. The voluntary and explicit sending of e-mails to the addresses indicated in the different access channels of this site does not involve a request for consent and the possible compilation of specifically prepared forms entail the subsequent acquisition of the address and data of the sender / user, necessary to respond to the requests produced and / or provide the requested service. The voluntary sending, by you, of e-mails to our e-mail addresses does not require further information or requests for consent, therefore the user's data must be considered acquired and, therefore, treated in full compliance with current legislation. On the contrary, specific summary information will be reported or displayed on the pages of the site prepared for particular services on request (form).

Cookies.  The use of so-called technical cookies is limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe and efficient exploration of the site. The so-called session cookies used on this site avoid the use of other IT techniques that are potentially prejudicial to the confidentiality of users' browsing and do not allow the acquisition of the user's personal identification data. (For more information, a specific  cookies policy is available . )

2. SUBJECTS OF THE TREATMENT

DATA CONTROLLER , pursuant to art. 4 and 24 of EU Reg. 2016/679 is LNT sas di Mugnaini Luca & C. , with registered office in Via Farabola Est, 34 55049 Viareggio (LU) Italy, e-mail:  This email address is being protected from spambots. You need JavaScript enabled to view it.  VAT number: IT02596020467 .

The Data Controller guarantees the security, confidentiality and protection of the data in its possession, at any stage of the data processing process.

3. PURPOSE, LAWFULNESS OF THE PROCESSING AND LEGAL BASIS

The processing of your data has your consent as its legal basis. The personal data provided will be processed in compliance with the conditions of lawfulness pursuant to art. 6 EU Reg. 2016/679 for the following purposes:

1. a) Management of data processing inherent (Article 6 letter b)):

- navigation on this website;

- possible compilation of data collection forms for sending an information request to the data controller;

- fulfillment of contractual and legal obligations and administrative-accounting purposes. For the purposes of applying the provisions on the protection of personal data, the treatments carried out for administrative-accounting purposes are those connected to the performance of organizational, administrative, financial and accounting activities, regardless of the nature of the data processed.

4. RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA

The personal data provided may be disclosed to recipients, appointed pursuant to art. 28 of EU Reg. 2016/679, which will process the data as managers and / or as natural persons acting under the authority of the Data Controller and the Manager, in order to comply with contracts or related purposes. Specifically, the data may be disclosed to recipients belonging to the following categories:

- Subjects that provide services for the management of the information system and communication networks of the Data Controller, (including e-mail);

- Studies or companies in the context of assistance and consultancy relationships;

- Competent authorities for the fulfillment of legal obligations and / or provisions of public bodies, upon request;

- In the case of administrative and accounting purposes, the data may possibly be transmitted to commercial information companies for the assessment of solvency and payment habits and / or to subjects for credit recovery purposes.

- Subjects belonging to the distribution network;

- Service and logistics companies that carry out support activities for the commercial office.

The subjects belonging to the aforementioned categories perform the function of data processing manager, or operate in total autonomy as separate data controllers.

The list of designated data processors is constantly updated and available at the headquarters of the Data Controller.

5. DATA TRANSFER TO A THIRD COUNTRY AND / OR AN INTERNATIONAL ORGANIZATION

The personal data provided will not be transferred abroad within or outside the European Union.

6. STORAGE PERIOD OR CRITERIA

The treatment will be carried out in an automated and / or manual form, with methods and tools aimed at guaranteeing maximum security and confidentiality, by persons specifically appointed to do so.

In compliance with the provisions of art. 5 paragraph 1 letter. e) of EU Reg. 2016/679, the personal data collected will be stored in a form that allows identification of the data subjects for a period of time not exceeding the achievement of the purposes for which the personal data are processed. The User can always request the interruption of the treatment or access to your personal data, the correction, the cancellation of the same, the limitation of the treatment. Timing determined on the basis of criteria that the interested party can have information about by writing to  This email address is being protected from spambots. You need JavaScript enabled to view it.

7. SECURITY AND TRANSFER OF PERSONAL DATA

The transfer, storage and processing of user data that are collected through the Site are ensured through appropriate technical measures.

User data is collected, archived and stored on a secure server, protected by an SSL certificate.

8. THE PRIVACY OF MINORS

Our website is aimed at a general public and does not offer services aimed at children. If the person providing the data is under the age of 16, this processing is lawful only if and to the extent that such consent is given or authorized by the holder of parental responsibility for whom the identification data and a copy of the identification documents.

9. ABOUT THIS PRIVACY POLICY

The Data Controller is responsible for this PRIVACY POLICY.

10. NATURE OF THE PROVISION AND REFUSAL

Apart from that specified for navigation data, the user is free to provide personal data in dedicated areas on the site.

The provision of personal data for the purposes referred to in point a) of this information document is necessary to refine the specific functions and use the services offered to the Data Controller, for example to receive feedback on the request for information sent. Failure to provide personal data may make it impossible to obtain the requested service or to use the services offered by the site. The provision of the requested data is necessary and mandatory for the validity of the contract that formalizes and regulates the relationship for the provision of the requested services. Failure or incorrect provision, as well as failure to communicate changes to the data in question, it could prevent the conclusion of the contract itself and / or it could make it impossible to fulfill exactly the legal obligations, as well as those deriving from the contract in progress. The same data could be used for direct marketing purposes or for sending greetings on the occasion of holidays.

11. MANIFESTATION OF CONSENT

As regards the provision of data for the fulfillment of contractual obligations, a written consent is not required; by express regulatory provision, it is a necessary and sufficient condition that the customer is duly informed.

12. AUTOMATED DECISION-MAKING PROCESSES

The Data Controller does not carry out treatments that consist of automated decision-making processes.

13. WEBSITES of third parties and other sites owned by the Owner

It should be noted from now that, should the Site contain links that refer to websites of third parties, the Data Controller cannot exercise any control over the content of such websites nor does it have any access to the personal data of the users visiting them.

The owners of the aforementioned websites will therefore remain the sole and exclusive owners and managers of the processing of the personal data of their users, remaining, the Owner, unrelated to this activity as well as to any liability, prejudice, cost, which may derive from its failure or incorrect completion.

The Site may also contain links to other sites owned by the Owner.

It is therefore advisable to carefully read the related privacy policies and terms of use of these websites, before providing or consenting to the processing of your personal data.

14. RIGHTS OF THE INTERESTED PARTIES

You will be able to assert your rights as expressed by the articles. 15, 16, 17, 18, 19, 20, 21, 22 of EU Regulation 2016/679, by contacting the Data Controller, by writing to the email address:  This email address is being protected from spambots. You need JavaScript enabled to view it.  or to the address of the office.

You have the right, at any time, to ask the Data Controller to access your personal data, to correct them, to cancel them, to limit their processing.

Furthermore, you have the right to object, at any time, to the processing of your data (including automated processing, eg profiling) as well as to the portability of your data.

Without prejudice to any other administrative and judicial appeal, if you believe that the processing of data concerning you violates the provisions of EU Reg. 2016/679, pursuant to art. 15 letter f) of the aforementioned EU Reg. 2016/679, you have the right to lodge a complaint with the Guarantor for the protection of personal data and, with reference to art. 6 paragraph 1, letter a) and art. 9, paragraph 2, letter a), you have the right to withdraw the consent given at any time.

You have the right to obtain confirmation of the existence or otherwise of your personal data and their communication in an intelligible form, including the rights referred to in Article 7 of the Privacy Code, Legislative Decree 196/2003.

Any corrections or cancellations or limitations of the processing carried out at the request of the interested party - unless this proves impossible or involves a disproportionate effort - will be communicated by the Company to each of the recipients to whom the personal data have been transmitted. The Company may communicate these recipients to the interested party if the interested party requests it.

The exercise of the rights is not subject to any formal constraint and is free of charge.

In the event of a request for data portability, the Data Controller will provide you with the personal data concerning you in a structured format, commonly used and readable by an automatic device, without prejudice to paragraphs 3 and 4 of art. 20 of EU Reg. 2016/679.