Privacy policy

Dear User, thank you for visiting our site.
In the following pages, we describe how the site is managed with regard to the processing of the personal data of the users who consult it.

WHY THIS NOTICE
This notice is also provided pursuant to Article 13 of Legislative Decree no. 196/03 (Personal Data Protection Code) and Articles 13 and 14 of European Regulation 679/2016 (hereinafter also "GDPR") to those who interact with the web services directly provided by the Company.
The information is provided for this website and not for other websites that may be consulted by the user via links. The information is based on Recommendation no. 2/2001 that the European authorities for the protection of personal data, brought together in the Group established by art. 29 of Directive no. 95/46/EC, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data online, and, in particular, the methods, timing and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection. We therefore invite you to read our Privacy Policy, set out below.
The Privacy Policy and Standards used for the protection of personal data are based on the following principles:
Data Controller
The data controller is NATURELLO SPA (hereinafter also "the Company"), VIA E.FERRARI 6/8, 36026 POJANA MAGGIORE (VI) P.IVA 02779290242

PRINCIPLE OF RESPONSIBILITY
The processing of personal data is managed over time by managers identified within the company organisation.

PRINCIPLE OF TRANSPARENCY
Personal data are collected and subsequently processed according to the principles expressed in this Privacy Policy. At the moment of the eventual conferment of data, the interested party is provided with a brief but complete information notice, according to the provisions of art. 13 of Legislative Decree no. 196/03 and art. 13 and 14 of the GDPR.

PRINCIPLE OF RELEVANCE OF THE COLLECTION
Personal data are processed lawfully and fairly; they are recorded for specific, explicit and legitimate purposes; they are relevant and not excessive for the purposes of processing; they are kept for the time necessary for the purposes of collection.
 
PRINCIPLE OF PURPOSE OF USE
The purposes of personal data processing are made known to the data subjects at the time of collection. Any new processing of data, if unrelated to the stated purposes, is activated subject to new information being provided to the data subject and any request for consent, when required by Legislative Decree no. 196/03 and the GDPR. In any case, personal data shall not be disclosed to third parties or disseminated without the prior consent of the data subject, except in the cases expressly indicated in Article 24 of Legislative Decree no. 196/03 and the GDPR.
 
PRINCIPLE OF VERIFIABILITY
Personal data are accurate and updated over time. They are also organised and stored in such a way that the data subject is given the opportunity to know, if he/she so desires, which data have been collected and recorded, as well as to check their quality and request their correction, integration, cancellation for violation of the law or opposition to processing and to exercise all other rights, pursuant to and within the limits of Art. 7 of Legislative Decree no. 196/03 and art. 15 et seq. of the GDPR, at the addresses indicated in the Informative Notices ex art. 13 of Legislative Decree no. 196/03 and ex art. 13 and 14 of the GDPR present on the Company's website.
 
SECURITY PRINCIPLE
Personal data are protected by technical, IT, organisational, logistical and procedural security measures against the risks of destruction or loss, even accidental, and against unauthorised access or unauthorised processing.
These measures are updated periodically on the basis of technical progress, the nature of the data and the specific characteristics of the processing, and are constantly monitored and verified over time. Third parties that perform support activities of any kind for the provision of the services requested by the Company, in relation to which they perform personal data processing operations, are designated by the latter as Data Processors and are contractually bound to comply with the measures for the security and confidentiality of processing. The identity of said third parties is made known to users.
The Company also assumes no responsibility for:
1. the rules and methods of handling personal data of other websites, which can be reached from our pages through links and cross-references;
2. the contents of any e-mail services, web spaces, chat forums provided to users.
The processing operations connected to the web services offered by this site take place at the Company, and possibly at the offices of the persons in charge of processing, and are carried out by persons in charge of processing who are responsible for managing the services requested, marketing activities - where requested by the user - data storage activities and occasional maintenance operations.
 
SCOPE OF DATA COMMUNICATION
The personal data provided may be communicated to third parties in order to comply with legal obligations, in execution of orders from public authorities legitimated to do so, or to assert or defend a right in court. If necessary in relation to particular services or products requested, personal data may be communicated to third parties who carry out, as autonomous data controllers, functions strictly connected and instrumental to the provision of services or supply of products. Without the communication, these services and products could not be provided. Personal data will not be disseminated, unless the service requested requires it.
 
DATA PROVIDED VOLUNTARILY BY THE USER
The types of personal data collected and processed on this site are those necessary for the provision of the various services provided. The data collected is processed using paper, automated and telematic methods and with logic strictly related to the purposes of processing. Your telephone number and e-mail address may also be used to provide you with the services. It is therefore obvious that, if these data are not provided, you will not be able to receive those services that require the use of these tools. If you voluntarily send e-mails to the addresses indicated on the site, we will acquire the sender's address as well as any other information contained in the message; this personal data will be used solely for the purpose of performing the service or provision requested.
 
NAVIGATION DATA
It is useful to know that the site's software procedures acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. Although this information is not intended to be associated with identified users, by its nature, if it is associated with other data held by third parties (e.g. your internet service provider), it could allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by the users who connect to the site, the addresses in URL (Uniform Resource Locator) notation of the resources requested, the time of the request, the method used to submit the request to the server, the of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment. This data is used solely for the purpose of anonymous statistics on the use of the site and to check its correct operation. The Data Controller and, depending on the service requested, the designated Managers keep, for a limited period of time in accordance with the law, the trace (LOG) of the connections/navigations made in order to respond to any requests from the judicial authorities or other public body legitimated to request said trace for the purpose of ascertaining possible liability in the event of computer crimes.
Apart from what is specified for navigation data, the user is free to provide or not to provide the personal data requested in the service registration form. On this form, however, some data may be marked as mandatory; it must be understood that this data is necessary for the provision of the requested service. If this data is not provided, the requested service cannot be provided.
At the time of providing the data, in accordance with the provisions of Art. 13 of Legislative Decree no. 196/03 and Art. 13 and 14 of the GDPR, the interested party is provided with a brief but complete and transparent information on the purposes and methods of processing, on the compulsory or optional nature of providing the data, on the consequences of not providing the data, on the subjects or categories of subjects to whom the personal data may be communicated and the scope of dissemination of the data, on the rights under Art. 7 of Legislative Decree no. 196/03 and Art. 15 et seq. of the GDPR (access, integration, updating, correction, deletion for violation of the law, opposition to processing, etc.), the identity and location of the Data Controller and Data Processors. The data subject is therefore called upon to give his or her informed, free consent, expressed in a specific form and documented in the form provided for by law, where required by the same. Should personal data be provided at a later stage, additions may be made to the information previously provided and new processing consents may be requested, as provided for by the Privacy Code and the GDPR.
 
SECURITY MEASURES ADOPTED TO PROTECT THE DATA COLLECTED
The Company uses 'secure' architectures and technologies to protect personal data against undue disclosure, alteration or improper use. The protections activated with regard to personal data are aimed, in particular, at minimising the risks of destruction or loss, even accidental, of the data, unauthorised access or processing that is not permitted or does not comply with the purposes of collection. These security measures obviously meet the minimum requirements indicated by the legislator (Technical Regulations on minimum security measures in Articles 33 to 36 of Legislative Decree No. 196/03). The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence or non-existence of such data and to know their content and origin, check their accuracy or request their integration or update, or rectification (Art. 7 of Legislative Decree no. 196/03 and Art. 16 of the GDPR). Pursuant to the same article, the interested party has the right to request the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, their processing. Requests should be sent to NATURELLO SPA, by writing to c.paccagnella @natruello.eu
 
PURPOSE OF DATA PROCESSING:
1.    Execution of computer authentication
2.    Optimising user navigation
3.    Session monitoring and anonymous statistical analysis
4.    User profile definition based on the preferences expressed during navigation
 
DATA PROCESSING METHODS:
The data is processed using electronic instruments, with logic strictly related to the purposes indicated above and, in any case, in such a way as to guarantee the security and confidentiality of the data.
 
DURATION OF DATA PROCESSING:
Technical cookies will have the duration necessary to fulfil your requests.
 
SUBJECTS TO WHOM THE DATA MAY BE COMMUNICATED:
The data may be disclosed to all subjects who carry out on behalf of the company activities necessary for the provision of cookies as detailed above in your favour. The subjects belonging to the above-mentioned categories, to whom the data may be communicated, will use the data as "holders" in full autonomy.
The cookies managed by third parties have the duration indicated by their respective Cookie Policies belonging to third parties other than NATURELLO SPA.
 
RIGHTS OF THE INTERESTED PARTY
You can exercise your right to object to the use of cookies by leaving the site and also by refusing the use of technical cookies essential for your navigation. If, on the other hand, you wish to browse the site but refuse the use of third party cookies, you can always refuse consent by disabling them from the main browsers. You shall have the right to obtain from the Company confirmation as to whether or not personal data concerning you exist, the source of the personal data, the purposes and methods of the processing, the logic applied, if the processing is carried out with the help of electronic means, as well as the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of the data in their capacity as data processors or persons in charge of the processing; You will also have the right to the cancellation, transformation into an anonymous form or blocking of data processed in violation of the law, the portability of your data, as well as the updating, rectification, limitation or, if you so request, the integration or to receive a copy of the data being processed. You also have the right to lodge a complaint with the Privacy Guarantor.
For any communication regarding the processing of personal data by NATURELLO SPA, you may contact the same by writing to c.paccagnella@naturello.eu.
 
DATA CONTROLLER
The data controller is NATURELLO SPA , VIA E.FERRARI 6/8 36026 POJANA MAGGIORE (VI)- P.IVA 02779290242.

Consent to the use of cookies.

For our website to function properly we use cookies. To obtain your valid consent for the use and storage of cookies in the browser you use to access our website and to properly document this we use a consent management platform: CookieFirst. This technology is provided by Digital Data Solutions BV, Plantage Middenlaan 42a, 1018 DH, Amsterdam, The Netherlands. Website: https://cookiefirst.com referred to as CookieFirst.

When you access our website, a connection is established with CookieFirst’s server to give us the possibility to obtain valid consent from you to the use of certain cookies. CookieFirst then stores a cookie in your browser in order to be able to activate only those cookies to which you have consented and to properly document this. The data processed is stored until the predefined storage period expires or you request to delete the data. Certain mandatory legal storage periods may apply notwithstanding the aforementioned.

CookieFirst is used to obtain the legally required consent for the use of cookies. The legal basis for this is article 6(1)(c) of the General Data Protection Regulation (GDPR).

Data processing agreement

We have concluded a data processing agreement with CookieFirst. This is a contract required by data protection law, which ensures that data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

Server log files

Our website and CookieFirst automatically collect and store information in so-called server log files, which your browser automatically transmits to us. The following data is collected:

  • Your consent status or the withdrawal of consent
  • Your anonymised IP address
  • Information about your Browser
  • Information about your Device
  • The date and time you have visited our website
  • The webpage url where you saved or updated your consent preferences
  • The approximate location of the user that saved their consent preference
  • A universally unique identifier (UUID) of the website visitor that clicked the cookie banner
Get in touch with Naturello
We are ready to give you all the information you need, fill in the form below and one of our specialists will contact you to answer your questions.
Get in touch with Naturello!
Sign up for our newsletter to be kept up-to-date on all our news.