Privacy Policy


  1. This section contains information on how all the websites of Novellini Group companies are managed (ICANN codes are authentic) with regard to the processing of user data relating to websites.
  2. This policy statement is also valid for the purposes of Articles 13 and 14 of Regulation (EU) 2016/679, concerning the protection of individuals with regard to the processing of personal data - and the free movement of such data - for persons who interact with all Novellini Group websites that can be accessed at the address corresponding to the website homepage: e/o
  3. This notice is provided only for and not for any other websites that you may consult through links contained therein.
  4. The purpose of this document is to provide information on the procedures, the timing and the nature of the information that data controllers must provide to users at the time of connection to the web pages of, regardless of the purpose of the connection, in accordance with national and European legislation.
  5. This notice may be changed due to the introduction of new rules in this regard, therefore please check this page periodically.
  6. If the user is under 16 years of age, pursuant to Article 8 (1) Regulation (EU) 2016/679, he/she must legitimise his/her consent through the authorisation of the parents or his/her legal guardian.
  1. Data Controller
    • The data controller is the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of the processing of personal data. The data controller also manages security profiles.
    • The data controller for this website is: BARBARA NOVELLINI – Legal Representative, and for any clarification or exercise of your rights you may contact her at the following email address:
  2. Data Protection Officer (DPO)
    1. Pursuant to Article 37 of Regulation (EU) 2016/679, upon appointment of the data controller, a DPO is available at
  3. Data Processing Location
    • The data generated by the use of the Novellini Group websites is processed at the registered offices of Novellini Group companies.
    • If necessary, data relating to the newsletter service may be processed by the data controller or persons appointed by the latter at the relevant office.
  1. Type of Cookies
    • Websites use cookies to make your browser experience easier and more intuitive: cookies are small text strings used to store certain information that may affect you, your preferences, or your Internet access device (computer, tablet or mobile phone), and are used primarily to adapt the website to your expectations, providing you with a more personalized browsing experience and storing your previous choices.
    • A cookie consists of a reduced set of data transferred to your browser by a web server and can only be read by the server that carried out the transfer. Cookies are not executable code and do not transmit viruses.
    • Cookies do not record any personal information and no identifiable data will be stored. If you wish, you may prevent some or all cookies from being saved. However, in this case, the use of the website and the services offered could be compromised. To proceed without modifying the cookies options, simply continue browsing. The types of cookies that the websites use are as follows:
  2. Technical Cookies
    • There are many technologies used to store information on your computer, which are then collected from websites. The most well-known and used of these is the HTML cookies. They are used for browsing and for making it easier for you to access and use the website. They are necessary for the transmission of electronic communications that is, to the service provider to deliver the service requested by the customer.
    • The settings for managing or deactivating cookies may vary depending on your internet browser. However, you can manage or request general deactivation or deletion of cookies by changing your internet browser settings. This can slow down or block access to certain parts of the websites.
    • Using technical cookies enables secure and efficient use of websites.
    • Cookies that are entered into the browser and transmitted through Google Analytics - or through the blogger statistical service or similar service - are only technical if used for website optimisation purposes directly by the website owner, which may collect aggregate information on the number of users and how they visit the website. Under these conditions, cookies analytics are subject to the same rules for information and consent as for technical cookies.
    • From a duration perspective, you can differentiate between temporary session cookies - which are automatically deleted at the end of the browsing session and are used to identify you and allow you to avoid logging into each page you visit - and permanent cookies, which remain active in the computer until they expire or you delete them.
    • Session cookies may be installed to you allow access and remain in the portal's restricted area as an authenticated user.
    • They are not stored on a permanent basis, but only for the duration of the browsing session until the browser is closed, and they disappear when the browser is closed. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server, which is required to enable secure and efficient exploration of the website.
  1. Methods of Data Processing
    • Like all websites, this website also uses log files in which information that is automatically collected during user visits is stored. The information collected may be as follows:
      - internet protocol (IP) address;
      - browser type and device parameters used to connect to the website;
      - internet service provider (ISP) name;
      - visit date and time;
      - webpage of origin for the visitor (referral) and the exit webpage;
      - (possibly) number of clicks.
    • The above information is processed in automated form and collected in exclusively aggregated form in order to verify the correct operation of the website, and for security reasons. Such information shall be processed in accordance with the legitimate interests of the data controller.
    • For security purposes (anti-spam filters, firewalls, virus detection), the automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with applicable laws, to block attempts to: damage the website; cause harm to other users; or in any case engage in harmful or criminal activities. Such data is never used for the identification or profiling of the user, but only for the protection of the website and its users, such information will be processed in accordance with the legitimate interests of the data controller.
    • If websites allow comments to be entered, or in the case of specific services you have requested, including the possibility of sending your resume for potential employment, websites will automatically collect and record certain of your identification data, including your email address. This information is deemed to have been provided voluntarily by you at the time of the request for the provision of a service. By inserting a comment or other information, you expressly agree to the privacy policy, and in particular you agree that the content you have entered shall be freely disseminated to third parties. The data received will only be used for the provision of the requested service and solely for the time required to provide the service.
    • The information that the users of the websites deem to have made public through the services and tools provided to them is provided by the user knowingly and voluntarily, exempting these websites from any liability for any violation of the law. It is the responsibility of the user to verify that he/she has permission to release a third party’s personal data or to release content protected by national and international standards.
  2. Purpose of the Data Processing
    • The data collected by the websites during its operation are used for the purposes indicated above and for the following purposes: requests for marketing purposes.
    • Data will be stored for the period strictly necessary to achieve the above purpose, but no longer than 1 year.
    • In any case, the data collected by the websites will never be provided to third parties for any reason, unless it is a legitimate request by the judicial authority and only in the instances provided for by law.
    • The data used for security purposes (to block attempts to damage the websites) are stored for the time strictly necessary for the achievement of the purpose indicated above.
  3. Data Provided by the User
    • As indicated above, the voluntary, explicit and voluntary sending of e-mail to the addresses indicated on these websites involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data entered in the letter.
    • Specific summary information statements shall be progressively provided or displayed on pages prepared for particular on-demand services.
  4. Support in Setting up your Browser
  1. Articles 13 and 14 of Regulation (EU) 2016/679 lists your rights.
  2. The websites wish to inform the user of the existence of the following rights:
    • the right of the data subject to request access to personal data from the data controller, to right to update, rectify, supplement his/her personal data or to limit the processing relating to his/her personal data or to oppose, for legitimate reasons, the processing of his/her personal data, as well as the right to data portability (Article 20 of the EU Regulation);
    • the right to request the erasure (Article 17 of the EU Regulation), the rendering anonymous or the blocking of data processed in violation of the law, including data that do not need to be stored in relation to the purposes for which they were collected or subsequently processed;
    • the right to obtain proof that the operations for updating, amending, supplementing of data, as well as their deletion, blocking, and transformation, have been brought to the attention - including with regard to their content - of those to whom the data has been communicated or disseminated, except in the event that the fulfilment of this task proves impossible or involves the use of means manifestly disproportionate to the right protected;
  3. Requests may be addressed to the data controller without formal procedure or, alternatively, using the form provided for by the Italian Data Protection Authority, or by sending an email to:
  4. If the processing is based on Article 6(1)(a) - express consent to use - or Article 9(2)(a) - express consent for the use of genetic, biometric or health data revealing religious, philosophical or trade union affiliation, or revealing racial or ethnic origin, political opinions - you have the right to withdraw consent at any time without prejudice to the lawfulness of the processing based on consent given prior to the withdrawal of consent.
  5. Similarly, in the event of a violation of the law, you have the right to lodge a complaint with the Italian Data Protection Authority as the data processing supervisory authority.
  6. For a more detailed examination of your rights, see Articles 13 et seq. of Regulation (EU) 2016/679.


  1. This website may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorised and strictly regulated by Article 45(1) of Regulation (EU) 2016/679, so no further consent is required. The companies mentioned above guarantee their participation in the Privacy Shield.
  2. Data will never be transferred to third countries that do not comply with the conditions laid down in Article 45 et seq. of the EU Regulation.


  1. This website treats your data lawfully and properly, taking appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of data. Processing is carried out using computer and/or telematic tools, using organisational methods and logic strictly related to the purposes indicated.
  2. In addition to the data controller, in some cases, the data may be accessed by the categories of authorised personnel involved in the organisation of the website (administrative personnel, commercial, marketing, legal and system administrators) or external parties (such as third party technical service providers, postal services, hosting providers, IT companies, communications agencies).


  1. This document, published at:   constitutes the privacy policy of this website.
  2. It may be subject to change or update. Users will be notified if any significant changes or updates are made.