Pursuant to Legislative Decree no. 196 of 30 June 2003, as amended (“ Privacy Code ”) and European Regulation no. 679 of 2016 (the “ Privacy Regulation ”), Bitubo Srl intends to inform you and all users and/or visitors of the website www.bitubo.com (respectively the “Users” and the “Site”), regarding the use of personal data collected through the Site itself.
1. Data Controller, Data Processors and Data Protection Officer
The Data Controller is Bitubo Srl, with registered office in Teolo (PD), Via A. Volta, 24, VAT number IT02007650282, email privacy@bitubo.com (hereinafter the “Controller”).
The updated list of designated Data Processors can be provided upon request by interested parties and/or Users.
2. Personal Data processed
2.1 Information automatically collected by the Site
Like all websites, our Site uses log files, which store information collected automatically during your visits. The computer systems and software procedures used to operate the Site automatically acquire certain information during use, the transmission of which is implicit in the use of Internet communication protocols. To access and navigate the Site, the following information is collected:
• Internet Protocol (IP) address or domain name of the device you are using;
• type of browser and parameters of the device used to connect to the Site;
• the URI (Uniform Resource Identifier) addresses of the requested resources or the method used to submit the request to the server;
• name of the Internet service provider (ISP);
• date and time of visit;
• web page of origin (referral) and exit of the User;
• possibly the number of clicks;
• the size of the file obtained in response;
• the numeric code indicating the status of the response given by the server (successful, error, etc.);
• other parameters relating to the operating system and IT environment of your device;
This information is processed automatically and collected exclusively in aggregate form in order to verify the correct functioning of the Site.
2.2 Information provided by you to use the Site
The information required to use the Site and proceed with registrations and access the services offered and requested therein (e.g., reserved area) are the common identification and contact data.
3. Purpose of Processing
Your data is processed for the following purposes:
(i) comply with legal obligations;
(ii) carry out the technical management of the Sites;
(iii) use the communication services with the Data Controller to obtain information regarding the products marketed by the Data Controller, the information for which is available at the
following link ;
(iv) receive the newsletter, the information for which is available at the
following link .
The data you provide will be processed primarily using IT tools under the authority of the Data Controller, by specifically authorized, designated, and trained data processors, pursuant to Articles 29 of the Privacy Regulation and 2-quaterdecies of the Privacy Code. We inform you that appropriate security measures are implemented, also pursuant to Articles 5 and 32 of the Privacy Regulation, to prevent data loss, illicit or improper use, and unauthorized access.
4 Nature of the data provision and legal basis of the processing
With reference to the purposes referred to in art. 3, points (iii) and (iv), please refer to what is expressly indicated in the specific information referred to in this Privacy Policy.
For the purposes referred to in points (i) and (ii) of Article 3 above, the provision of your personal data is necessary, as failure to provide it will prevent you from using the services offered by the Site. Consequently, for the purposes referred to in point (i) the legal basis for processing is compliance with legal obligations, pursuant to Article 6, paragraph 1, letter c) of the Privacy Regulation, while for the purposes referred to in point (ii) the legal basis for processing is the performance of the services provided through the Site and requested by you, pursuant to Article 6, paragraph 1, letter b) of the Privacy Regulation.
5 To whom and in what context can we transmit your data?
Your data may be communicated, within the EU, to external structures, individuals, and companies (including consultants and service providers) used by the Data Controller to manage the Site and to carry out activities related to, instrumental to, or consequent upon the execution of the services offered by the Site.
Further details on the above are contained in the specific information provided or displayed on the Site and prepared for the relevant services upon request.
6 Your rights
Articles 15 et seq. of the Privacy Regulation grant the interested party the right to obtain, in the manner and within the limits established by Article 2-undecies of the Privacy Code and Article 12 of the Privacy Regulation:
• confirmation of the existence or otherwise of personal data concerning him, even if not yet registered, and their communication in an intelligible form;
• the indication of the origin of the personal data, the purposes and methods of processing, the logic applied in the case of processing carried out with the aid of electronic tools, the identifying details of the owner;
• the updating, rectification, integration, deletion, transformation into anonymous form or blocking of data processed in violation of the law – including data whose retention is not necessary in relation to the purposes for which the data is collected or subsequently processed – certification that such operations have been brought to the attention, also with regard to their content, of those to whom the data has been communicated or disseminated, except in the case in which such fulfillment proves impossible or involves the use of means manifestly disproportionate to the right protected.
The interested party also has the right:
• to revoke consent (where given) to the processing of personal data at any time (without prejudice to the lawfulness of the processing based on the consent given prior to the revocation);
• to object, in whole or in part, for legitimate reasons, to the processing of personal data concerning him/her, even if pertinent to the purpose of the collection;
• to object, in whole or in part, to the processing of personal data concerning him/her for the purposes of sending advertising or direct sales material or for carrying out market research or commercial communications;
• to lodge a complaint with the Data Protection Authority in the cases provided for by the Privacy Regulation, by contacting the Data Protection Authority directly: Website www.garanteprivacy.it Email: protocollo@gpdp.it Switchboard: (+39) 06.69677.1;
• to the portability of personal data within the limits set out in art. 20 of the Privacy Regulation.
The complete form for exercising your rights is available at the
link with instructions for completing it and sending it to the Data Controller at privacy@bitubo.com.
7 Duration of Treatment
Subject to legal obligations, personal data will be retained for a specified period, based on criteria based on the nature of the services provided. Specifically, browsing data will be retained for a maximum of 7 days.
For further details regarding the other processing purposes highlighted above and governed by specific information, please refer to what is expressly indicated therein.
8 Security measures
Through the Site, your data is processed in compliance with applicable law and using appropriate security measures in compliance with the regulations in force, including pursuant to Articles 5 and 32 of the Privacy Regulation.
In this regard, we confirm, among other things, the adoption of appropriate security measures aimed at preventing unauthorized access, theft, disclosure, modification, or unauthorized destruction of your data.
9 Changes to the Privacy Policy
The Data Controller reserves the right to make changes to this Privacy Policy. In such case, you will be promptly informed the next time you use the Site.
