Logo old

Privacy Policy

Dear User, Pursuant to Art. 13 of Regulation (EU) 2016/679 (“GDPR”), this privacy policy describes the methods for processing the personal data of users who consult the website https://www.tnvsrl.it/ (hereinafter, the “Site”). This information is provided exclusively for the Site and not for other websites that may be consulted by the user via external links.

1. Data Controller

T.N.V. Commerciale Siderurgica S.r.l. (Sole Shareholder) Registered and operational office: Via per Mantello, 2 – 23010 Rogolo (SO), Italy Tax Code / VAT No.: 00806200143 Phone: +39 0342 685220 Email: amministrazione@tnvsrl.it

2. Types of Data Processed

 

a) Navigation Data The computer systems and software procedures used to operate the Site acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols. By way of example, this category may include:

  • IP addresses and technical identifiers;

  • Information about the browser and device used;

  • Date and time of requests;

  • Pages visited and parameters relating to the user’s operating system/environment.

These data are processed to ensure the correct functioning of the Site, security and, where applicable, to obtain statistical information in aggregate form.

b) Data Provided Voluntarily by the User The voluntary sending of emails to the addresses indicated on the Site involves the acquisition of the sender’s email address and any other personal data contained in the message. These data are processed exclusively to manage and respond to the user’s request.

3. Purpose and Legal Basis of Processing

 

3.1 Purposes The Controller processes personal data for the following purposes:

  • a) to allow navigation and the correct functioning of the Site;

  • b) to respond to requests for information sent by the user via the contact details on the Site;

  • c) to fulfill administrative, accounting, and tax obligations related to the Controller’s business, where applicable;

  • d) to comply with legal obligations or requests from competent Authorities;

  • e) to ascertain, exercise, or defend a right of the Controller in court.

3.2 Legal Basis The processing of personal data is carried out on the following legal bases:

  • a) execution of pre-contractual measures adopted at the request of the data subject (Art. 6, par. 1, let. b) GDPR);

  • b) fulfillment of legal obligations to which the Controller is subject (Art. 6, par. 1, let. c) GDPR);

  • c) legitimate interest of the Controller in the correct functioning and security of the Site, as well as the protection of its rights (Art. 6, par. 1, let. f) GDPR).

 

4. Processing Methods

Data processing is carried out using computer and electronic tools, with logic strictly related to the purposes indicated and in compliance with the security measures provided for by Art. 32 GDPR 2016/679.

5. Data Retention

Personal data are stored for the time strictly necessary to achieve the purposes for which they were collected and, in any case, in compliance with applicable legal obligations. Specifically:

  • Navigation data: stored for a period not exceeding 7 days, unless needed for investigating crimes;

  • Email requests: stored for the time necessary to manage the request and for any related legal obligations (generally not exceeding 10 years from the end of the relationship).

 

6. Data Communication and Recipients

Personal data are not disseminated. Data may be communicated to entities acting, depending on the case, as Data Processors or independent Controllers, specifically:

  • Hosting and infrastructure service providers: Aruba S.p.A., as the hosting service provider (Aruba Cloud);

  • Technical and IT service providers: (e.g., maintenance and assistance for the WordPress CMS and the Divi theme).

The updated list of Data Processors is available upon request by contacting the Controller.

7. Cookies

The Site uses exclusively technical cookies, strictly necessary for the correct functioning of the web pages and navigation. In particular, the following may be used:

  • WordPress CMS session cookies (e.g., wordpress_test_cookie, PHPSESSID);

  • Technical cookies necessary for the operation of the Divi theme and site components.

These cookies do not require the user’s prior consent under current legislation, as they are essential to provide the requested service. No profiling, marketing, or user behavior analysis cookies are used.

8. Data Security

The Site uses the HTTPS (SSL/TLS) security protocol to protect the transmission of data between the user’s browser and the server. Adequate technical and organizational measures are adopted to prevent unauthorized access, loss, destruction, or illicit use of data, in accordance with Art. 32 of the GDPR.

9. Rights of the Data Subject

Users may exercise the rights provided for in Artt. 15-22 of the GDPR at any time, including:

  • Access: obtain confirmation of the existence of their data and receive a copy;

  • Rectification: correct inaccurate or incomplete data;

  • Erasure: obtain the deletion of data (Right to be Forgotten);

  • Restriction: limit processing under certain circumstances;

  • Objection: object to processing for legitimate reasons;

  • Portability: receive data in a structured and readable format.

Requests can be sent to: amministrazione@tnvsrl.it The data subject also has the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali – www.garanteprivacy.it).

10. Updates

This Privacy Policy may be subject to updates. We recommend checking this page periodically for any changes.

Last updated: January 2026