Privacy policy
Previously, users had not received information regarding the methods of processing their personal data that may be relevant while browsing our website, as they make use of the services offered by us. The use of all services available on our website may require the collection and disclosure of personal data, particularly in order to contact our customers.
The processing of personal data may include, by way of example and without limitation, the following operations: collection, organization, storage, processing, analysis, interpretation, modification, selection, comparison, use, aggregation, blocking, communication, deletion, and transfer of data.
Personal data are processed in compliance with the principles of lawfulness and transparency and in accordance with applicable legal provisions, in particular Regulation (EU) 2016/679 (GDPR).
With this privacy notice, we inform you about the personal data we process, the purposes for which they are used, and the legal basis for such processing.
Data Controller
The data controller responsible for the processing of personal data is:
La Stua Srl – La Tambra
Via Dursan 13–15
I-39047 St. Christina in Gröden
VAT No.: IT 00362610214
Contact details:
Tel.: +39 0471 796196
Fax: +39 0471 797163
E-mail: info@tambra.it
Website: www.tambra.it
Purpose of Data Processing
Personal data are processed for the following purposes:
-
Compliance with legal obligations
-
Fulfilment of contractual obligations
-
Provision of optimal information and services
-
Analysis of system efficiency and security
-
Marketing activities, including the sending of commercial, promotional, and advertising materials
-
Protection of contractual rights (e.g. payment processing)
-
Improvement of the quality of products and services offered
Type of Processing
Personal data are processed both manually and by electronic and telematic means, primarily for purposes related to the performance of our business activities. In particular, banking data and information submitted via forms on our website may be processed in order to provide our services.
Appropriate technical and organizational measures are adopted to ensure the security and confidentiality of the processed data. Data and general information are stored in the server log files and databases. For technical reasons related to the proper functioning of the website and to ensure secure navigation, the following data may be collected:
-
Browser type and version
-
Operating system
-
Referrer URL
-
Pages visited on our website
-
Date and time of access
-
IP address
-
Other similar technical data
The legal basis for such processing is Article 6 of the GDPR.
These data are processed in anonymized form and exclusively for statistical purposes aimed at improving data protection and system security.
Data Retention Period
Personal data are retained for periods that vary depending on the purpose of processing:
-
For contractual and service-related obligations, data are stored for the duration necessary to fulfil contractual relationships
-
For website optimization and analysis, data are stored for a limited period
-
For compliance with legal obligations (e.g. accounting and tax records), data are retained in accordance with statutory retention periods
-
For legal claims or disputes, data may be retained until the applicable limitation periods expire
Use of Cookies
To optimize navigation on our website, we use cookies. Cookies are small text files that are stored on the user’s device during browsing. Users may delete cookies at any time via their browser settings or prevent their storage entirely.
Please note that disabling cookies may limit the functionality of the website and the availability of certain services. Further information on cookies and their use can be found in the dedicated section of our website.
Contact Form
When contacting us via the contact form on our website, users are required to provide personal data necessary to process the request. Mandatory fields are marked accordingly. Failure to provide the required data may prevent us from responding to inquiries or providing services.
Personal data submitted via the contact form are processed exclusively for the purpose of handling the request and are stored only for the time necessary to fulfil this purpose.
Profiling
Profiling consists of automated processing of personal data to evaluate certain personal aspects of an individual. Profiling for marketing purposes is carried out only with the explicit consent of the data subject.
Cooperation with Third Parties
We may engage third-party service providers to perform certain services. These providers are contractually obligated to comply with strict data protection and security standards and to process personal data solely for the agreed purposes.
Data may be transferred to servers located outside the European Economic Area (EEA) only where appropriate safeguards are in place, in accordance with Articles 44 et seq. of the GDPR.
Disclosure of Data
Personal data are not generally disclosed. In exceptional cases, data may be shared with:
-
Technical service providers, payment processors, and identification or accounting service providers
-
Public authorities where required by law
-
Financial institutions for accounting and payment purposes
-
Legal, tax, or administrative advisors where necessary
Rights of the Data Subject
Data subjects may exercise their rights under the GDPR, either personally or through an authorized representative, by submitting a written request to the data controller.
These rights include:
-
Right of access to personal data
-
Right to information about the purposes and methods of processing
-
Right to rectification of inaccurate or incomplete data
-
Right to erasure (“right to be forgotten”)
-
Right to restriction of processing
-
Right to data portability
-
Right to object to processing, including profiling
-
Right to withdraw consent at any time