Privacy policy

Privacy Notice on the Processing of Personal Data and the Use of Cookies on the Website

1. Introduction In compliance with the obligations arising from Regulation (EU) No. 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter, the “Regulation” or “GDPR”) and applicable national legislation, including Legislative Decree No. 196/2003 (Privacy Code, as amended by Legislative Decree No. 101/2018), KAREDIL S.R.L. respects and protects the personal data of visitors and users (hereinafter, the “Data Subjects”) of the website www.impresaedilekaredil.it/ (hereinafter, the “Website”). This document provides information on the processing of personal data collected by KAREDIL S.R.L. through the Website and therefore constitutes a privacy notice to Data Subjects pursuant to the aforementioned regulations. It does not apply to personal data collected by KAREDIL S.R.L. through channels other than the Website. In accordance with the Regulation, personal data are processed in compliance with the principles of lawfulness, fairness, transparency, and confidentiality. The Website may contain links to other websites: this privacy notice does not apply to such external websites. These websites may have privacy policies that differ, in whole or in part, from this one. KAREDIL S.R.L. therefore invites Data Subjects to carefully read the privacy policies of each website visited, especially before providing any personal data.

2. Identity and Contact Details of the Data Controller

The Data Controller is KAREDIL S.R.L. (hereinafter “KAREDIL S.R.L.” or the “Data Controller”), VAT No. 02043140926, with registered office at VIA DE CRISTOFORIS 55, 09045 Quartu Sant’Elena (CA), Italy (Phone: +39 3355287080; Email: karedil@pec.it).

3. Types of Data Processed via the Website

The Data Controller may process the following data through the Website: Automatically Collected Data – Traffic and Browsing Data The IT systems and software procedures used to operate the Website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This category includes, by way of example: IP addresses, domain names of users’ devices, browser type, Internet Service Provider, URI/URL addresses of requested resources, date and time of access, method used to submit requests to the server, size of the file obtained in response, numerical status code of the server response, referring and exit web pages, and other parameters relating to the user’s operating system and IT environment. The Website does not intentionally collect special categories of personal data (e.g. health data, religious or political beliefs), unless explicit consent is provided.

4. Data Provided by Data Subjects

The voluntary, explicit and intentional sending of messages to the Data Controller’s contact details, as well as the completion and submission of contact forms on the Website, entails the acquisition of the sender’s contact details and any personal data included in the communication (such as name, surname, email address). Data Subjects are required to provide accurate and truthful data and to promptly notify any changes.

5. Cookies and Other Tracking Technologies

The Website uses cookies and similar technologies. For more information, please refer to our Cookie Policy.

6. Purposes and Legal Basis of Processing

The Data Controller processes traffic and browsing data for the following purposes: a) managing, operating and improving the Website; b) complying with legal obligations; c) preventing and detecting fraudulent or harmful activities; d) carrying out technical and/or commercial analyses and statistical monitoring. Such processing is necessary for browsing the Website. The Data Controller processes data provided by users in order to: e) respond to requests; f) send administrative and/or technical communications; g) send newsletters, commercial communications and/or promotional material. Processing for these purposes requires the Data Subject’s consent, which is optional and may be withdrawn at any time.

7. Data Disclosure

Personal data may be disclosed to supervisory authorities, judicial authorities, and any parties to whom disclosure is required by law or necessary to achieve the purposes described above.

8. Processing Methods and Data Retention

Data may be processed in paper and/or electronic form. Data will be retained only for as long as necessary for the purposes indicated and in compliance with applicable laws:
  • Browsing data: up to 12 months
  • Voluntarily provided data: up to 10 years
  • Marketing data: until consent is withdrawn, and in any case no longer than 24 months

9. Transfer of Personal Data

Data are stored on servers located within the European Union (currently in Italy). If necessary, data may be transferred outside the EU in compliance with applicable legal provisions.

10. Security Measures

The Data Controller adopts appropriate technical and organizational measures to prevent unauthorized access, disclosure, alteration or destruction of data. Access is restricted to authorized personnel only.

11. Rights of Data Subjects
Data Subjects may exercise the following rights under GDPR:
  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR)
  • Right not to be subject to automated decision-making (Art. 22 GDPR)
Requests may be submitted by contacting KAREDIL S.R.L. by post or email.

12. Right to Lodge a Complaint

Data Subjects have the right to lodge a complaint with a supervisory authority or take legal action if they believe their data are processed unlawfully.

13. Protection of Minors

The Website is not intended for individuals under 16 years of age. Any such data will be promptly deleted.

14. Updates to this Privacy Notice

This privacy notice has been effective since 25 May 2018 and may be updated over time. Any significant changes will be communicated appropriately.

15. AI-Generated Content

Some content on the Website (including text, images, or multimedia elements) may be created with the support of generative artificial intelligence tools. Such technologies are used in compliance with principles of fairness, transparency, and reliability. No personal data of users are used to generate such content. AI systems do not analyze user behavior for profiling, targeted advertising, or personalized content.
Last updated: 6 May 2025