This page describes the methods by which the website is managed with regard to the processing of the user’s personal data.
This is an information that is also provided pursuant to art. 13 of the EU Regulation n. 2016/679, GDPR, ( e. 13 of the legislative decree n. 196/2003, Code regarding the protection of personal data ( to users who interact with web services for the protection of personal data, accessible electronically from the address:, corresponding to the homepage of the official website of the company INOXIHP s.r.l. , Via Garibaldi 89, Nova Milanese 20834 (MB) Italy – VAT number 12185490153
This notice only applies to the website of INOXIHP s.r.l. and does not apply to any other websites that may be accessed via links.
The information provided is based on EU Regulation No. 2016/679 and on Recommendation No. 2/2001, which the European Authorities for the protection of personal data, gathered in the Group set up by article 29 of Directive No. 95/46/EC (, adopted on May 17th 2001 in order to identify the minimum requirements for the online collection of personal data and, in particular, the methods, times and nature of the information which the data controllers must provide to users when they connect to web pages, regardless of the purposes of the connection.

Data controller

Data regarding identified or identifiable individuals may be processed during or following the consultation of this website.
The “controller” of this data is INOXIHP s.r.l. with registered office in Via Garibaldi, 89 Nova Milanese 20834 (MB) Italy.

Place of data processing

Any personal data supplied by users requiring informative materials (bulletins, CD-ROMs, newsletters, annual reports, answers to questions, deeds and measures, etc.) is used solely for the purpose of carrying out the service or the task required and is communicated to third parties only where strictly necessary to that end (the service for the shipment of publications issued by the data controller complies with the set forth by the Presidency of the Council of Ministers-Department of Information and Publications).
User’s personal data will be stored on servers located within the European Union as required by EU Regulation No. 2016/679. In any case it is understood that the Data Controller, if necessary, will have the right to move the servers even extra-EU. In this case, the Data Controller hereby ensures that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided by the European Commission.

Types of data processed

Browsing data
While browsing this website, the computer systems and software procedures that govern its functionality collect certain personal data items, the transmission of which is implicit in the use of Internet communication protocols.
Although the data items indicated above cannot be traced back to the identified users, they could allow for the identification of the users to whom they refer by means of reprocessing in conjunction with additional data held by third parties.
These types of data include IP addresses, the domain names of the computers utilized by the users who connect to the website, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code that indicates the response provided by the server (successful, error, etc) and other information relating to the user’s operating system or IT environment.
The data, however, is only used for the purposes of processing anonymous statistics regarding the use of the website and ensuring that it functions properly, and is immediately deleted after it has been processed. Such data could potentially be used to ascertain liability in the event of any hypothetical IT crimes carried out against the site: with the exception of such circumstances, the data regarding web contacts will not be stored for more than seven days.

Data provided voluntarily by the user

When a voluntary email message is sent to one of the addresses indicated on this website, the Data Controller comes into possession of the sender’s e-mail address, which is required in order to reply to the user’s request, as well as any other personal data that may be contained within the message itself.
Upon request, specific summary information will be progressively reported or displayed on the pages of the website that are dedicated to particular services.


No personal user data is acquired by the Website in this respect.
No cookies are used to divulge personal information, nor are any so-called persistent cookies or user tracking systems used.
The use of so-called session cookies (which are not stored permanently on the user’s computer and are erased when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) which are necessary to allow for the safe and efficient consultation of the Website.
The so-called session cookies used by this Website do not involve other computer techniques that could compromise the confidentiality of the user’s browsing and do not allow for the acquisition of the user’s significant personal data.

Optional nature of data conferment

Save for that which has been specified above regarding browsing data, the user is free to provide the personal data indicated in the request forms to the data controller or any other information that may be included within communications sent to the Offices when requesting informative materials and/or other communications.
Failure to provide such data may impede the user’s request from being fulfilled.
For the sake of completeness, it should be added that in some cases (not involved in the ordinary management of this Website), the Authorities may request data and information in accordance with Article 157 of Legislative Decree No. 196/2003 (, for the purposes of controlling personal data processing. In such cases the Data Controller is required to comply with the requests or else could face applicable sanctions.

Data processing methods, storage and access

The personal data is processed using automated tools, strictly for the time necessary to achieve the purposes for which the data itself has been collected.
Specific security measures have been adopted in order to prevent the loss and/or illegal or improper use of the data, as well as unauthorized access to the data itself.
The processing of user’s personal data will be done through the operations indicated in art. 4 of the Privacy Code and art. 4 n. 2) GDPR and more precisely: collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction of data. User’s personal data will be processed either on paper or electronic and / or automated tools.
The Controller will process user’s personal data for the time necessary to fulfill the purposes referred to in art. 2) and in any case for no more than 10 years from the termination of the contractual relationship, also with regard to personal data acquired for marketing purposes. At the end of the aforementioned period the data will be deleted or made anonymous.
User’s data may be made accessible: 1) to the employees and collaborators of the Data Controller in their capacity as persons in charge and / or internal managers of the processing and / or system administrators; 2) to third-party companies or to other subjects (by way of example: credit institutes, professional firms, consultants, insurance companies, etc.) who carry out outsourcing activities on behalf of the Data Controller, in their capacity as external data controllers.

Rights of those concerned

In its capacity as an interested party, user has the rights as per art. 7 of the Privacy Code and art. 15 GDPR and precisely the rights to:

  • Obtain confirmation of the existence or not of personal data concerning him, even if not yet registered, and their communication in an intelligible form;
  • Obtain the indication: a) of the original of personal data; b) of the purposes and methods of the processing; c) of the logic applied in case of identification details of the owner, the managers and the designated representative pursuant to art. 5, paragraph 2 of the Privacy Code and art. 3, paragraph 1, GDPR; e) the subjects or categories of subjects to whom the personal data may
    be communicated or who may become aware of it in their capacity as designated representative in the territory of the State, managers or agents;
  • Obtain: a) the updating, rectification or, when interested, integration of data; b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed; c) the attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case where such fulfillment proves to be impossible or involves a use of means manifestly disproportionate to the protected rights;
  • Oppose, in whole or in part: a) for legitimate reasons to the processing of personal data concerning user, even if pertinent to the purpose of collection; b) to the processing of personal data concerning user for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, through the use of automated call systems without the intervention of an operator by e-mail and / or through traditional marketing methods by telephone and / or paper mail. It should be noted that the right of opposition of the interested party, set out in point b) above, for direct marketing purposes through automated methods extends to the traditional ones and that in any case the possibility remains for the data subject to exercise the right to object even only partially. Therefore, the interested party can decide to receive only communications using traditional methods or only automated communications or none of the two types of communication.

Where applicable, it also has the rights referred to in Articles 16-21 GDPR (Right of rectification, right to be forgotten, right of limitation of processing, right to data portability, right of opposition), as well as the right of complaint to the Guarantor Authority.

Modalities of exercise of rights

User may exercise the rights referred to in point 8 above by sending:
– A registered letter R/R to the company inoxihp s.r.l. , Via Garibaldi, 89 Nova Milanese 20834 (MB) Italy.
– An email to the address which must be followed within the next 48 hours by a registered letter R/R at the address above.


This privacy information notice may be consulted in automatic form using the most recent generation browsers that implement the P3P standard (“Platform for Privacy Preferences Project”) proposed by the World Wide Web Consortium (
Every effort will be made to render the functionalities of this website and the automatic privacy control mechanisms available in certain products utilized by users as interoperable as possible.
However, since these automatic mechanisms are not currently free of errors or bugs, it should be noted that this document, which has been made public at the URL, currently constitutes the “Privacy Policy” for this website and will be subject to updates (the various versions that can be consulted will remain accessible at the same address).