LANGUAGE

Italiano Italiano English English Español Español

Privacy Policy

Effective from: 04/04/2025

INTRODUCTION

This privacy policy takes into account the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and the Privacy Code (Legislative Decree 30 June 2003 No. 196). The document has also been drafted in accordance with the Guidelines of the Privacy Authority (especially the Anti-Spam Guidelines issued by the Privacy Authority on 4 July 2013).

Data Controller: SUNRIB RENT SRLS, Via Flavio Gioia 31 09018 Sarroch (CA), Chamber of Commerce: Oristano/Cagliari, Share Capital: €1,000 fully paid, Legal Representative: Gianmarco Mascia, PEC: sunribrents@pec.it

Website to which this privacy policy applies: https://www.noestrum.it (Website).

The Data Controller has not appointed a DPO (Data Protection Officer). Therefore, you can send any request for information directly to the Data Controller.

GENERAL INFORMATION

This document describes how the Data Controller processes your personal data provided on the Website.

The following describes the main processing operations of your personal data. In particular, the legal basis of the processing is explained, whether the provision is mandatory and the consequences of failing to provide personal data. To better describe your rights, where necessary, we have specified whether and when a particular processing of personal data is not carried out.

Website Registration

The Website does not offer the possibility of registration. Therefore, the Data Controller does not process your personal data for this purpose.

Purchases on the Website

It is not possible to make purchases on the Website. Therefore, your personal data will not be processed for this purpose. The Data Controller does not process user data to send purchase reminder emails for products and/or services of the Controller itself.

Responding to Your Requests

Your data will be processed to respond to your information requests. Provision is optional, but your refusal will result in the Data Controller being unable to respond to your questions. The legal basis of the processing is the legitimate interest of the Data Controller in following up on user requests. This legitimate interest is equivalent to the user's interest in receiving a response to communications sent to the Data Controller.

Generic Marketing

The Data Controller will not send you advertising materials and/or newsletters relating to its own or third-party products. We use Google services, such as Google Ads and Google Analytics, to personalize advertisements and improve the user experience. This includes the collection of personal data and cookies, used to show you advertisements in line with your preferences. At the time of consent, you will be asked to authorize the use of this data. More details on the use of cookies and consent management are available in the cookie policy of this website.

Profiling

The Data Controller does not carry out "profiling" with your personal data. Therefore, it will not send you advertising materials and/or newsletters relating to its own or third-party products of your specific interest.

Data Transfer

The Data Controller does not transfer your personal data to third parties.

Geolocation

The Website does not implement user IP address geolocation tools.

Curriculum Vitae

It is not possible to send a curriculum vitae through the Website. Therefore, your data will not be processed for these purposes.

Appointment Booking

The information and data requested in the event of booking an appointment and/or service will be used to allow you to make the booking in question with the Data Controller in the manner indicated on the Website. The legal basis of the processing is the need of the Data Controller to implement pre-contractual measures adopted at the request of the data subject. Provision of data is optional. However, your possible refusal to provide data will result in the impossibility of booking an appointment and/or service on the Website.

Photographs and Videos

The Data Controller does not request the publication of photographs and/or videos depicting you. Therefore, your data will not be processed for these purposes.

Web Scraping

The use of any automated process or system to access, acquire, copy or monitor any part of our website, including but not limited to web scraping, crawling, or spidering techniques, is expressly prohibited. The Data Controller reserves the right to adopt all necessary measures, including legal actions, to prevent and prosecute any unauthorized scraping activity.

By using the Website, the user or any third party undertakes not to:

  • use automated systems, such as bots, scrapers, or spiders, to access or interact with the Website
  • collect content, data or other information present on the Website without explicit written authorization
  • distribute, display, publish, or otherwise use content acquired through scraping techniques without consent

Any violation of this clause will be considered a substantial violation of the terms of use of the Website and will result in the adoption of appropriate measures, including possible suspension of access to the site and the initiation of legal actions to protect the interests of the Data Controller.

Communication of Personal Data

As part of its ordinary activities, the Data Controller may communicate your personal data to certain categories of subjects. In Article 2 you can find the list of subjects to whom the Data Controller communicates your personal data. To facilitate the protection of your rights, Article 2 may specify in some cases when your data is not communicated to third parties.

The "communication" to third parties of personal data is different from "transfer" (governed in the preceding point). In fact, in communication, the third party to whom the data is transmitted can use it only for the specific purposes described in the relationship with the Data Controller. In transfer, instead, the third party becomes an autonomous Data Controller of the personal data. Furthermore, your consent is always required to transfer your personal data to third parties.

Without prejudice to the foregoing, it is understood that the Data Controller may in any case use your personal data to properly comply with the obligations provided by the laws in force.

SPECIFIC PRIVACY POLICY

Art. 1 Processing Methods

1.1 The processing of your personal data will be mainly carried out with the aid of electronic or automated means, according to the methods and with the tools suitable to guarantee the security and confidentiality of personal data.

1.2 The information acquired and the processing methods will be relevant and not excessive with respect to the type of services provided. Your data will also be managed and protected in secure and adequate IT environments according to the circumstances.

1.3 "Special data" is not processed through the Website. Special data is that which can reveal racial and ethnic origin, religious, philosophical or other beliefs, political opinions, membership of parties, unions, associations or organizations of a religious, philosophical, political or trade union nature, health status and sexual life.

1.4 Judicial data is not processed through the Website.

Art. 2 Communication of Personal Data

The Data Controller may communicate your personal data to specific categories of subjects. Below are the subjects to whom the Data Controller reserves the right to communicate your data:

  • The Data Controller may communicate your personal data to all those subjects (including Public Authorities) who have access to personal data by virtue of regulatory or administrative provisions.
  • Your personal data may also be communicated to all public and/or private subjects, natural and/or legal persons (legal, administrative and tax consultancy firms, Judicial Offices, Chambers of Commerce, Labor Chambers and Offices, etc.), if the communication is necessary or functional to the correct fulfillment of obligations deriving from the law.
  • The Data Controller does not make use of employees and/or collaborators in any capacity. Therefore, your personal data will not be communicated to this category of subjects.
  • The Data Controller does not make use of companies, consultants or professionals in charge of the installation, maintenance, updating and, in general, management of the hardware and software of the Data Controller. Therefore, your data will not be communicated to these categories of subjects.
  • For sending its communications, the Data Controller makes use of external companies in charge of sending this type of communications (CRM platforms). Your personal data (in particular your email) may therefore be communicated to these companies.
  • For customer assistance purposes, the Data Controller makes use of one or more companies in charge of providing customer care services. Only for this purpose, your personal data may be communicated to these companies.
  • The Data Controller does not make use of banking institutions and companies that manage payment circuits.
  • The personal data of purchasers is not communicated to couriers or shipping companies.

The Controller reserves the right to modify the above list based on its ordinary operations. Therefore, you are invited to regularly access this privacy policy to check to which subjects the Data Controller communicates your personal data.

Art. 3 Retention of Personal Data

3.1 This article describes how long the Data Controller reserves the right to retain your personal data.

  • Your personal data will be retained only for the time necessary to ensure the correct provision of services offered through the Website.

3.2 Without prejudice to the provisions of Article 3.1, the Data Controller may retain your personal data for the time required by specific regulations, as amended from time to time.

Art. 4 Transfer of Personal Data

4.1 The Data Controller is based in a country that has an adequate level of security from a regulatory point of view. If the transfer of your personal data takes place in a non-EU country and for which the European Commission has expressed an adequacy decision, the transfer is considered in any case safe from a regulatory point of view. This Article 4.1 indicates from time to time the countries to which your personal data may possibly be transferred and where the European Commission has expressed an adequacy decision.

  • You are therefore invited to regularly access this article to verify whether the transfer of your personal data takes place in a country with these characteristics.

4.2 Without prejudice to the provisions of Article 4.1, your data may also be transferred to non-EU countries and for which the European Commission has not expressed an adequacy decision. You are therefore invited to regularly view this Article 4.2 to ascertain to which of these countries your data is possibly transferred.

4.3 In this article, the Data Controller indicates the countries to which it possibly directs its activities specifically. This circumstance may imply the application of the legislation of the country in question, together with that which governs the relationship with the user according to the provisions in the Introduction.

  • At the user's request, the Data Controller will apply to the processing of personal data the legislation possibly more favorable provided by the national legislation of the user himself.

Art. 5 Data Subject Rights

The Data Controller informs you that you have the right to:

  • ask the Data Controller for access to your personal data and the rectification or erasure of the same or limitation of processing concerning you or to object to their processing, in addition to the right to data portability
  • withdraw consent at any time without prejudice to the lawfulness of processing based on consent given before withdrawal
  • lodge a complaint with a supervisory authority

The above rights may be exercised with a request addressed without formality to the contacts indicated in the Introduction.

Art. 6 Amendments and Miscellaneous

The Data Controller reserves the right to make changes to this privacy policy at any time, giving appropriate publicity to the Website users and ensuring in any case adequate and similar protection of personal data. In order to view any changes, you are invited to regularly consult this privacy policy. In the event of substantial changes to this privacy policy, the Data Controller may also communicate this via email.

Contacts

For any questions or requests regarding the processing of personal data, you can contact the Data Controller:

SUNRIB RENT SRLS
Operational Headquarters: Molo Dogana, Cagliari
Registered Office: Via Flavio Gioia 31, 09018 Sarroch (CA)
Phone: +39 351 309 7288
PEC: sunribrents@pec.it
Hours: 8:00 am – 9:00 pm