PRIVACY POLICY
Corman S.p.A. (hereinafter the “Company”) firmly believes that transparency is the basis
of its relationship with its customers and users. For this reason, we would like to be
completely transparent regarding the way in which your personal data will be processed.
The following describes how this website (hereinafter the “Website”) is managed, with
reference to the processing of personal data of users who consult it (hereinafter the
“Users”).
This Privacy Policy is provided pursuant to Article 13 of Regulation (EU) 2016/679
(hereinafter the "GDPR") to those who interact with the Website of the Company
accessible electronically from the address [•].
1. Data Controller
The data controller is Corman S.p.A. (hereinafter the “Data Controller”), with registered
office at Via Liguria, 3 – 20084 Lacchiarella (MI). You can contact the Data Controller at
the following addresses: privacy@corman.it.
2. Place of personal data processing and Data Processor
Processing related to the services of the Website takes place at the Company's
headquarters in Via Liguria 3 – 20084 Lacchiarella (MI) and is handled only by technical
personnel authorised to carry out processing operations pursuant to art. 29 of the GDPR.
For different specific services, related data are processed by specialized companies,
appointed as Data Processors pursuant to art. 28 of the GDPR.
The full list of Data Processors can be requested at privacy@corman.it.
3. Type of data processed
3.1 Browsing data
The computer systems and software procedures used to operate the Website acquire,
during their normal operation, some personal data whose transmission is implicit in the use
of Internet communication protocols.
This information is not collected to be associated with identified interested parties, but by
its very nature could, through processing and association with data held by third parties,
allow users to be identified.
This category of data includes the IP addresses or domain names of the user’s computers,
the URI/URL (Uniform Resource Identifier/Locator) addresses of the resources requested,
the time of the request, the method used to submit the request to the server, the size of the
file obtained in response, the numerical code indicating the status of the response given by
the server (successful, error, etc.) and other parameters relating to the user's operating
system and computer environment.

This data is used for the sole purpose of obtaining anonymous statistical information on
the use of the Website and to check its correct functioning and is deleted immediately after
processing. The data could be used to ascertain liability in case of hypothetical computer
crimes against the Website. The legal basis for processing is the legitimate interest of the
Data Controller in the proper functioning of the Website and the provision of browsing data
is necessary to access the Website.
3.2 Data provided by the User
The optional, explicit and voluntary sending of electronic mail to the addresses indicated
on this Website entails the subsequent acquisition of the sender's address, necessary to
respond to requests, as well as any other personal data included in the message.
3.3 Cookies
The Website uses cookies as further specified in the Cookie Policy.
4. Purpose and legal basis of data processing
Without prejudice to what has been specified for browsing data to which reference is made
in point 3.1), personal data provided by Users through the Website are processed for the
following purposes:
1. to allow the performance of the processing strictly connected and instrumental to
the management of relations with Users, such as – purely by way of example – the
response to queries received with contact forms and/or through the e-mail address
given on the Website and the management of other relevant information sent by the
User;
2. allow the proper performance of any contractual obligations assumed by the
Company towards Users and vice versa, as well as the consequent accounting and
tax obligations;
3. to allow the fulfilment of obligations under laws, regulations and EU rules, or
provisions issued by authorities empowered to do so by law and by supervisory and
control bodies;
4. purposes necessary to ascertain, exercise or defend a right in court or whenever
the judicial authorities exercise their jurisdictional functions;
5. purposes of statistical research/analysis on aggregated or anonymous data, without
therefore the possibility of identifying the User, aimed at measuring the operation of
the Website and its operational functions, including the resolution of any technical
problems.
The legal basis for the processing of personal data for the purposes referred to in point 1)
is the provision of a service or response to a request, which do not require the consent of
Users, pursuant to applicable legislation, and for the purposes referred to in point 2) is the
performance of an existing contract with the Company.
Regarding the purposes mentioned in point 3), the processing is necessary for the
fulfilment of a legal obligation.

Regarding the purposes in point 4), the processing is necessary for the pursuit of a
legitimate interest of the Company.
The purpose referred to in point 5) does not involve the processing of personal data.
5. Third-party advertisers and links to other websites
The Site may include advertisements from parties other than the Owner (hereinafter the
“Third Parties”) and links to other websites and/or applications. By accessing such
websites and/or applications, Third Parties may collect information about you when you
interact with their content, advertising, and services under the terms and conditions
described in their respective websites/applications.
6. Method of processing and retention period
Personal data are processed by automated means for the time strictly necessary to
achieve the purposes for which they were collected.
Specific security measures are observed to prevent data loss, illicit or incorrect use and
unauthorized access.
7. Rights of data subjects
Users have the right – at any time – to obtain confirmation of the existence or non-existence
of their personal data and to know their content and origin, verify their accuracy or request
their integration or updating, or rectification (Art. 15 ff. GDPR).
According to the same article, Users have also the right to request the cancellation,
transformation into anonymous form or blocking of data processed in violation of the law,
as well as to oppose in any case, for legitimate reasons, their processing.
Inquiries should be addressed by e-mail, to: privacy@corman.it.
8. Amendments
The Company reserves the right at any time to change, including due to changes in
applicable law, the Privacy Policy by updating this page. The User is therefore required to
periodically check the Privacy Policy to become aware of relevant updates.
This policy Rev.01, was updated on 14/02/2025 day from which it is effective.