Privacy Policy


Data controller

PappaBuona s.r.l., Registered office VIA BERTOLINI DONNINO, 29 (PC), P.IVA 01406300333 .
Interested parties can contact this email in writing to exercise the rights established by EU Reg. 679/2016.

Data Processing Manager

For any questions about this privacy policy or to exercise your rights, obtain confirmation of the existence or otherwise of the same data and to know its content and origin, verify its accuracy or request its integration or updating, or rectification (art. 7 of Legislative Decree no. 196/2003) or cancellation, please contact our manager Diego Maccagni via:

● phone: +39 0523 072005

● email:

● in writing, to the address VIA BERTOLINI DONNINO, 29 (PC)


Information content

This information will regulate all relationships between PappaBuona s.r.l. and the requesting Customer, during the registration and contact process. Those responsible for data control within the Group may change from time to time based on developments in the Group’s business.

This page aims to describe how the site is managed in relation to the processing of personal data of visitors who consult it. This information is also provided pursuant to art. 13 of Legislative Decree no. 196/2003 – Code regarding the protection of personal data for those who connect to our website (hereinafter “Website”) by accessing web services electronically. The information is provided for the Website and not for other websites that may be consulted by the user via links.

The information is also inspired by Directive 2009/136/EC, which introduced new rules on cookies, and by Recommendation no. 2/2001 adopted by the European authorities for the protection of personal data to identify some minimum requirements for the collection of personal data online, and, in particular, the methods, times and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.

As part of our daily business, we need to collect personal data from our current and potential customers in order to meet their needs for a range of services and provide them with information about our services. Customer privacy is important to us. Our policy is to respect the confidentiality of information and the privacy of individuals. This policy outlines how we handle personal data provided to us by customers or third parties in connection with our provision of services, or that we collect during customers’ use of our services and/or our websites. The notice also describes your rights in relation to our processing of their personal data. Our privacy policy will be periodically reviewed and modified taking into account new obligations, technological evolution and changes made to our operating practices, in order to keep it constantly updated in an ever-changing context. Any personal data held by us will be governed by our most recent privacy policy. Any reference to “we”, “us”, “our” in this privacy policy is a reference to our company as the context requires, unless otherwise specified. Similarly, any reference to “You” or “Your” in this privacy policy is a reference to any of our current or prospective customers as the context requires unless otherwise specified.

What kind of personal data do we collect?

If you are a current or potential customer, we may collect different types of information about you in different ways through your use of our services or other dealings with us, contact forms, registration forms. We may also collect this information about you from third parties, whether through marketing lists purchased from third parties, from public sources or through our scheme for introducing new customers to existing customers. We may also obtain personal data about you through your use of our websites through the use of cookies on our websites and/or applications, in particular by recording which pages you visit on our websites. We may periodically ask you to voluntarily provide us with other personal data (for example through market research, surveys or special offers). If you fail to provide us with the data necessary to satisfy your request for a specific product or service, we may not be able to provide you with the requested product or service. We may record any communications, whether electronic, telephone, in person or otherwise, that we may have with you in connection with the services we provide to you or our relationship with you. Such records will be our exclusive property and will constitute evidence of communication. between us and you.

Furthermore, the computer systems and software procedures used to operate the Website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This is information that is not collected to be associated with identified interested parties, but which by its very nature could, through processing and association with data held by third parties, allow the computers connecting to the site to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the Website, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment. This data may be used for the sole purpose of obtaining anonymous statistical information on the use of the Website and to check its correct functioning. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

To whom can we transmit personal data?

As part of the use of your personal data for the purposes indicated above, we may disclose your data to other Group companies and other back office services; to service providers and specialist consultants appointed by us; to intermediary agents with whom we have established a reciprocal relationship; to anyone authorized by you. Generally speaking, we require that companies external to the Group that manage and process personal data recognize the confidentiality of such data, undertake to respect the right to privacy of any individual and operate in compliance with current regulatory provisions on data protection, as well as to this privacy policy. External service providers may keep a record of searches carried out on our behalf and may use search data to assist other companies in carrying out their searches. Please note that the use of your personal data by external third parties acting as data controllers of your personal data is not covered by this privacy policy and is not subject to our privacy standards and policies.

How do we obtain your consent?

In cases where our use of your personal data requires your consent, such consent will be provided based on the context, through contact forms, registration forms. Since we rely on your consent as the legal basis for processing your personal data, you have the right to withdraw such consent at any time by contacting us using the contact details set out in this privacy policy.

How do we manage personal data?

We always adopt appropriate technical and organizational measures to guarantee the security of your information. In particular, we train the staff responsible for managing personal data to respect the confidentiality of customer data and the privacy of individuals. We take privacy violations very seriously and take severe disciplinary measures, including, where necessary, dismissal. We have appointed an Information Security Officer to ensure that our handling of personal data complies with this privacy policy and applicable legislation.

Methods and timing of personal data storage

Protecting the privacy of your data is important to us, whether you interact with us in person, by telephone, by post, on the Internet or through other electronic means. The personal data provided are treated with the utmost confidentiality and are stored in a protected computerized archiving system, in paper copy or through other recording methods. Specific measures are adopted against the misuse, loss, unauthorized access, manipulation or dissemination of personal data. When such personal data is no longer deemed necessary, we will remove any details that could lead to the identification of the Customer or we will destroy the archived documentation. However, we may need to keep the archives for a period of time relevant. If we retain personal data in the form of a recorded communication, whether by telephone, electronically, in person or otherwise, such data will be retained in accordance with applicable local law for a period of 5 or 10 years after the end of our business relationship with You. If you have chosen not to receive marketing communications, we will keep your email address on our opt-out list so that we respect your opt-out from receiving such communications.

Transfers outside the European Economic Area

We may transfer your personal data outside the European Economic Area to other Group companies, as well as to other processing companies acting on our behalf (“Transferees”). To the extent we transfer your information outside the European Economic Area, we will ensure that the transfer is lawful and that appropriate security arrangements are in place. In order to transfer personal data to third parties in territories that do not have evidence of adequacy from the competent authority and applicable regulations, we stipulate agreements with the transferees that guarantee appropriate and adequate safeguards on the basis of standard contractual conditions adopted by the European Commission .

Cookies, what are they and how do we use them?

A cookie is a short string of text stored on your computer when you visit a website. We use cookies on our websites to offer you a more relevant and effective experience, for example by presenting web pages based on your needs or preferences. We constantly work to improve the functionality of this site through the necessary technological changes. This may lead to changes in the way we collect and use personal data. The impact of any technological change that may affect your privacy will be disclosed in this Privacy Policy at the time of the change. Our websites may contain links to external sites of third parties. Please note, however, that third party sites are outside the scope of this Privacy Policy and are not subject to our privacy standards and policies. Please check with each third party regarding their privacy practices and procedures.


How to disable Cookies?

The majority of Internet browsers are initially set to accept cookies automatically. The user can change these settings to block cookies or to warn that cookies are sent to the user’s device. There are various ways to manage cookies. You can refer to your browser’s instruction manual or help screen to find out how to adjust or change your browser settings.
In the case of different devices (for example computers, smartphones, tablets, etc.), the user must ensure that each browser on each device is adjusted to reflect their preferences relating to cookies.
If you want to delete the cookies installed in the specific folder of the browser used, each of them has its own peculiar method, illustrated in the links below.

● Microsoft Windows Explorer:

● Google Chrome:

● Mozilla Firefox:

● Apple Safari:

In case of complaint

If you have any concerns about any aspect of our privacy policies, you can make a complaint. The complaint will be investigated promptly.