Privacy Policy

Privacy Policy

Information pursuant to Article 13 of EU Regulation 2016/679 of the European Parliament and of the Council, of 27 April 2016, concerning the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data and repealing Directive 95/46 / EC.

Pursuant to art. 13 of EU Regulation no. 2016/679 (so-called “GDPR”) and Legislative Decree 196/2003 (so-called “Privacy Code”), as amended by Legislative Decree 101/2018, Mammut S.r.l. informs those who access the site (hereinafter also “users” / “interested” ) the following information.

This information is provided exclusively in relation to the site and to the pages of the Owner on social networks Facebook , Instagram , LinkedIn , Twitter and YouTube not also in relation to other websites that can be consulted by the user through links reported or accessible on the site itself and not owned by the Owner.

If you are a user of a social network network and you don’t want to that the latter collects data about you through our website and connects them to your user data saved on the social network, please log out of the social network (by logging out) before visiting our website.

The Data Controller is MAMMUT S.r.l. , in the person of the pro-tempore legal representative, with registered office in Strada Acque Alte km 1.200, Borgo Piave, 04010 – Latina – VAT number & amp; Tax Code 01733400590 (hereinafter “Owner”). To contact the Data Controller, you can contact the following addresses:

  • Telephone: 0773 662924
  • E-mail:

The data processed may be the following:

Personal identification data, or any information concerning an identified or identifiable natural person (“interested party”), such as: name, surname, p. VAT, tax code, address, postcode, telephone, e-mail.

Navigation data, or the computer systems and software procedures used to operate this site acquire, in the course of of their normal exercise, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of computers and terminals used by users, the addresses in URI / URL (Uniform Resource Identifier / Locator) notation of the requested resources, the time of the request, the method used in submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s computer environment.

For all users of the site, personal data may be used for the following purposes:

3.1 allow navigation through the web pages of our site and check their correct functioning; </ strong > in this case, the data being processed will only be the IP addresses.

Legal basis: Legitimate interest of the Data Controller to guarantee the correct functioning of the own website. Art. 6 par. 1 letter a) of the GDPR

3.2 respond to requests received through the e-mail addresses published on the site and the instant messaging of the Social Networks.

Sending , by the user, of e-mail messages or requests for information and quotes through the form on the site and through the instant messaging systems on the social pages, involves the subsequent acquisition of the e-mail address of the same, necessary for respond to requests, as well as any other personal data included in the communication sent. In this case, the acquired data will be processed exclusively to respond to user requests.

Legal basis:

a) Execution of pre-contractual measures adopted at the request of the same, in case of request for estimates Art. 6 par. 1 letter b) of the GDPR.

b) Legitimate interest of the Data Controller in responding to requests for information received. Art. 6 par. 1 letter b) of the GDPR.

3.3 promotional activities of cd. “Soft spam” , or sending information on services / goods similar to those already purchased by the interested party, by sending an email.

Legal basis: Legitimate interest of the Data Controller </ strong> to communicate with its customers about services similar to those they have already used. Art. 6 par. 1 letter f) of the GDPR and art. 130 paragraph 4 of Legislative Decree 196/2003 and subsequent amendments

3.4 marketing through the use of third-party profiling cookies. For more information, please read the cookie policy.

Legal basis: Consent of the interested party. Art. 6 par. 1 letter a) of the GDPR

3.5 collection of statistical data on website navigation. For more information, please read the information on cookies

Legal basis: Consent of the interested party. Art. 6 par. 1 letter a) of the GDPR

3.6 research and selection of personnel. For users who send their curriculum vitae, the processing will take place solely to fulfill the needs of knowledge and evaluation of candidates in the context of the search and selection of personnel for the coverage of job positions, as well as legal obligations, rules or regulations. Failure to provide such data may make it impossible for the organization to carry out the search and selection process of personnel.

Legal basis: execution of pre-contractual measures adopted on the basis of a request by the candidate pursuant to art. 6 lett. b) of the GDPR

The personal data of the interested parties may be disclosed to specifically designated persons in charge, who work under the Data Controller, or to persons appointed as data processors. The managers belong to the following categories: legal and tax consultants of the Data Controller, consultants who deal with the management of the website and social pages of the Data Controller, company providing the web hosting service (Aruba Spa).

Each communication will take place in compliance with the purposes of the processing described above.

It is possible to request a list of data processors from the Data Controller at the addresses indicated in point 1.

Personal data may be disclosed to third parties to fulfill legal obligations, or to comply with orders from public authorities entitled to do so or to assert or defend a right in court.

Personal data will be processed with paper and computer tools by the Data Controller and by external parties who operate as Data Processors.

The data will be stored on servers owned by the Data Controller located in Italy at the Aruba company Spa

The use of the Data Controller’s services is reserved for subjects legally able, on the basis of the relevant national legislation, to conclude contractual obligations. The Data Controller, where it is necessary for specific services, in order to prevent illegitimate access to them, implements preventive measures to protect its legitimate interest, such as checking the tax code and / or other permitted and suitable checks.

The personal data collected for the purposes indicated in point 3.1 (to allow the website to function) of this information will not be stored.

The personal data collected for the purposes indicated in point 3.2. (respond to requests) will be kept for the time necessary to process the request. In case of request for quotes for the next 2 years.

The personal data collected for the purposes referred to in points 3.3 (soft spam) of this information will be kept for a maximum period of 2 years or until the consent is revoked and no later than three months from the revocation itself. .

The personal data collected for the purposes referred to in point 3.4 (profiling through third-party cookies) will be kept for a maximum period of 1 year.

Personal data collected for the purposes indicated in point 3.5 (collection of statistical data on navigation) will be kept for 2 years.

The personal data collected for the purposes referred to in point 3.6 (research and selection of personnel) will be kept for a maximum period of 1 year.

You have the right to access your data at any time and to exercise the other rights provided for by the GDPR by contacting the contacts indicated in point 1. In particular, you have:

Right access (Article 15, GDPR)

Right of rectification (Article 16, GDPR)

Right to cancellation (Art. 17, GDPR)

Right to limitation of treatment (Art. 18, GDPR)

Right to portability of data (Art. 20, GDPR)

Right to object (Art. 21, GDPR)

The interested party you have the right not to be subjected to a decision based solely on automated processing that produces legal effects concerning you (Article 22, GDPR)

Right to lodge a complaint with the authority control (Art. 77, GDPR)

This information may be subject to changes. If substantial changes are made to the use of user data by the Owner, the latter will notify the user by publishing them with the utmost clarity on their pages or through alternative or similar means.