Privacy Policy

The information is provided pursuant to art. 13 of the EU Regulation n. 2016/679 (hereinafter “GDPR”) and art. 13 of the Legislative Decree. 196/2003 as amended by Legislative Decree 101/2018, to all those who interact with Isapiens S.r.l. browsing the website by sending an email to

The fundamental information that the processing of the data provided by you will be carried out with methods and procedures aimed at guaranteeing respect for the rights and freedoms, the dignity of the interested party, with particular reference to confidentiality, security, personal identity and the right to the protection of personal data and carried out according to rules of lawfulness, correctness, relevance and non-excess, prescribed by EU Reg. 679/16.

1) Data Controller and Data Protection Officer

The data controller is ISAPIENS S.R.L. – Via Dei Pellegrini 22 20122 Milan – email:

Isapiens S.r.l. has formally appointed its Dpo (Data Protection Officer) in the figure of Dr. Francesca Portella who can be contacted at the e-mail address

2) Object of the treatment

The data processed from a  to:

A. Data collected automatically. Information on the use of the site.Your use of our sites involves the processing of data on the browser and device you are using and of your IP address (this is the number that identifies a specific device on the internet and which is necessary for your device to communicate with the sites). We will be able to analyze which site you came from, what you did and did not do on our site. The computer systems and applications dedicated to the operation of this website detect, during their normal operation, some data (the transmission of which is implicit in the use of Internet communication protocols) potentially associated with identifiable users. The collected data includes the IP addresses and domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) ​​addresses of the requested resources, the time of the request, the method used in the submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters regarding the operating system, the browser and the IT environment used by the user. These data are processed, for the time strictly necessary, for the sole purpose of obtaining statistical information on the use of the site and to check its regular functioning. The provision of such data is mandatory as it is directly linked to the web browsing experience. During the browsing of the Users, the following information can be collected and stored in the site’s server (hosting) log files:• internet protocol (IP) address;• type of browser;• parameters of the device used to connect to the site;• name of the internet service provider (ISP);• date and time of visit;• web page of origin of the visitor (referral) and exit;• possibly the number of clicks.B. Data provided voluntarily by the user. Any data you may voluntarily provide (such as your email address, your name and surname, contacts, etc.) will be processed by sending an email to the email address on the site or by contacting the telephone numbers on the site (by way of example and not exhaustive, for example, it could provide some of your data by forwarding a request for information or a request for a quote to the address indicated above or to the telephone contacts listed on the site).By providing your data, you consent to the processing for the purposes indicated (for example, to be contacted to process the request you made).C. Cookies. The site uses first and third party technical cookies relating to the operation of the site. The site does not use first-party / third-party profiling cookies which may collect users’ browsing data, the provision of which is mandatory for technical cookies to allow navigation. Cookies operate in order to analyze the effectiveness of the site and make it easier and more intuitive over time. For more information see the ………… link cookie policy3) Legal basis of the processingThe legal basis for this treatment is:(i) establishment of the pre-contractual relationship as a consequence of the fulfillment of your request (pursuant to Article 6.1, letter b) of the GDPR);(ii) in the fulfillment of obligations under the law (pursuant to Article 6.1, letter c) of the GDPR);(iii) in the legitimate interest of the owner (pursuant to Article 6.1, letter f) of the GDPR).4) For what purposes we use your personal dataThe collection and processing of personal data will be carried out without the need for your explicit consent:- for purposes strictly connected and instrumental to the fulfillment of the obligations inherent in relations with our company: for example, to finalize a contract if you have accepted a requested quote and sent by e-mail to the email address shown on the site;- possibly for fulfilments and obligations provided for by laws, regulations and community regulations or by provisions issued by authorities legitimated by the law and by supervisory bodies;- to protect the security of the site and users, to unmask and prevent fraud and / or abuse to the detriment of the website;- to allow you to browse the website by collecting cookies of a technical nature;- for the legitimate interest of the Data Controller, in case he wants to exercise a legitimate right in court;- to respond to your requests sent by email to the address listed on the site;- to request information by entering your data in the dedicated form.5) How long do we keep your personal dataThe Personal Data collected to process any requests promoted by you by e-mail will be retained until for the time necessary and instrumental to the purpose, in any case no later than 10 years.The Data Controller may be obliged to keep Personal Data for a longer period in compliance with a legal obligation, regulation or community legislation or to comply with an order from an authority, or for its own legitimate interest in order to protect its own right, even in court.At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this term the right of access, cancellation, rectification and the right to data portability can no longer be exercised.6) The security of your personal dataThe data will be processed using suitable tools to ensure its confidentiality, integrity and availability. The processing is carried out on paper and through information and / or automated systems and will include all the operations or set of operations provided for in art. 4 of the GDPR and necessary for the processing in question, including communication to the subjects in charge of the processing itself. The data in question will not be disseminated. 7) Who can access your personal dataYour data can only be accessed by authorized persons within the scope of the duties assigned by the Data Controller.For the purposes indicated, they will or may be communicated to third parties operating within the scope of the purposes described above, as external data processors, appropriately appointed; the data may also be accessible or may be communicated to subjects whose right to access your personal data is recognized by provisions of law or secondary or community legislation.8) Where your personal data resideThe management and storage of your personal data may take place in the following ways:- the data provided voluntarily by email to the address, will be kept for the time necessary to process your request, duly stored in special archives to which access by unauthorized persons is prohibited and / or on owned servers of the Owner allocated on site.- for navigation data collected automatically, consult isapiens@isapiens.itThe list of data processors and those authorized to process can be consulted at the owner’s office.9) Is it mandatory to consent to the provision of your data?The transmission of navigation data is necessary to continue browsing on this site.The provision of data by e-mail is voluntary, therefore optional.The Owner does not request any other data.10) What are your rights in relation to the GDPR?According to the provisions of the GDPR, the Data Controller guarantees the following rights:• obtain confirmation as to whether or not personal data concerning you are being processed and, in this case, obtain access to personal data (Right of access art. 15);• obtain the rectification of inaccurate personal data concerning you without undue delay (Right of Rectification art. 16);• obtain the cancellation of personal data concerning you without undue delay, the Data Controller is obliged to cancel your personal data without undue delay, if certain conditions exist (Right to be forgotten, Article 17);• obtain the limitation of treatment in certain cases (Right to limitation of treatment art. 18);• receive in a structured format, commonly used and readable by an automatic device, the personal data you have provided to us and possibly be able to transmit them to another Data Controller (Right to data portability art. 20);• oppose at any time, for reasons connected with your particular situation, to the processing of personal data concerning you (Right to object, Article 21);• receive without undue delay communication of the violation of personal data suffered by the Data Controller and / or by the Managers if said violation represents a threat to the rights and freedoms of the data subject (Article 34);• withdraw the consent expressed at any time (Conditions for consent art. 7).




11) How to exercise rights

To exercise one of the rights indicated in point 10), you can send a registered letter with return receipt to the data controller: Isapiens S.r.l. – Via Dei Pellegrini 22 20122 Milan, or you can send an e-mail to the address:

Furthermore, if you believe that we have not respected your rights regarding the protection of personal data, you can contact the Guarantor Authority for the protection of personal data. Alternatively, if you reside in another country, you can contact the local Data Protection Authority.

13) Update of this information

This information may be subject to changes. Any substantial changes will be communicated to you by email or through our website.

DPO (Data Protection Officer)
Dott.ssa Francesca Portella