Privacy and Cookie Policy

Privacy Policy

This site complies with the obligations arising from European and national legislation on privacy (European Regulation for the protection of personal data no. 679/2016 and legislative decree 101/2018) as well as subsequent amendments and integrations.

The data controller is Sacla S.r.l., VAT/Tax ID 10120930980, located in Varedo (MB) at Via Terni n. 7.

The site owner complies with the recommendations of the Privacy Guarantor on GDPR compliance and places great importance on the confidentiality of visitors and users to avoid infringing the rights of visitors/users who browse this site.

The purpose of this privacy information is to provide transparency and understandable information concerning the information collected on the site and its use.

This information applies exclusively to the online features of the site and is valid for visitors/users of the site. The information does not apply to all those information collected outside of the web channel where this website is present.

Legal Basis for Processing

Since the entry into force of the GDPR (May 25, 2018), the site collects and processes certain data on the basis of the interests of the data controller.

The current site processes data acquired on the basis of the optional consent expressed by visitors/users: the approval of consent is only in the ways and for the purposes described in the following paragraph.

The visitor/browser can deny consent to the provision and collection of data and can revoke at any time a consent previously given through the Contact Us form present on the site/writing to the address

Refusal of consent, through the appropriate refusal button on the cookie banner, or through a revocation of consent via email, could lead to the prohibition of access to some services and compromise the browsing experience of this site.

Data Collected and Purposes

Data Acquired from System and Security Logs

This site, during user visits, automatically acquires information through system LOGS and security logs.

  • time and date of visit;
  • IP address and name of the originating provider;
  • error logs and issues.

All these data, collected in aggregate form, are used only to support diagnostics for security purposes. Example: in case of attack, the logs are monitored to block unauthorized access and to prevent harmful activities.

Access to these data is only at server administration level and are never used for the identification or profiling of the user/visitor but only acquired for the protection and security of the present site. They may be used only in case of crime, and only upon request of the judicial authority in the cases provided by law.

The LOG data collected by the site are processed at the headquarters of the Data Controller, and at the datacenter of the Web Hosting.

Domain and Web Hosting

The Domain manager is Aruba spa located in Ponte San Pietro BG.

The Web Hosting is Aruba spa located in Ponte San Pietro BG. and processes data on request of the owner and acts in accordance with European regulations.

Data used for security purposes are stored for 90 days.

Cookie Policy

This site uses cookies, small files that are stored on the navigator's computer and that allow to acquire/conserve information about the preferences of the visits used for:

  • improving the functionality of this site;
  • simplifying navigation through automated procedures (e.g. login, site language setting);
  • analyzing the use of the site to improve its usability.

The necessary technical cookies are necessary to differentiate connected users and prevent the functionality requested by a visitor from being used by another visitor, and are necessary for security purposes to try to neutralize cyber attacks on the site.

The session cookies used on this site do not acquire personal data and their duration is linked to the current browsing session. Closing the browser deletes the session cookies. For these, no consent is required.

The technical preference cookies used by this site are essential for the use of the site and are associated with features specifically requested by the visitor (for example, logging in to a reserved area, or accepting the cookie warning banner). For these, no consent is required.

The third-party analytical technical cookies collect anonymized information regarding the use of the site, allowing us to improve its functioning (e.g., pages most visited, countries from which site visits come, time spent on the site, number of pages visited).

Information on the use, purposes, and suspension of these cookies are provided directly by the third party and can be consulted at the following link: Google Cookie Policies.

Disabling Cookies

The refusal to accept the initial banner involves the blocking of the installation of cookies.

However, cookies are strictly linked to the browser used for navigation, and their management, such as the revocation of cookies previously accepted, can be done through the browser.

You can read all the explanations to disable cookies at the following links:

Transfer of Data to Countries Outside the EU

The data controller does not carry out any transfer of personal data to countries outside the EU.

Security Measures

The processing of data acquired by navigators through this site is managed legally, adopting all appropriate measures to:

  • increase security;
  • prevent unauthorized access;
  • prevent unauthorized disclosure of data.

The processing is implemented using computer devices, with logic and organizational methods strictly related to the purposes described above. In addition to the owner, as in the case of Google Analytics, access to data is delegated to technical consultants involved in the site's project.

The subjects involved, always appointed by the company owning the data, may also be external and are intended as third-party technical service providers, hosting providers, IT companies, web marketing agencies.

User Rights

Under the European Regulation 679/2016 (GDPR), and according to the methods and within the limits provided by current legislation, the navigator/user can exercise the following rights:

  • right of withdrawal, or the updating/rectification/integration and deletion of data;
  • request confirmation of the existence of their personal data;
  • request the origin of their data in an intelligible form;
  • have information concerning the modalities and purposes of data processing;
  • request the transformation into anonymous form of the data;
  • submit a complaint to the Privacy Guarantor as the Control Authority (link to the Guarantor's page).

Requests should be sent to the Data Controller through the contact form/writing to the address

Update of the Privacy and Cookie Policy Information

This document is updated as of 28/02/2024