Website privacy policy

Privacy policy

Dear user, this page will provide you with all the information required by art.13 of the EU Regulation2016/679 (GDPR) regarding the processing of personal data of website visitors.

The information and personal data acquired as part of the use of the website will be treated in accordance with the legislative provisions of the above mentioned legislation and the confidentiality obligations therein. The informative is only addressed to those who interact with the website of EUSTEMA address and not to other websites, pages or online services accessible through hypertext linkspublished in this website.

Who will process my data?

The Data Controller of the personal data provided through the website (hereinafter referred to as “EUSTEMA” or the “Company”) with registered office in Rome at via Carlo Mirabello nr. 7 TAX CODE and VAT NUMBER no. 05982771007 contactable at the e-mail address: “”. The Data Controller has appointed a Data privacy Officer (DPO) available at the following e-mail address: “”.

The Data Controller, for some treatments, will be supported by the company Euforlegal Srl with registered office in Rome at Via Carlo Mirabello nr. 7, TAX CODE and VAT NUMBER no. 15957891003, which will act as Joint Data Controller. The Joint Data Controllers EUforLEGAL S.r.l. and Eustema S.p.A. have indeed stipulated a co-ownership agreement concerning the data processing according to art. 26 of the GDPR. An extract of the agreement of co-ownership for the treatment of personal data is made available upon request by sending an e-mail to the address



1. Browsing data

Computer systems and software procedures operating on this website acquire, during standard operation, some personal data whose transmission is implicit in the Internet communication protocols. Specifically, navigation data will be processed.

The information collected will not be associated with identified users, however, this information, given its nature, might identify users through processing and association with data held by third parties and could be used to establish responsibility in case of hypothetical computer crimes. This category of data includes IP addresses or domain names of computers used by users who access the website, URI (Uniform Resource Identifier) of requested resources, time of request, the procedure for submitting the server request, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters such as those relating to the operating system and computer environment.

2 . Data provided voluntarily by the user

On our website there are data collection forms and e-mail addresses that can be used to obtain various services for example, to receive information and/or demos or to send your resume. The use of these services and the optional, explicit and voluntary sending of e-mails to the addresses indicated on this website will result in the acquisition of the e-mail address and personal data provided by the user.

Why do you need my data?

Following consultation of this website, data relating to identified or identifiable persons may be processed.

1. The personal data processed during the navigation of the site have the purpose of obtain anonymous statistical information on the use of the website (most visited pages, number of visitors by time slot or daily, geographical areas of origin, etc.);monitor the proper functioning of the website and ensure the protection of information and business to meet the obligations provided for by EU and national regulations.
The legal basis for the acquisition and subsequent processing of data is to pursue the legitimate interest, in accordance with art. 6.1, letter f) of the GDPR, consisting in ensuring the security of the website and the information exchanged on it, ie the capacity of that website to withstand, at a certain level of security, unexpected events or unlawful or fraudulent acts compromising the availability, authenticity, integrity and confidentiality of personal data stored or transmitted.

2. Personal data voluntarily provided by you are processed for the purpose of:

respond to your requests for information
send you demos about our products
send you commercial and promotional information about our products and services (only with your consent)
collect your resume for a job position.

How do you treat my data?

Navigation data are gathered automatically by the system when the user navigates the website. The processing of personal data is accomplished with the support of computer-based tools. The data will be stored in electronic archives also in order to allow the identification and the selection in aggregate form. In any case, the processing of personal data will take place with procedures strictly related to the purposes indicated and procedures that provide security and confidentiality through the adoption of appropriate measures to avoid alteration, deletion, destruction, unauthorized access or treatment not allowed or not in accordance with the purposes of data collection.



Treatments related to web services are treated only by authorized personnel to the processing of personal data.

The user’s personal data may be disclosed to the following categories of recipients employees and/or collaborators of the Owner or the Co-owners or of Softjam S.p.A., a wholly-owned subsidiary of the Joint-owner Eustema S.p.A, who manage the website in the field of their tasks specifically authorized, instructed and trained.
Third party companies or other subjects who perform outsourcing activities on behalf of EUSTEMA in order to allow the functioning of the site (e.g. site maintenance services and software and hardware assistance). These subjects will be designated as Data Processors pursuant to art. 28 of the GDPR;
subjects and entities requiring communication pursuant to the Law or necessity of communication to verify, exercise and defend their rights in court.
The user’s personal data will not be disclosed under any circumstances.


The delivery of browsing data is necessary and not optional and automatically occur at the same time as web browsing when the user use website features. The interested party may refuse to provide the Data Controller only with data referring to cookies. In order to do so, the interested subject may disable cookies following the instructions provided by the browser in question, as specified in the EUSTEMA cookie policy.

In addition to what has been specified for browsing data, the user is free to provide personal data in the request forms or to send e-mails to the addresses indicated on this website. Failure to provide them will result in the impossibility of obtaining the information requested. Consent to the data processing provided is revocable at any time without affecting the lawfulness of the processing based on the consent given before revocation.


The data are processed within the European Union. In case it is necessary to transfer the data outside the European Union, the Data Controllers commit to comply with the provisions of Chapter V of the GDPR and to do what is necessary to ensure adequate levels of protection and safeguarding of Personal Data.


As a data subject, at any time and in accordance with Articles 15-22 of the GDPR, you may exercise your right to:

  • request confirmation of the existence or non-existence of Your personal data;
  • obtain information about the purposes of the processing, the categories of personal data, recipients or categories of recipients to whom the personal data have been or will be disclosed and, when possible, the storage period;
  • obtain correction and deletion of data;
  • obtain the restriction of processing;
  • obtain the portability of the data in a structured format from the Data Controller, commonly used and machine-readable, and
  • transmit them to another data controller without hindrance;
  • object to the processing even in the case of processing for marketing purposes;
  • revoke consent to the processing of the data provided;
  • object to automated decision-making related to natural persons, including profiling;
  • file complaints with the Privacy Guarantor or other competent supervisory authority.

Request to exercise rights may be sent to the e-mail address “”, specifying in the request the right the data subject wants to exercise.

If the user deems the processing of personal data breaches the regulations of the GDPR, is entitled to present a complaint to the Data Protection Authority.


The data collected by the website during its functioning are stored for the period of time strictly necessary to carry out the activities abovementioned. The data will be removed or anonymized at the expiration date, unless further purposes for their storage exist.


For further information on this policy or any privacy issue, or to exercise your rights please contact us at the following e-mail address “”.