Privacy policy

General information on data processing

Thytronic S.p.A., as the data controller, provides the following information pursuant to Article 13 EU Regulation no. 2016/679 (GDPR) and the national legislation in the field of Privacy (Legislative Decree 101/2018), including following amendments and additions, applicable to any contact or sending of information to our addresses.

General scope of data processing

The subject of the processing will be the data you communicate, identified in Article 4 GDPR as personal data and referring to your company and the staff working with you at any title.
Purpose of the processing and legal basis of the data processing
The processing of data is necessary for the performance of services that are the subject of contracts or assignments that have been concluded or are in the process of being concluded, and for the fulfilments required by current legislation. Such processing is carried out pursuant to Art. 6 lett. a GDPR and pursuant to Art. 24 lett. a, b, c Privacy Code and Art. 6 lett. b, e GDPR for the following purposes

  1. to fulfil pre-contractual, contractual and fiscal obligations arising from existing or pre-contractual relationships;
  2. to respond to the Data Subject's requests for information relating to the products marketed by the Controller;
  3. communicate to the Data Subject technical/commercial updates on products, services and content, including digital content, which have been purchased;
  4. guaranteeing the security of products, services, and protection against fraud;
  5. to fulfil the obligations provided for by law, regulation, Community legislation or an order from the Authority;
  6. to exercise the rights of the Data Controller;
  7. to send the Data Subject advertising information, invitations to meetings, fairs and events, promoted by the Controller regarding products and services.

Personal data will be processed only with specific consent pursuant to Art. 130 Privacy Code and Art. 7 GDPR. Consent for this processing is optional, may be revoked at any time and does not affect the supply of services covered by existing contracts.
The processing is performed in paper and electronic form and the following operations are carried out, as indicated in Art. 4 no. 2 GDPR: collection, recording, organisation, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, cancellation and destruction and can be done either by means of: a) automated, such as computer programs, e-mail, sms, b) non-automated, such as regular mail and telephone with operator, paper means, c) with the aid of computer and electronic means, such as computers, mobile phones and smartphones. d) with access to web platforms, applications, cloud systems.

Type of data processed

The personal data processed may include

  • identity and contact information, such as name, company, e-mail address, telephone number;
  • user interactions with Thytronic S.p.A. e.g. requests, orders, complaints, survey responses;
  • online traffic data, such as IP address information, device and system identifiers, access details,referring website, type of browser used, content accessed, and location, based on both the IP address and information transmitted by the user's mobile device.

In order to benefit from certain content, the user may be required to provide personal data. This request will be reported as appropriate. Therefore, if data is not provided, the user may not be able to benefit from all or part of the digital content.

Modalities and Time of Data Retention

The Controller will process personal data for the time necessary to fulfil the above-mentioned purposes and regulatory obligations.
Those who work for the Controller as employees and collaborators (as technical employees), following specific assignment and training, will have access to the data. The natural or legal persons appointed to carry out specific processing operations shall have access as external data processors. The list of external processors is available at our head office.
Pursuant to art. 24 lett. a, b, d Privacy Code and art. 6 lett. b, c of GDPR, the Data Controller may disclose the data to parties to whom disclosure is required by law for the performance of management, accounting and regulatory compliance operations. The data will not be disclosed and will be stored in the European Union, in countries for which an adequacy decision is in force or in the United States at organisations that are Privacy Shield members.

User rights

Every data subject has the rights under Article 15 GDPR:

  1. to obtain confirmation of the existence or otherwise of personal data concerning you, even if not yet recorded, and its communication in intelligible form;
  2. to obtain information on: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applied in the event of processing carried out with the aid of electronic instruments; d) the identity of the data controller, data processors and the representative designated under Art. 5. Paragraph 2 of the Privacy Code and Art. 3, paragraph 1 of the GDPR; e) the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of the data in their capacity as designated representative in the territory of the State, data processors or persons in charge of processing;
  3. obtain: a) the updating, rectification or, where interested therein, integration of the data; b) the cancellation, transformation into anonymous form or blocking of data processed in breach of the law, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
  4. to object, in whole or in part: a) on legitimate grounds, to the processing of personal data concerning you, even though they are relevant to the purpose of the collection; b) to the processing of personal data concerning you, where it is carried out for the purpose of sending advertising materials or direct selling or else for the performance of market or commercial communication surveys.
  5. You are acknowledged and guaranteed the full right to: ask the Data Controller for access to and rectification or erasure of your personal data (right to be forgotten - Art. 17) or restriction of the processing of your personal data or to object to their processing, as well as the right to data portability. This right may be exercised by sending an email to
  6. In addition, the Data Controller will stop the processing as soon as the relevant request is received from you.

Complaint to the supervisory authority

The data subject has the right to lodge a complaint with the Control Authority in the event that his/her requests for information addressed to the Data Controller have not resulted in a satisfactory response. The authority of reference is the Data Protection Authority:

Consent expressed in digital form

The Interested Subject, in relation to the Specific Purposes, has seen and evaluated this information notice of which he/she declares to have understood its contents, and with reference to the Processing of Data has expressed or denied his/her consent by means of digital tools such as websites, web applications, applications on smartphones, software, and the like. The Data Controller or any Data Processors appointed by the Data Controller will keep logs of the expression and/or denial of consent so that it can be traced.

Changes to this Privacy Statement

Thytronic S.p.A. reserves the right to modify this Privacy Statement as necessary, for example, to comply with changes in laws, regulations, practices and procedures of Thytronic S.p.A. or with requests from regulatory authorities.
In such case, Thytronic S.p.A. will notify affected individuals of material changes to this Privacy Statement. Thytronic S.p.A. will post new versions on the corresponding websites

Website Use Policy

The website accessible at the url is published by Thytronic S.p.A., which is responsible for its content and technical construction. All text and all graphic or multimedia elements are the property of Thytronic S.p.A., which holds all rights. Visitors are invited to view the Site and to use the information contained therein to contact Thytronic S.p.A., but it is not permitted to reproduce its contents in any way.
No responsibility is assumed for the content published on the website and the use that third parties may make of it, or for any contamination resulting from accessing, interconnecting or downloading material from the Site.Therefore, Thytronic S.p.A. shall not be held liable for any damage, loss or prejudice of any kind that third parties may suffer as a result of contact with the website, or following the use of the material published on the website.
The software published on this website may be used exclusively within the scope of the respective Licences of Use and in compliance with the applicable regulations in force. In any case, unless expressly authorised in writing by Thytronic S.p.A., it is expressly forbidden to modify, adapt, translate, decode, decompile, disassemble the Software, including the installation program, or attempt in any other way to discover its source codes or create a new installation program, with the exception of what is expressly permitted, despite this limitation, by the applicable laws in force.