Purpose of this Notice

This page provides a description of how the website manages the processing of its users’ personal data. Data relating to identified or identifiable individuals may be processed following the consultation of this website.

This information notice is provided pursuant to Article 13 of Regulation (EU) 2016/679 (GDPR 2016/679) to those who interact with the web services of B.M.P. S.r.l. for the protection of personal data, accessible electronically from the address:

The information notice is provided only for the website of B.M.P. S.r.l. and not for any other websites consulted by the user through links.

The information notice is also based on Recommendation No. 2/2001 which the European personal data protection authorities, joined in the Working Party established by Article 29 of Directive No. 95/46/EC, adopted on 17 May 2001 to identify certain minimum requirements for collecting personal data online and, in particular, the methods, timing and nature of the information that data controllers are required to provide to users when they connect to web pages, irrespective of the reasons for such connection.

Type of Data Processed

Navigation data

The IT systems and software procedures used for the functioning of these websites acquire certain personal data as part of their normal operations, the transmission of which is required for the use of internet communication protocols.

This information is not gathered to be associated with the identified data subjects, but by its very nature it may be used to identify users by means of processing and matching with information held by third parties.

This category of data includes IP addresses or domain names of the computers used by users who connect to the website, the URI (Uniform Resource Identifier) notation addresses of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response provided by the server (successful, error, etc.) and other parameters relating to the operating system and the IT environment of the user.

This information is used only in order to obtain anonymous statistical information on the use of the website and to check its proper functioning and is immediately deleted after it is processed. The data may be used to assess liability in the event of any cyber crimes against the website: without prejudice to this case, currently the data on web contacts do not persist for more than seven days.

Data provided voluntarily by the user

B.M.P. S.r.l. shall process the personal data that the user will provide when registering, requesting a specific service or in any event as part of the relationship with the portal

These data may include:

The provision of personal data represents a necessary requirement for the purpose of the provision and resulting use of the Services requested. Any failure to provide certain data (personal data, email address) therefore may make it impossible for the Data Controller to provide the Services requested.

B.M.P. S.r.l. shall specify from time to time, also through its forms on the portal, the data which must be provided for the use of the Services and the additional data which instead may be provided only in order to enhance the user’s experience when using such Services.

Data Controller, Data Processor and DPO

The Data Controller is B.M.P. S.r.l., represented by its legal representative. The list of External Data Processors is constantly updated and may be consulted at the registered office of the company. No DPO has been appointed.

Purpose of the data processing

The personal data that you provide will be used for the following purposes:

  1. To provide the Services requested by the user on the portal

  1. to send communications concerning the services offered, newsletters and personalised news, containing materials and initiatives promoting its activities and services with automated methods (email).

Nature of the Provision of Data

The provision of data is compulsory as regards the purpose set forth in point a): any refusal will make it impossible for B.M.P. S.r.l. to proceed with the full provision of the services offered.

Consent for the purpose set forth in point b) is optional and will have as its sole consequence that no advertising messages or newsletters can be sent, with no impact on the provision of the service offered.

Processing Procedures

All personal data are processed primarily using electronic tools and procedures. However, hard copy processing cannot be ruled out a priori.

The data will be stored in a form that allows for the identification of the data subjects only for the time strictly required to achieve the purposes for which the data were originally collected and, in any case, within legal limits.

In order to guarantee that the personal data are always accurate, updated, complete and pertinent, we invite users and other data subjects to keep their data updated using the specific functions of the websites and applications connected to the portal, or to report any changes to the following email address:

The personal data shall be processed only for the time required in relation to the purposes described above.

Security measures will be taken to guarantee the confidentiality of the data subject and prevent undue access by third parties or unauthorised personnel.

Data Processing Location

The processing connected to the web services of this website takes place at the registered and operating office of B.M.P. S.r.l. and is handled only by specifically appointed personnel; the data shall also be processed in any other location where the parties involved in processing may be located. In particular, all data concerning the website, as well as the relative security copies, are stored in servers hosted in data centres inside the European Union and compliant with EU regulations in force.

For additional information, contact the Data Controller.

Data Processing Times

The data shall be processed for the time required to perform the service requested by the user, or required based on the purposes described in this document, and the user may always request the suspension of processing or the elimination of the data.

Disclosure of data to third parties

No data shall be disclosed. When the communication to third-party suppliers, consultants or partners is necessary for requirements linked to the provision of the Services, the Data Controller shall appoint them as data processors pursuant to Article 28 of the Regulation, by virtue of their demonstrated capacity, experience and reliability.

The data subjects may request a complete list of the data processors appointed over time by B.M.P. S.r.l. at any time by sending a request to the Data Controller at the email address

It is agreed that the personal data of users may be freely communicated to third parties, such as law enforcement authorities or other public administrations, any time this is permitted by law or required by an order or measure of a competent authority. Such parties shall process the data in their capacity as autonomous data controllers.

Cookie data controller

As the installation of cookies and other tracking systems by third parties through the services used on this website cannot be technically controlled by the Data Controller, all specific references to cookies and tracking systems installed by third parties should be considered indicative.

Given the objective complexity linked to the identification of technologies based on cookies and their very close integration with the functioning of the web, users are invited to contact the Data Controller any time they would like to receive any details on the use of cookies and any use of them - for example by third parties - made through this website.

Rights of the data subject

At any time, you may exercise, pursuant to Articles 15-22 of EU Regulation 2016/679, the right to:

  1. request confirmation of the existence or otherwise of your personal data and, in the affirmative, obtain access to the personal data and information specified in point b) below;

  2. obtain information concerning the purposes of the processing, the categories of personal data, the recipients or categories of recipients to which the personal data were or will be communicated (in particular if recipients in third countries or international organisations) and, when possible, the storage period;

  3. have the data rectified or eliminated;

  4. revoke your consent at any time (however, revocation of consent shall not jeopardise the lawfulness of the processing carried out based on consent prior to the revocation);

  5. have processing restricted;

  6. enforce your right to data portability, i. e. receive the data from a data controller in a structured, commonly used machine-readable format and transmit them to another data controller without impediment;

  7. object to processing at any time and also in the case of processing for direct marketing purposes;

  8. object to an automated decision-making process relating to natural persons, including profiling;

  9. obtain confirmation of the fulfilment of the provisions of Article 19 of EU Regulation 2016/679 by the Data Controller, or the communication – to each of the recipients to which the personal data were disclosed – of any updates or eliminations or restrictions on processing performed in accordance with Article 16 of EU Regulation 2016/679, except if such fulfilment is impossible or requires disproportionate effort;

  10. submit a complaint to the competent supervisory authority.

To enforce data subject rights and/or request additional information, you may contact the Data Controller “B.M.P. S.r.l.”, with registered and processing office at via Venere 15, 42019 Scandiano (Reggio Emilia), Italy – Tel. +39 0522 856064 – email: