Privacy Policy of ARTHA S.r.l

Please read our Privacy Policy carefully, which applies whenever you access the website (hereinafter the ‘Site’) and decide to browse through it and use its services.  

In the following we are pleased to provide you with the necessary information regarding the processing of your personal data, in particular regarding the purposes and methods of processing, as well as the scope of communication and dissemination of the same, the nature of the data in our possession, their provision and the storage period. 

This document is intended to accurately describe the methods for managing the processing of your personal data collected when you navigate the Site or when you use the services offered by the latter. The information is not to be considered valid for other websites that may be consulted via links on the Owner’s website, which is in no way responsible for the websites of third parties.

Data controller 

The Data Controller of the data collected through this Site is the company Artha S.r.l., with registered office in via Inverigo 14, Milan (MI), VAT no. 11985940151, (hereinafter referred to as “Artha”): the Data Controller independently decides on the purposes and methods of data processing, as well as on the security procedures to be applied in order to guarantee the confidentiality, integrity and availability of the data.

Object of processing  

The Controller processes personal, identifying and non-sensitive data (in particular, name, surname, email, telephone number – hereinafter, ‘personal data’ or also ‘data’) communicated by you in order to request information and/or to take advantage of the newsletter service offered by the Controller.  

Surfing data, personal data whose transmission is implicit in the use of Internet communication protocols (such as IP addresses, browser type, operating system, domain name and addresses of websites accessed or exited from, information on the pages visited by users within the Website, access time, length of stay on a single page, internal path analysis and other parameters relating to the user’s operating system and computer environment), acquired by the computer systems and software procedures used to operate the Controller’s Website, may also be processed. In this respect, the Website makes use of cookies that collect your personal data. We invite you to read the Cookie Policy which describes the cookies used by the Website and the purpose of their use. 

Modalities and storage of your data 

The processing of your personal data is carried out by means of the operations indicated in Art. 4 no. 2) GDPR and in compliance with the principles of lawfulness, correctness and transparency and the other principles indicated in Art. 5 GDPR.  

Personal Data will be processed and stored for as long as necessary to pursue the processing purposes for which they were collected. 

1) The Personal Data collected in order to respond to your requests for information and to allow you to navigate the Site correctly will be kept for as long as necessary to fulfil these purposes. 

2) Personal data collected for purposes of Artha’s legitimate interest shall be retained until such interest is satisfied. 

3) When processing is based on the user’s consent, Artha may store Personal Data for a longer period until such consent is revoked. In addition, Artha may be obliged to store Personal Data for a longer period in compliance with a legal obligation or by order of an authority. 

At the end of the retention period, the Personal Data will be deleted. Therefore, at the end of this period, the right of access, cancellation, rectification and the right to Data portability can no longer be exercised. 

The management and storage of personal data will take place on servers located within the European Union owned by the Data Controller and/or third party companies appointed and duly appointed as Data Processors. It is in any case understood that the Data Controller, should it become necessary, shall have the right to move the location of the servers to Italy and/or the European Union and/or non-EU countries. In this case, the Data Controller assures as of now that the transfer will take place in compliance with the applicable provisions of law by entering into, if necessary, agreements that guarantee an adequate level of protection and/or by adopting the standard contractual clauses envisaged by the European Commission. 

Purpose of processing and legal basis for processing 

Data of a personal nature voluntarily provided will be processed for the following purposes: 

  1. For navigation on the Site 
  1. To answer your enquiries 
  1. To fulfil the obligations laid down by law, by a regulation, by EU legislation or by an order of the Authority 
  1. To prevent or detect fraudulent activity or abuse harmful to the website 
  1. To exercise the holder’s rights, e.g. the right of defence in court 
  1. Subject to your consent to subscribe to Artha’s commercial newsletter service. 


For the purposes set out in points 1 to 5 above, the processing of data is necessary i) to enable correct navigation on the Website; ii) for the execution of pre-contractual measures taken at the user’s request; iii) to comply with a legal obligation to which the Data Controller is subject and, finally, iv) for the pursuit of the legitimate interest of the Data Controller such as the right to defend itself in court and to prevent or detect fraudulent activities or abuses harmful to the Website. 


For the purpose of point 6, the processing of data is only lawful if the person concerned has given his or her consent. 


The processing of your data will in no way be subject to profiling and/or automated decisions. 


Optional or compulsory nature of providing data; necessity of consent and consequences of non-consent

Apart from what is specified for navigation data, you are free to provide your personal data. 

The provision of personal data for the purposes referred to in points 1 to 5 is optional but necessary in order to make use of the services requested from time to time from the Data Controller and to perfect the specific functions. Failure to provide them may make it impossible to obtain what has been requested or to use the services of the Data Controller. 

Consent to the processing of data for the purposes set out in point 6 – i.e. for promotional, commercial communication and/or marketing purposes in general by Artha – is always optional. If you do not give your consent, the data controller can still provide the services described in points 1 to 5 and you can still use the other functions and services provided by the data controller. You may then decide not to give consent for the processing of your data for this purpose or to revoke your consent to process data already provided for the purpose referred to in point 6 at a later date and at any time, but the revocation will not affect the lawfulness of the processing based on your consent before the revocation. The right to object to the processing for the purposes referred to in point 6 may be exercised at any time by automated means of contact. 

Persons or categories of persons to whom your data may be disclosed 

Your data will only be communicated to third parties with your express consent, except in cases where such communication is obligatory by law or is necessary for purposes envisaged by law for which the person’s consent is not required; in such cases, the data may be made available to third parties who will process them autonomously and solely for the aforementioned purposes (for example, in the event of a request made by the police or the courts or other competent bodies or to perform obligations arising from the contract concluded with you). Your data will not be disseminated in any way. 

Persons who may process your personal data 

Artha may use third parties to process your personal data for certain activities. The third parties who carry out these operations have been carefully selected and are experienced, capable and reliable, and offer sufficient guarantees that they will fully comply with the applicable data processing regulations, including data security. 

These third parties will be appointed as “data processors” for this purpose and will carry out their activities in accordance with the instructions issued by Artha and under its supervision. We periodically check that the data processors have fulfilled their assigned tasks punctually and that they continue to provide adequate guarantees of full compliance with data protection regulations.The updated list of the Processors can always be requested from the Data Controller. Your data is then processed by our Persons in charge of the individual services. 

Security Measures 

Artha takes appropriate security measures in order to minimise the risk of destruction or loss – including accidental loss – of data, unauthorised access or unauthorised processing or processing that is not in accordance with the collection purposes set out in our Privacy Policy. 

However, Artha cannot guarantee its users that the measures taken for the security of the website and the transmission of data and information on the website will limit or exclude any risk of unauthorised access or loss of data by user devices: We recommend that you ensure that your computer is equipped with appropriate software for the protection of network data transmission, both incoming and outgoing (such as up-to-date antivirus systems) and that your Internet service provider has taken appropriate measures for the security of network data transmission (such as firewalls and spam filters). 

Links to other websites 

Our Site may contain links to other websites that may have no connection with us.

Artha does not control or monitor such websites and their content. Artha cannot be held responsible for the content of these sites and the rules they adopt, including with regard to your privacy and the processing of your personal data while you are browsing. We therefore ask you to be careful when you connect to these sites via the links on our site and to read their terms of use and privacy policies carefully. Our Privacy Policy does not apply to the websites of third parties. Our site provides links to these sites solely to assist you in your search and navigation and to facilitate hypertext links on the Internet to other sites. The activation of links does not imply any recommendation or recommendation by Artha to access and navigate these sites, nor any guarantee of their content, services or goods provided or sold by them to Internet users. 

The rights of data subjects 

In your capacity as data subject, you may exercise your rights under Articles 15 to 22 GDPR, in particular the right to access, rectify or erase data, request restriction or object to processing, as well as the right to data portability.  

Data subjects who consider that the processing of personal data relating to them carried out through this website or its services is in breach of the provisions of the GDPR have the right to lodge a complaint with the Supervisory Authority, or to take legal action. 

In the event of a breach of the data subject’s personal data, taking into account the provisions of Article 34 GDPR, the Data Controller will notify the data subject of the breach. 

Contacts for the exercise of the data subject‘s rights 

You may exercise your rights under current legislation by sending an e-mail to 

This Site and the Data Controller’s Services are not intended for children under 16 years of age and the Data Controller does not knowingly collect personal information about minors. In the event that information about minors is unintentionally recorded, the Owner will delete it in a timely manner at the request of users. 

Social plugins and social networks  

Our web pages may contain plug-ins from social networks (e.g. Facebook, Linkedin, Instagram, etc.). If you access one of our web pages with such a plug-in, your Internet browser connects directly to the social network’s servers and the plug-in is displayed on your screen through your browser connection. If an interested user of a social network visits our web pages while logged into his or her social account, his or her personal data may be associated with the social account. Even if plug-in functions are used, the information will be associated with the social account.Further information on the collection and use of data by social networks in general, as well as the rights and ways available to protect the data subject’s privacy in this context, can be found on the social networks’ data protection pages. If the data subject does not wish to associate their visit to our web pages with their social account, they must log-off from the social network before visiting them. 

Personal data are collected for the following purposes and using the following services: Interaction with social networks and external platforms. These services make it possible to carry out interactions with social networks, or with other external platforms. The interactions and information acquired are in each case subject to the user’s privacy settings relating to each social network. If a service for interaction with social networks is installed, it is possible that, even if users do not use the service, it collects traffic data relating to the pages where it is installed. 

Changes and updates to this Privacy Policy 

Artha may amend or simply update all or part of the Privacy Policy on the website, also in consideration of changes to the laws or regulations that govern this matter and protect your rights. Changes and updates to the Privacy Policy will be notified to users on the Home Page as soon as they are adopted and will be binding as soon as they are published on the website. We therefore ask you to regularly access this section to check the publication of the most recent and updated Privacy Policy. 


Extended Cookie Policy 

Artha S.r.l., with registered office in via Inverigo 14, Milan (MI), VAT no. 11985940151, (hereinafter referred to as “Artha”), Data Controller pursuant to Article 4 of EU Regulation 2016/679 (GDPR), provides you with the following information regarding the cookies installed on the domain 

For more information on the handling of your personal data, please consult our Privacy Policy. 


What are cookies

Cookies are small text files that are sent to your electronic device (PC, tablet, etc.) while you are browsing a website. Cookies are then sent back to the originating website during each subsequent navigation, or are sent to a different website that is able to recognise that specific cookie. Cookies act as a memory for a website, allowing the website to recognise your device on each subsequent visit to that same website. 

The cookies used on this site are so-called technical cookies. These have the function of enabling the performance of activities strictly related to the operation of this online space. The technical cookies used by this site can be divided into the following subcategories: 

The following Technical Cookies do not require the prior consent of the User in order to be installed and used. 

The full list of Technical Cookies used on our site is given in this table:


Cookie Name 

Provider  Cookies Type Purpose  Lifetime


_ga  Google  Statistical  records a unique ID used to generate statistical data on how the visitor uses the website.  2 years  HTTP Cookie 
_gid  Google  Statistical Registers a unique ID to generate statistical data on how the visitor uses the website 1 day  HTTP Cookie 
collect  Google  Statistical  Used to send data to Google Analytics about the device and user behaviour. Keeps track of the user on devices and marketing channels Session  Prixel Tracker 



How to disable cookies via browser configuration 

This page is visible by means of a link from all pages of the Site in accordance with Article 122 second paragraph of Legislative Decree 196/2003 and following the simplified procedures for information and the acquisition of consent for the use of cookies published in the Official Gazette No. 126 of 3 June 2014 and its register of provisions No. 229 of 8 May 2014. 

Cookie Statement last updated on 08/11/2019