Privacy Policy

Information on the processing of personal data pursuant to EU Regulation 2016/679 (GDPR)

Last updated: March 2026

1. Introduction

This privacy notice is provided pursuant to Art. 13 of EU Regulation 2016/679 (General Data Protection Regulation, hereinafter GDPR) and Italian Legislative Decree 196/2003 (Personal Data Protection Code, as amended by Legislative Decree 101/2018) to those who interact with the web services of PARKPIÙ, accessible from www.parkpiu.it.

This notice applies exclusively to the website www.parkpiu.it and not to any external sites accessible via links. Please read this notice carefully before providing any personal data and/or filling in any electronic form on the site.

2. Data Controller

The Data Controller for personal data processing is PARKPIÙ S.r.l., with registered and operational office at:

Via Como 3, 22063 Cantù (CO), Italy

VAT / Tax Code: 03729860134

Email: info@parkpiu.it

Certified email (PEC): parkpiusrl@lamiapec.it

3. Types of data collected

3.1 Navigation data

The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols (e.g. IP addresses, browser type, operating system, domain name, time of request).

These data are used solely to obtain anonymous statistical information about the use of the site and to monitor its correct functioning, and are deleted immediately after processing.

3.2 Data voluntarily provided by the user

The voluntary submission of data through the contact and support forms on the site (name, surname, email address, phone number, message) entails the acquisition of the data entered by the user, necessary to respond to requests and provide the requested service.

The optional sending of emails to the addresses indicated on the site entails the acquisition of the sender's address and any other personal data contained in the message.

3.3 Cookies

This site uses only technical cookies necessary for the proper functioning of the site. No profiling or tracking cookies are used.

Third-party services integrated into the site (such as Google Maps) may set their own cookies. For more information, please refer to the respective privacy policy:

Google Maps: policies.google.com/privacy

4. Purpose and legal basis of processing

Purpose: Responding to contact and support requests

Legal basis: Art. 6.1.b GDPR - Performance of pre-contractual measures at the request of the data subject

Purpose: Technical management of the website and IT security

Legal basis: Art. 6.1.f GDPR - Legitimate interest of the Controller

Purpose: Compliance with legal obligations

Legal basis: Art. 6.1.c GDPR - Legal obligation

5. Third-party services

The site uses the following third-party services that may process users' personal data:

Google Maps – for displaying interactive maps on the Contact page. The use of Google Maps involves the transmission of data (including IP address) to Google servers.

Resend – for sending emails generated by the contact and support forms on the site. The data entered by the user (name, surname, email address, phone number, message and any additional information provided) is transmitted via API to Resend servers to enable the forwarding of the communication. For more information: resend.com/legal/privacy-policy.

Vercel Inc. – for website hosting and execution of serverless functions (APIs) that handle the submission of contact forms. Data passes through Vercel's infrastructure during request processing. For more information: vercel.com/legal/privacy-policy.

Notion – for the storage and organized management of requests received through the contact and support forms. User data is transmitted via API to Notion servers for registration in an internal database. For more information: notion.so/privacy.

6. Data recipients

The personal data collected may be communicated to the following categories of recipients:

Resend Inc. – as data processor for sending email communications generated by the contact and support forms on the site.
Vercel Inc. – as provider of the hosting infrastructure and serverless functions used to process contact form data.
Google LLC – as provider of the Google Maps service, integrated into the Contact page.
Notion Labs Inc. – as provider of the platform used for the storage and management of requests received through the contact and support forms on the site.
Hostinger International Ltd. – as provider of domain management services.
Consultants and professionals – parties providing accounting, tax or legal consultancy services to the Controller, limited to the data necessary for the fulfilment of their respective assignments.

Data is not disclosed or communicated to third parties other than those indicated above, except in cases provided for by law.

7. Data retention period

Navigation data: deleted immediately after statistical processing.
Contact/support form data: retained for the time necessary to fulfil the request and in any case no longer than 24 months from collection.
Accounting and tax data: retained for 10 years as required by Italian tax law.

8. Data transfer to third countries

The use of third-party services (Google Maps, Resend, Vercel, Notion) may involve the transfer of data to servers located outside the European Union, including the United States. Google and Vercel adhere to the EU-US Data Privacy Framework, which provides adequate safeguards for the transfer of personal data. Regarding Resend and Notion, data is processed in accordance with their respective privacy policies.

9. Rights of the data subject

Pursuant to Articles 15-22 of the GDPR, the user has the right to:

Access: obtain confirmation of the existence of personal data and access its content.

Rectification: obtain the correction of inaccurate data or the completion of incomplete data.

Erasure (right to be forgotten): obtain the deletion of personal data, in the cases provided for by the GDPR.

Restriction of processing: obtain the restriction of processing when one of the conditions provided for by the GDPR applies.

Portability: receive personal data in a structured, commonly used and machine-readable format.

Objection: object at any time to the processing of personal data on legitimate grounds.

Withdrawal of consent: withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

To exercise your rights, you may contact the Data Controller by writing to: info@parkpiu.it

The user also has the right to lodge a complaint with the competent supervisory authority: Italian Data Protection Authority - Garante per la protezione dei dati personali (www.garanteprivacy.it).

10. Nature of data provision

The provision of personal data through the contact forms is optional. However, failure to provide the data marked as mandatory may make it impossible to fulfil the request.

No automated profiling is carried out, nor are decisions made based solely on automated processing pursuant to Art. 22 of the GDPR.

11. Changes to this policy

The Controller reserves the right to make changes to this privacy policy at any time. Any changes will be published on this page. We recommend that you regularly check this page to stay updated on the latest version of the policy.