I - INFORMATION ABOUT THE PRIVACY POLICY OF THE SITE

1. This section contains information about the management methods of Monstain in reference to the processing of Logistics users' data.

2. This disclosure is also in accordance with Article 13 of Regulation (EU) 2016/679, regarding the protection of individuals with regard to the processing of personal data and on the free movement of such data, for those who interact with Logistics and can be accessed at the corresponding address on the home page: logistics.monstain.com

3. This information is provided only for Logistics and not for other websites that may be consulted by the user via links contained herein.

4. The purpose of this document is to provide guidance on the methods, timing, and nature of the information that data controllers must provide to users upon connection to Logistics web pages, regardless of the purposes of the connection itself, in accordance with Italian and European legislation.

5. The information may be subject to change due to the introduction of new rules in this regard, therefore users are invited to periodically check this page.

6. If the user is under 14 years of age, in accordance with art. 8, c.1 Regulation (EU) 2016/679, and Art. 2 - Quinquies of Legislative Decree 196/2003, as amended by Legislative Decree 181/18, they must legitimize their consent through authorization from parents or those who take their place.

II - DATA PROCESSING

Data Controller

1. The data controller is the natural person or legal entity, public authority, service, or other body that, alone or together with others, determines the purposes and means of processing personal data. It also deals with security profiles.

2. Regarding this website, the data controller is: Monstain Srl, and for any clarification or exercise of user rights, they can be contacted at the following email address: law@monstain.com.

Data Processor

1. The data processor is the natural person or legal entity, public authority, service, or other body that processes personal data on behalf of the data controller.

2. Pursuant to Article 28 of Regulation (EU) 2016/679, upon appointment by the data controller, the data processor for Logistics website data is: the CEO of Monstain S.r.l.

Location of Data Processing

1. The processing of data generated by the use of Logistics takes place in Trento.

2. If necessary, data related to the newsletter service may be processed by the data processor or parties appointed by it for this purpose at the relevant location.

III - COOKIES

Types of Cookies

1. The Logistics website uses cookies to make the user's browsing experience easier and more intuitive: cookies are small strings of text used to store some information that may concern the user, their preferences, or the Internet access device (computer, tablet, or mobile phone). They are mainly used to adapt the operation of the site to the user's expectations, offering a more personalized browsing experience and remembering choices made previously.

2. A cookie consists of a small set of data transferred to the user's browser from a web server and can only be read by the server that made the transfer. It is not executable code and does not transmit viruses.

3. Cookies do not record any personal information, and any identifiable data will not be stored. If desired, it is possible to prevent the storage of some or all cookies. However, in this case, the use of the site and the services offered may be compromised. To proceed without modifying the options related to cookies, simply continue browsing.

Below are the types of cookies used on the site:

Technical Cookies

1. There are numerous technologies used to store information in the user's computer, which are then collected by websites. Among these, the most well-known and used is HTML cookies. They are used for navigation and to facilitate access and use of the site by the user. They are necessary for the transmission of communications on an electronic network or for the provider to provide the service requested by the customer.

2. Settings to manage or disable cookies may vary depending on the Internet browser used. However, the user can manage or request the general deactivation or deletion of cookies by changing the settings of their Internet browser. Such deactivation may slow down or prevent access to certain parts of the site.

3. The use of technical cookies allows for safe and efficient use of the site.

4. Cookies that are inserted into the browser and retransmitted through Google Analytics or through the statistics service of bloggers or similar are technical only if used for the optimization of the site directly by the site owner, who can collect information in aggregated form on the number of users and how they visit the site. Under these conditions, the same rules apply to analytics cookies as for technical cookies in terms of information and consent.

5. In terms of duration, session cookies can be distinguished, which are deleted automatically when the browsing session ends and are used to identify the user and thus avoid logging in on each page visited, and permanent cookies that remain active on the PC until expiry or deletion by the user.

6. Session cookies may be installed to enable access and stay in the reserved area of the portal as an authenticated user.

7. They are not stored persistently but only for the duration of the browsing session until the browser is closed, and disappear when it is closed. Their use is strictly limited to the transmission of session identifiers consisting of random numbers generated by the server necessary to allow secure and efficient exploration of the site.

Third-Party Cookies

1. Depending on their origin, cookies sent to the browser directly from the site being visited and third-party cookies sent to the computer from other sites and not from the one being visited can be distinguished.

2. Permanent cookies are often third-party cookies.

3. Most third-party cookies are tracking cookies used to identify online behavior, understand interests, and personalize advertising proposals for users.

4. Third-party analytical cookies may be installed. They are sent from domains of these third parties external to the site.

5. Third-party analytical cookies are used to detect information about user behavior on Logistics. Detection occurs anonymously to monitor performance and improve site usability. Third-party profiling cookies are used to create profiles of users in order to propose advertising messages in line with the choices made by users themselves.

6. The use of these cookies is governed by the rules established by these third parties, therefore, users are invited to view the privacy information and instructions for managing or disabling cookies published on the relevant web pages.

Profiling Cookies

1. Profiling cookies are those used to create user profiles and are used to send advertising messages in line with the preferences expressed by the user during network browsing.

2. When these types of cookies are used, the user must give explicit consent.

3. Article 22 of Regulation (EU) 2016/679 and Article 122 of the Data Protection Code will apply.

IV - DATA PROCESSED

Data Processing Methods

1. Like all websites, this site also uses log files in which information collected in an automated manner during user visits is stored. The information collected may include the following: IP address; browser type and device parameters used to connect to the site; ISP name; date and time of visit; visitor's web page of origin (referral) and exit; possibly the number of clicks.

2. The above information is processed in an automated form and collected in an exclusively aggregated form to verify the correct functioning of the site and for security reasons. This information will be processed based on the legitimate interests of the data controller.

3. For security purposes (anti-spam filters, firewalls, virus detection), data recorded automatically may also include personal data such as the IP address, which could be used, in accordance with applicable laws, to block attempts to damage the site itself or to harm other users, or otherwise harmful activities or constituting offenses. Such data are never used for identification or profiling of the user, but only for the protection of the site and its users; this information will be processed based on the legitimate interests of the data controller.

4. If the site allows comments to be entered, or in the case of specific services requested by the user, including the possibility of submitting a Curriculum Vitae for a possible employment relationship, the site automatically detects and records certain user identification data, including the email address. Such data are voluntarily provided by the user at the time of requesting the service. By entering a comment or other information, the user expressly accepts the privacy policy, and in particular consents to the content being freely disseminated to third parties. The data received will be used exclusively for the provision of the requested service and for the time strictly necessary for the provision of the service.

Data Communication

1. The user's personal data may be disclosed to: the subjects appointed by us, in the context of their duties and responsibilities, as persons in charge of the processing and/or system administrators; to companies, partners, or third parties that may perform outsourcing activities on behalf of the Data Controller, in their capacity as external data processors.

Data Dissemination

1. User data is not disseminated in any way.

2. Personal data will not be transferred to a third country, outside the EU.

Data Retention Period

1. Personal data collected will be processed and stored for the time necessary to achieve the purposes for which it was collected.

2. Therefore: - Personal data collected for purposes related to the execution of a contract between the owner and the user will be retained until the execution of that contract is completed. - Personal data collected for purposes related to the legitimate interests of the owner will be retained until the fulfillment of such interests is achieved.

3. The user can obtain further information regarding the retention period of personal data and the specific purposes for which such data is used by contacting the Data Controller.

Data Subject's Rights

1. The user, as a data subject, has the right to obtain confirmation from the Data Controller of the existence or otherwise of their personal data, even if not yet recorded, and their communication in an intelligible form.

2. The user also has the right to obtain information regarding: - the origin of personal data; - the purposes and methods of processing; - the logic applied in the event of processing carried out with the aid of electronic instruments; - the identification details of the owner, the managers, and the designated representative in accordance with Article 5, paragraph 2 of the Privacy Code and Article 3, paragraph 1, GDPR; - the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of it as a designated representative in the territory of the State, of managers, or agents.

3. The user also has the right to obtain: - the updating, rectification, or, when interested, integration of data; - the cancellation, transformation into anonymous form, or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data was collected or subsequently processed; - the attestation that the operations referred to in letters a) and b) have been brought to the attention, including with regard to their content, of those to whom the data has been communicated or disseminated, except in the case where such fulfillment proves impossible or involves the use of means manifestly disproportionate to the protected right.

4. The user has the right to object, in whole or in part: - for legitimate reasons, to the processing of personal data concerning them, even if pertinent to the purpose of collection; - to the processing of personal data concerning them for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication, through the use of automated call systems without the intervention of an operator by email and/or through traditional marketing methods by telephone and/or paper mail.

5. The rights referred to in the preceding paragraphs may be exercised by making a request to the Data Controller without formalities, for which an appropriate response will be provided without delay.

6. Requests should be addressed to the Data Controller: Monstain Srl, via email at: law@monstain.com.

7. If the user believes that their rights as set forth above have been violated, they have the right to lodge a complaint with the Data Protection Authority, as provided for by art. 77 of the GDPR, or to take appropriate judicial remedies (Article 79 of the GDPR).

V - POLICY UPDATES

1. The Site reserves the right to modify, update, add, or remove parts of this privacy statement at its discretion and at any time. The user is required to periodically verify changes. The user who continues to use the Service after the publication of the changes accepts the new Privacy Policy.

2. In the event that the user does not accept any of the modifications made to this Privacy Policy, they are required to terminate the use of Logistics and may request the Data Controller to remove their personal data.

3. Unless otherwise specified, the previous privacy policy will continue to apply to personal data collected until then.