Privacy Policy

Privacy information pursuant to articles 13-14 of the European “Privacy” Regulation (GDPR)

Pursuant to article 13 et seq. of EU Regulation no. 2016/679 (the GDPR), we inform you that the data collected during registration will be processed exclusively for the purposes of providing you with the services requested (for example: requesting information, registering on the site to receive benefits and offers, obtaining quotes, making payments, purchasing goods and receiving them at the address you indicate, making a reservation, exchanging documents).

Processing will be done at the offices of LUNGO LARIO Srl (the Controller), tax code and VAT no. 09527360961, with registered offices at Piazza Castello 1, 20121 Milan, Italy by means of procedures, including computerised ones, in the manner and within the limits necessary to achieve the aforementioned purposes. The Controller’s employees and collaborators, in their capacity as people duly appointed to process personal data, may become aware of and have access to such personal data. Providing personal data is optional but failing to provide it will make it impossible for us to keep you updated on the Controller’s initiatives. Personal data will be stored for a period of 12 months.

Furthermore, the data you provide may be processed, only with your explicit consent, to send you sales and marketing messages via email or SMS regarding the services offered by the Controller.

In the first case, the legal basis for processing personal data is based on fulfilling an agreement; in the second case, it is based on your consent. Data will be electronically processed and will be made available to third parties (External Processors) which are needed to deliver the services deemed essential to meet your needs. These third parties, duly contracted and guaranteeing appropriate security, may be within the European Union or in non-EU countries. These External Processors, the list of which is available upon request, may belong to categories of subjects who support the Controller in delivering the services offered through this site (such as, for example: software developers and website operators, shippers).

Personal data will also be processed for statistical analysis and direct marketing purposes, in an anonymous way, as better described in the cookie policy. Therefore, processing is legitimate and necessary to provide you with a service that meets your expectations. Personal data will be stored for the duration of the services you requested or for longer periods if required by law. You may exercise your rights under articles 15-22 of the GDPR at any time by contacting the Controller of this site.

To modify or delete only the data that is stored on the systems used to operate this site, send an email to The information you provide (including your email address) may be communicated to a third party company, in their capacity as an external processor, that supports the Controller in managing the site and in processing your request.

If you ask for your data to be deleted, once done, it may no longer be possible to continue to provide you with the requested service, if any.

You may withdraw your consent at any time without prejudice to the lawfulness of the processing done and based on the consent given before such consent was withdrawn. You may also lodge a complaint with a Supervisory Authority. Personal data is not subject to automated decision-making processes. As a data subject, you have the rights set out in articles 15 et seq. of EU Regulation no. 2016/679 and, specifically, you may ask the Controller for access to the personal data that concerns you, you may have this data rectified or erased, you may restrict processing of this data. You also have the right to have this data made portable, and you may object to the processing of this data. Sending a contact request implies that you consent to your personal data being processed, as described above.

This site and its services are reserved for people aged 18 and over. The Controllers, therefore, do not collect personal data regarding minors under the age of 18.

Upon a user’s request, the Controllers will promptly delete all unintentionally collected personal data regarding a minor under the age of 18.