Stamber S.r.l. in compliance with the requirements of EU Regulation no. 2016/679 - GDPR has adopted its own organisational model that continues to focus on the security of personal data and respect for the right to privacy.
The Regulation provides that, before proceeding with the processing of Personal Data [i.e.: any operation or set of operations performed with or without the aid of automated processes and applied to personal data or sets of personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction "], it is necessary that the person to whom such data belongs is informed about the reasons for which such data are requested and how they will be used. In this regard, the purpose of this document is to provide you, in a simple and straightforward manner, with all the useful and necessary information for providing data in a conscious and informed manner.

Data controller and data processors

The company that processes the data for the purposes described below, plays the role of data controller according to the relative definition contained in article 4 point 7) of the Regulation: "the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of processing personal data ". The Data Controller is:

Company name: Stamber S.r.l.
Registered and operational office: via Tufi 25, 25065 Lumezzane P. (BS)
VAT number and Tax Code: 00376780177
Registro Imprese di Brescia n. BS-168702
Telephone: 030 8971113

The data may be communicated to specific subjects considered "recipients" in accordance with article 4 point 9) of the Regulation:

Place of data processing and data transfer

The data are processed and stored at the legal and operational headquarters of Stamber S.r.l..
For administrative purposes, for the supply of the requested products and/or the activation and maintenance of the requested services, the data may be processed and stored at the offices of the data processors, appointed by the data controller.
All locations are in Italy.

Types of data processed

Data provided voluntarily:

According to the above, the following data may be provided: name; address and telephone number; payment information; age; position information; names of the recipients of the orders; content of reviews and emails sent to us; corporate and financial information; VAT number.

Data collected automatically:

Data collection and processing methods

The collection and processing of data takes place through manual, paper, computer and data transmission tools, including the website [information request form, registration form for access to restricted areas of the website, product and/or service activation form, online purchase form].
Collection and processing are carried out strictly in line with the purposes specified in this notice and in any case in order to guarantee the security and confidentiality of the data.

Purposes of data processing

Subject to data processing consent, as required by article 6 of the Regulation, the data collected will be processed by the data controller and data processors for the following purposes:

The provision of data is mandatory for the purposes indicated above. Failure to provide data could make it impossible to be contacted for sending the requested information.

Duration of data processing

The data are stored for the entire duration of the contractual relationship and, in the case of cancellation and/or other type of termination of the aforementioned relationship, under the terms established by law for the fulfilment, for example, of civil and tax obligations. For service usage purposes, the data will be stored for up to a maximum of 1 year. For marketing purposes, the data will be stored until consent is revoked or for the period established by the regulations or provisions by the Supervisory Authority (no more than 2 years).
With reference to the detection and combating of crimes, the personal data relating to traffic are kept for 10 years from their generation. The data are also processed for ordinary business processing linked to the provision of the service (e.g.: for documentation purposes in the event of a dispute with the invoice or a claim for payment, for the detection of fraud, to perform analysis on behalf of customers), in accordance with what is required by law. In this case, the data are stored, with stringent security measures applied in accordance with the law, and subsequently deleted.

Rights of the data subject

As required by article 15 of the Regulation, you may access your data, ask for rectification and updating, if incomplete or erroneous, request its cancellation if the collection occurred in violation of a law or regulation, as well as oppose the Processing for legitimate and specific reasons.
In particular, below you will find all your rights that you can exercise, at any time, against the Data Controller and/or Data Co-Controller:


Cookies means a piece of text which is saved to the hard disk of a computer only after approval. Cookies are intended to streamline the analysis of web traffic or signaling when a specific website is visited and they enable web applications to send information to individual users.

Cookies used on the site:

In detail, the cookies on the site are:

Name Expiration Purpose Type Privacy / Deactivation
cookieconsent_dismissed 1 year It allows to record if a user has agreed or not to the use of cookies. Technical cookie -
_ga, _gat 2 years / 1 minute / 1 day It allows to analyze the use of the site by users. Statistic cookie (Google Analytics) Privacy / Deactivation

Following a series of resources that explain how to manage or disable cookies for the most popular browsers:

Amendments and updates

This information was updated on 19/11/2019.