Privacy Policy


This Policy is intended to describe the management methods in relation to the processing of personal data of users / visitors of this website, accessible at
We recommend that you read this privacy policy carefully before providing the data.
This communication is provided in accordance with art. 13 pursuant to EU Regulation no 2016/679 (GDPR).


The data controller is Graded S.p.A., with registered office in Via Generale Girolamo Calà Ulloa, 38 (hereinafter referred to simply as “Owner”).
The updated list of data processors and group affiliates is available by submitting a request to

Scope covered by this policy

This Privacy Policy concerns this website and not also other websites that are not pertaining to Graded S.p.A. possibly consulted by the user by navigating the links.

Policy and information

The website performs a mainly informative function of the activities carried out by Graded S.p.A., therefore, in most cases, there is no provision for the collection of personal data by the browser. In some cases, in order to allow the processing of requests for information, for example, the user is asked to fill in a data collection form. In these cases, the privacy information is provided which specifies the use of the data and the other indications required by law. We recommend that you read these notices before providing data.
In addition, in limited cases where it is necessary to collect personal information for other purposes, this will be clearly highlighted in the legal information, in order to allow transparency and awareness to the user.
This information is aimed at defining the limits and methods of data processing for each service, on the basis of which the visitor can freely express his consent (if necessary) and possibly authorize the collection of data and their subsequent use.

Browsing data

During their normal operation, the IT systems and software procedures used to operate this website acquire some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes: IP addresses, the type of browser used, the operating system, the domain name and the addresses of websites from which access or exit has been made, information on the pages visited by users within the site, the access time, the stay on the single page, the analysis of the internal path and other parameters relating to the operating system and the user’s IT environment.
These technical / IT data are collected and used exclusively in an aggregate and not immediately identifying manner; they could be used to ascertain responsibility in case of hypothetical computer crimes against the site or at the request of the public authority.


Regarding the installation of cookies by this website, please refer to the Cookie policy.


Methods of data processing and storage

The processing of personal data is carried out mainly using electronic procedures and supports for the time strictly necessary to achieve the purposes for which the data were collected. The user, however, has the right to obtain the deletion of his data for legitimate reasons.


Supply of data The provision of the personal data requested from the interested party – unless otherwise specified – is optional, however failure to provide it may make it impossible to obtain what has been requested or to carry out the indicated activity.

Place of data processing

The treatments connected to the web services of this site take place at the headquarters of the owner company, which manages the relative server. Personal data are only handled by technical staff of this company, specifically in charge of processing, or by any persons in charge of occasional maintenance operations.

Scope of data circulation and data diffusion

Personal data acquired through this website are accessed only by subjects who act on behalf of the Data Controller, specifically designated as System Administrator, data manager, coordinators or agents and in charge of managing the requested service; the same data are not disclosed.
More detailed information on the names of the privacy roles can be requested by writing to
Foreign data flows
Given the international nature of Graded S.p.A.’s activities, the data can be sent abroad and processed, still for the above purposes only , by Group companies located in the territory of the European Union and in third countries (ENP, Dubai Development).
In the latter cases, the transmission of data abroad is subject to specific guarantees for the protection of personal data through the adoption of standard contractual clauses on data protection, approved by the European Commission, or similar guarantees.

Rights for the protection of personal data

The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence or otherwise of the same data and to know its content and origin, verify its accuracy or request its integration or updating, or rectification.
Furthermore, you have the right to request cancellation, transformation into anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, to their treatment.
Requests should be sent to
In the event of deficient or insufficient feedback, the interested party may resort – pursuant to the applicable national legislation, Legislative Decree 196/2003, as well as the GDPR – to the Guarantor Authority for the protection of personal data, to the contact details available on the institutional website

Policy changes

Any entry into force of new sector regulations, as well as the constant examination and updating of services to the user, could entail the need to change the methods of processing personal data. It is therefore possible that our policy may change over time and we therefore invite the visitor to periodically consult this page. For this purpose, the policy document highlights the update date.

Editorial Date: May 2018

Last Update: February 2020