Privacy Policy

In accordance with the Italian Personal Data Protection Code (Legislative Decree No. 196/2003, hereinafter “Privacy Code”) and EU Regulation No. 2016/679 (hereinafter “GDPR”), Dronus S.p.A., a company established under Italian law, with its registered office in Rome, via Luigi Perna 51, Tax Code and VAT No. 14668071005 (hereinafter “Data Controller”), hereby provides all users of the website dronus.com with the following information concerning the processing and protection of their personal data.

Processing of Personal Data and Purposes

The Data Controller shall process personal identification data (such as, for instance, first name, last name, e-mail address, phone number, address — hereinafter “personal data” or “data”) provided by the user (hereinafter “Data Subject”) through the form available on the website dronus.com.

The personal data optionally, explicitly and voluntarily provided by the Data Subject are used for the purpose of processing any request (for instance, if additional information or clarifications are requested by calling the numbers listed on the website or sending an e-mail to the addresses specified therein).

Web Browsing Data

The computer systems and software procedures used to operate this website acquire during their normal operation some personal data whose transmission is implicit in the use of Internet communication protocols. Such information — which by its nature could, through processing and association with data held by third parties, allow users’ identification — is not collected in order to be associated with identified Data Subjects.

This category of personal data includes the IP addresses or domain names of the computers used to visit the website, URIs (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response provided by the server (successful, error, etc.) and other parameters concerning the user’s operating system and computer environment. These data may be used to ascertain liabilities for computer crimes against the website.

Cookies and Third-Party Services

This website uses cookies and similar technologies, including third-party services for analytics (Google Analytics 4, Microsoft Clarity), for marketing and advertising measurement (Google Ads, Meta Pixel, LinkedIn Insight Tag) and for company-level website visitor identification (lemlist, through the Snitcher provider, on the basis of visitor IP addresses), loaded and governed through Google Tag Manager. These technologies are activated only after your consent: by default every storage signal is set to “denied” in accordance with Google Consent Mode v2, and is updated solely on the basis of the choices you express through the consent banner. You can review or change your preferences at any time via the “Cookie settings” link in the footer.

For the full list of technologies, their purposes and how to manage them, please refer to the Cookie Policy, drafted on the indications provided by the Italian Data Protection Authority guidelines of May 8th 2014.

Nature of Data Provision

With the exception of the browsing data necessary to implement computer and Internet protocols, the provision of personal data is voluntary and optional. Nevertheless, failure to provide such data will make it impossible to handle the user’s requests.

Processing Methods

Your personal data are processed pursuant to Article 4 Privacy Code and Article 4 no. 2 GDPR and more precisely: data collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Your personal data are processed by automated means and are stored electronically in accordance with the minimum safety provisions required by the applicable laws. Your data are stored as long as required to carry out the purposes for which they were collected and, in any case, for no longer than 48 months after your consent has been given, as prescribed by law.

Data collected from users are stored on servers within the European Economic Area (“EEA”) but may be transferred to and processed in countries outside the EEA. Any transfer of personal data will be compliant with the applicable laws.

Transfer and Disclosure of Data

Data collected will not be transferred or disclosed to third parties without the express consent of the Data Subject, with the exception of any requests by competent authorities, as prescribed by law. Dronus S.p.A. does not transfer, sell or share your personal data with third parties for marketing purposes. Your personal data are shared with third parties only to provide the Data Subject with our services.

In compliance with the applicable provisions of law, your personal data are processed for marketing purposes, and only upon your express consent, in order to send you — by e-mail, post and/or telephone — newsletters or information concerning products or services offered by the Data Controller.

Special Categories of Personal Data

Pursuant to Articles 26 and 27 Privacy Code and Articles 9 and 10 GDPR, the Data Subject may provide the Data Controller with “special categories of personal data”, namely those revealing “racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation”. Such categories of data shall only be processed upon the Data Subject’s free-willed and explicit consent given with regard to our Privacy Policy.

Rights of the Data Subject

Right of access: pursuant to Article 15 GDPR, the Data Subject shall have the right to obtain from the Data Controller confirmation as to whether or not his or her personal data, even when not registered, are being processed and, where that is the case, their communication in an intelligible form.
Right to information: the Data Subject shall have the right to obtain from the Data Controller information about the processing purposes and methods, categories of personal data concerned, identification details of Data Controller and Data Processors, recipients or categories of recipients to whom his or her personal data may be disclosed.
Right to data portability: every time Dronus S.p.A. processes your personal data by electronic means on the basis of your consent, or on the basis of an agreement, the Data Subject has the right to receive a copy of the data which he or she has provided to the Data Controller in a structured, commonly used and machine-readable format. This right includes only the personal data provided by the user. Pursuant to Article 20 GDPR, the Data Subject also has the right to have his or her personal data transmitted directly from the Data Controller to which such personal data have been provided to another controller.
Right to rectification: pursuant to Article 16 GDPR, the Data Subject shall have the right to obtain from the Data Controller without undue delay the rectification of inaccurate personal data, as well as the right to have incomplete personal data completed.
Right to erasure: pursuant to Article 17 GDPR, the Data Subject has the right to obtain the erasure of any personal data processed by Dronus S.p.A. at any time.
Right to object: pursuant to Article 21 GDPR, the Data Subject shall have the right to object at any time to processing of personal data concerning him or her. Dronus S.p.A., therefore, shall no longer process his or her personal data unless the Data Controller demonstrates compelling legitimate grounds for the processing, which override the interests, rights and freedoms of the Data Subject or for the establishment, exercise or defense of legal claims.
Right to restriction of processing: pursuant to Article 18 GDPR, the Data Subject shall have the right to obtain from Dronus S.p.A. restriction of processing where one of the following applies:
- if the Data Subject has objected to processing by Dronus S.p.A. on the basis of legitimate grounds, the processing of such data shall be restricted for a period enabling the Data Controller to verify the legitimate grounds;
- if the accuracy of the personal data is contested by the Data Subject, Dronus S.p.A. shall restrict the processing for a period enabling the Data Controller to verify the accuracy of the personal data;
- the processing is unlawful and the Data Subject opposes the erasure of his or her personal data and requests the restriction of their use instead;
- Dronus S.p.A. no longer needs the personal data for the purposes of the processing, but they are required by the Data Subject for the establishment, exercise or defense of legal claims.
Right to lodge a complaint with the competent supervisory Authority: if the Data Subject considers that the processing of his or her personal data by Dronus S.p.A. is unlawful, he or she shall have the right to inform the Data Controller directly, or to lodge a complaint with a competent supervisory Authority.

Exercise of Rights

The Data Subject will be able to assert his or her own rights at any time by sending an e-mail at info@dronus.com.

Data Controller and Processors

The Data Controller is Dronus S.p.A., with registered office in Rome, via Luigi Perna 51. An updated list of the Data Processors is kept at the registered office of the Data Controller.

Updates concerning our Privacy Policy: this notice may be subject to updates. Data Subjects will be informed of any material changes made to this privacy notice.