Privacy Policy


Last updated: 10/02/2019

This Privacy Policy is intended to describe the management methods of the website and the Nibol application (hereinafter "Application") regarding the processing of personal data of an information that is made pursuant to art. 13 of the Privacy Code on the protection of users who use the services offered.

This is the personal data referred to in Legislative Decree no. 196/2003 (hereinafter the "Privacy Code"), the provision issued by the Guarantor Authority "Identification of simplified procedures for the disclosure and acquisition of consent for use of cookies "of 8 May 2014 and of the Recommendation no. 2/2001 that the European authorities for the protection of personal data, gathered in the Group established by art. 29 of the directive n. 95/46 / EC, adopted on 17 May 2001.

The Data Controller may modify or simply update, in whole or in part, this Privacy Notice. The changes and updates will be binding as soon as they are published on the Application. The User is therefore invited to view the Privacy Notice at each access to the Application.

1. Principles

Personal data are processed according to the principles of relevance, lawfulness and correctness as required by the Privacy Code, through the use of appropriate security measures and following the granting of consent by users where required.

These data are stored in a form that allows the identification of the data subject for a period of time not exceeding that necessary for the purposes for which they were collected or subsequently processed.

2. Owner and place of data processing

Pursuant to art. 28 of the Privacy Code, holder of the Application and processing of data is Nibol S.R.L., Via Bordighera 14, 20142 Milan, VAT. 10683870967, e-mail address (hereinafter the "Owner").

The data are processed at the operational headquarters of the Data Controller and in any other place where the parties involved in the processing are located and are only handled by personnel in charge of processing, or by persons in charge of occasional maintenance operations. For more information, contact the owner.

3. Purpose

Unless the communication of personal data is imposed by legal obligations or is strictly relevant and necessary for the fulfillment of requests or contractual obligations for the execution of the service, personal data are provided voluntarily and optionally by users at the time of activation of the service, for the following purposes:

  • Statistics only with anonymous data
  • Monitoring, analysis and tracking of User behavior
  • Profiling of characteristics, behaviors, user choices to provide personalized services or promotions
  • Interaction with live chat
  • Remarketing and behavioral targeting
  • Management of user databases
  • Registration to the mailing list or to the newsletter
  • Communications for their own promotional and commercial purposes
  • Communications and / or assignment for third parties promotional and commercial purposes
  • Communications for own market research and surveys
  • Communications and / or sale for market research and third party surveys

4. Geolocation

Some features and features of our apps may require that you provide your location. If the positioning services are activated, each time the user opens and uses or interacts with our apps on his mobile device, we collect and use data on the position of the mobile device (eg latitude and longitude) to adjust the Services for consumers at the user's current location (eg by showing a list of nearby locations and suggestions). Location data will be processed only if the user gives us his consent.

If the user has the background positioning data enabled and gives us his consent through the settings on the device location and privacy settings, we will obtain, from time to time, information on the location of the device even if the user is not interacting directly with the app. The user's location is never shared with others, unless anonymously, under pseudonym or aggregate, without the user's consent or in accordance with the provisions of this Privacy Policy.

5. Community and connections

By accessing our service, the User allows all other registered Users to be able to visit their personal profile. In this profile there are some user data (example profile picture, name and surname, profession, city ...). You can also request a connection to stay up-to-date on the reciprocal activities with the service or start a conversation within the service itself.

The User can be found through a search field in which it is possible to insert the name or type of work performed (if set by the User). Not only that, before completing a reservation, the User can decide whether to make visible his information about that reservation (day, time and place), so as to create a better sense of community and sharing. If the User decides to make the reservation visible, his avatar (profile picture) will be displayed in the room where the reservation was made and other Users will be able to view the profile of this User.

6. Types of personal data processed

A. Personal data

Personal data may be entered voluntarily by the User or collected automatically during the use of this Application.

Failure to provide certain personal data may prevent this application from providing its services.

The user assumes responsibility for the personal data of third parties published or shared through this application and guarantees to have the right to communicate or disseminate them, freeing the owner from any liability to third parties.

B. Browsing data

The computer systems and software procedures used to operate this application acquire, during their normal operation, some personal data whose transmission is implicit in the use of internet communication protocols.

This information is not collected to be associated with identified interested parties, but due to their very nature, could, through processing and association with data held by third parties, allow users to be identified. This category includes the IP addresses, or the domain names used by users connecting to the site, the addresses in Uniform Resource Identifier (URI) notation of the requested resources, the time of the request, the method used in submitting the request to the server , the size of the file obtained, etc.

These data are used to obtain anonymous and aggregate statistical information on the use of the Application and to check its correct functioning, and permanently reside on third-party servers (hosting providers). The data could be used to ascertain responsibility in case of hypothetical computer crimes against the Application.

C. Cookie

The application uses cookies that the Authority defines as small text strings that the sites visited by the user send to his terminal (usually the browser), where they are stored before being re-transmitted to the same sites at the next visit of the same user.

During the navigation on the Application, the user can receive on his terminal also cookies that are sent from different websites or web servers (called "third parties"), on which some elements may be resident (images, maps, links, etc .) on the site that the user is visiting.

Cookies are used to access online services more quickly and to improve the user's browsing experience (monitoring sessions, storing user information, uploading content faster, etc.).

The user at the first access has the possibility to confirm the installation or not of cookies available, or alternatively, to view the Cookie Policy, containing all the modes of manifestation and denial of consent.

7. Links to third-party sites

The Data Controller may present or offer third-party products or services on its Application. Regarding privacy, the sites of said subjects adopt different criteria and independent from ours. Therefore, the Owner declines all responsibility for the content or activities of these linked sites.

8. Newsletter and communications

With our newsletter we want to inform you about our projects, our activities and events. By registering with our service you consent to the processing of data aimed at sending the newsletter and various communications.

The registrations to the newsletter are kept in order to verify that your registration is made according to what is required by law, which includes the recording of the confirmation time and the IP address and we also keep track of every change of your data. Any time I wanted I could always unsubscribe in whole or in part through a specific section within the application.

9. Consent to international data transfer

With the use of the Application and / or with the communication of their information to the Owner, the user consents to the collection, transfer, storage and processing of such information in countries outside the European Union and in countries belonging to to the European Union. It is noted that the laws of the countries belonging to the European Union (adopted in implementation of the EU Directive 95/46 / EC) are considered equivalent in relation to the adequate protection of personal data protection. The transfer through or to these countries is therefore not subject to particular restrictions (Article 42 of the Privacy Code).

10. Processing methods

The processing of data may consist, as well as in their collection, even in their registration, storage, modification, communication, cancellation, dissemination, etc. and will be carried out both with the use of paper support, and with the aid of electronic and computerized or telematic tools or in any case innovative, according to methods and with suitable tools to guarantee the security and confidentiality of the data, in compliance with the provisions of Articles 31 and following of the Privacy Code, concerning "minimum security measures for the processing of personal data" aimed at ensuring a minimum level of protection of personal data.

In particular, all technical, IT, organizational, logistical and procedural security measures will be adopted, as provided for by the Privacy Code, by the "Annex B" to the same decree (so called Technical Disciplinary), by the various Measures issued after integration, so that at least the minimum level of data protection required by law is guaranteed.

Furthermore, the applied methodologies guarantee that access to the data is allowed only to the persons in charge of the processing on our part.

11. Rights of the interested parties

Users have the right to contact us for any information on their personal data, to obtain confirmation of the existence or otherwise of the same data and to know its content and origin, verify its accuracy or request its integration or updating , or rectification, cancellation, transformation into anonymous form or blocking in violation of the law, and to oppose in any case, for legitimate reasons, to their treatment.

Requests can be transmitted in the following ways:

12. Definitions

Application: site, app, hardware or software tool through which the personal data of users are collected.

Personal data: any information relating to an individual, identified or identifiable, even indirectly, by reference to any other information, including a personal identification number.

User: the individual who uses this Application, which must coincide with the interested party or be authorized by him and whose personal data are being processed.

Data processor: natural person, legal person, public administration and any other body, association or body appointed by the Data Controller to process personal data, as established by this privacy policy.

Data controller: natural person, legal entity, public administration and any other body, association or body to which they are responsible, including with the other data controller, decisions regarding the purposes, methods of processing personal data and the tools used, including the security profile, in relation to the operation and use of this Application. The Data Controller, unless otherwise specified, is the owner of this Application.

Holder of personal data: according to Italian law, indicates any operation or set of operations, carried out without the aid of electronic tools, concerning the collection, registration, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, deletion and destruction of data, even if not registered in a database.