Privacy Policy

Pursuant to Article 13 of European Regulation 2016/679 (the “Privacy Regulation”), TRUMA INDUSTRIAL SRL hereby informs all users and/or visitors to the website www.truma-industrial.com (hereinafter referred to as the “Users” and the “Website,” respectively) regarding the use of personal data, log files, and cookies collected through the Website.

1. Data Controller and Data Protection Officer

The Data Controller for the processing of personal data is TRUMA INDUSTRIAL SRL, with registered office in CASTREZZATO (BS), Via Bruno Moraschini, 5; contact email for privacy matters: info@truma-industrial.com (hereinafter the “Data Controller”).

The company has not designated a Data Protection Officer.

2. Information Collected by the Website:

a) Automatically

Browsing Data:

The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is inherent in the use of Internet communication protocols.

Such data, which are necessary for the use of the web services, are also processed for the following purposes:

obtaining statistical information on the use of the services;

monitoring the proper functioning of the services provided

Browsing data are not retained for more than 180 days (except where further retention is required for the investigation of criminal offences by the competent judicial authorities).

b) Provided by the User

Data provided by the User:

The optional, explicit, and voluntary submission of data through the various forms available on the website entails the collection of the sender’s personal data, which are necessary to process contact requests, provide products and/or services, and assign user credentials.

c) Through Cookies

The website uses cookies. For further information, please refer to the extended Cookie Policy available on the website www.truma.com.

3. Types of Personal Data, Purposes, Legal Basis, and Retention Periods

The personal data requested and provided are necessary to enable access to the website and the use of the following services:

  • Service Type: Contacts;
  • Type of Personal Data collected: personal information, contact details, and e-mail address
  • Purpose: to contact those who submit requests
  • Legal Basis: legitimate interest
  • Retention period: until consent is withdrawn

The processing of personal data for the purposes described above will be carried out in accordance with the applicable Privacy Regulation and all relevant sector-specific legislation.

The data provided will be processed primarily by electronic means under the authority of the Data Controller, by individuals who have been specifically appointed, authorized, and instructed to carry out such processing in accordance with Articles 28 and 29 of the GDPR. Please note that appropriate security measures have been implemented, also pursuant to Articles 5 and 32 of the GDPR, to prevent data loss, unlawful or improper use, and unauthorized access.

4. Mandatory or Optional Nature of Consent for the Provision of Data

The provision of personal data is optional. However, failure to provide the requested data may prevent the user from accessing and using certain services available through our website.

5. Parties to Whom We May Disclose Personal Data

Personal data may be disclosed within the European Union, in full compliance with the applicable Privacy Regulation, to the following parties:

(1) Tax authorities and/or other public authorities, where such disclosure is required by law or requested by the relevant authorities;

(2) External organizations, individuals, and service providers engaged by the Data Controller to perform activities related to, instrumental to, or resulting from the provision of the Website Services.

The information automatically collected by the Website may also be transferred to third-party cloud servers located outside the European Union, where such processing is necessary for the provision of the Website’s services. Accordingly, the legal basis for such processing is Article 49(1)(b) of the GDPR.

6. Security measures

Through the Website, personal data are processed in compliance with applicable laws and by implementing appropriate security measures in accordance with current legislation, including Articles 5 and 32 of the GDPR.

In this regard, the Data Controller confirms, among other things, the adoption of suitable technical and organizational security measures aimed at preventing unauthorized access, theft, disclosure, alteration, or unauthorized destruction of the processed data.

7. Rights of the Data Subject

Please note that, at any time, you may exercise the rights provided for under Articles 15 et seq. of the GDPR by sending a written request to the contact details of the Data Controller in order to obtain:

  • confirmation as to whether or not personal data concerning you are being processed, as well as
  • information regarding their origin, and to verify their accuracy or request their updating,
  • rectification, or completion;
  • access to your personal data, their erasure, or the restriction of their processing;
  • the anonymization or blocking of data that have been processed unlawfully.

You may also object to the processing of the personal data previously provided.

8. Changes to the Privacy Policy

The Data Controller reserves the right to amend this Privacy Notice at any time, replacing previous versions. This Privacy Policy was issued in July 2026.