Privacy Policy

Last updated: January 30, 2025.

This information has been prepared in accordance with Article 13 of EU Regulation 2016/679 (hereinafter “the Regulation”) and is intended for users who access the website http://www.difortigroup.com and interact with Difortigroup’s web services. It provides details of our privacy policy, explaining how personal information is processed when using our site and, if necessary, how users can provide informed consent for personal data processing.

The information relates specifically to the Diforti Group website and any other linked websites operated by Diforti.


Data Controller

The data controller of the information you provide is Diforti, with registered headquarters at Diforti Srl, Via Del Commerciante 7, Caltanissetta, 93100, Italy.

Types of Data Processed

Browsing Data

IT systems and software procedures used to operate this website automatically collect personal data as part of their normal functioning. This data transmission is inherent to the use of internet communication protocols.

Although this data is not collected to identify users, it may allow user identification through processing and association with data held by third parties.

This data category includes IP addresses or domain names of users’ devices, URIs (Uniform Resource Identifiers) of requested resources, request timestamps, request methods submitted to the server, file size of responses, numerical codes indicating server response status (successful, error, etc.), and other technical parameters relating to the user’s operating system and computing environment.

These data are used solely to obtain anonymous statistical information on website usage and to monitor site functionality. They are deleted immediately after processing. However, data may be used to establish liability in the event of cybercrime against the site. Apart from this scenario, web contact data is currently retained only for the time necessary to gather statistical data.

Data Provided Voluntarily by Users

Submitting information requests through the forms on our website requires explicit consent to process personal data as necessary to handle user inquiries.

Data Retention

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. If users provide or process third-party personal data while using our site, they guarantee that they have a legitimate legal basis, in compliance with Article 6 of the Regulation, authorizing such data processing.


Data Processing Location and Purpose

Processing related to this website’s services takes place at the registered headquarters of Diforti and is carried out by designated personnel. No personal data derived from the website is disclosed to third parties unless required by law or explicitly authorized by the user.

Personal data provided by users submitting specific requests (e.g., for information or complaints) is used exclusively to provide the requested service, comply with legal, accounting, or tax obligations, and is only shared with third parties when necessary or authorized by the user.


Recipients of Personal Data

Your personal data may be shared for the purposes outlined above with:

  • Data Processors, including:
    • Consultants and service providers supporting Diforti.
    • Hosting providers and IT infrastructure service providers.
    • Technical maintenance providers (e.g., network and system maintenance services).
  • Authorities and Organizations legally required to receive personal data due to regulations or official orders.
  • Authorized Personnel within Diforti who are responsible for processing data strictly for service delivery, bound by confidentiality obligations.

Methods of Processing, Transferring, and Storing Data

Personal data is processed using both automated and manual tools and is stored only for the necessary period required for data collection purposes or as dictated by applicable regulations and legal provisions in Italy (Article 2946 of the Civil Code and following articles).

Security measures are implemented to prevent unauthorized access, data loss, or unlawful data usage.

Some personal data may be transferred to recipients outside the European Economic Area (EEA). Diforti ensures that such transfers comply with the Regulation, using mechanisms such as the European Commission’s Standard Contractual Clauses or other legally approved safeguards.


Rights of Data Subjects

Under Article 15 and following articles of the Regulation, users have the right to:

  • Access their personal data processed by Diforti.
  • Rectify incorrect or incomplete data.
  • Request erasure of their data where legally applicable.
  • Object to processing where legitimate reasons exist.
  • Request restriction of processing in accordance with Article 18 of the Regulation.
  • Obtain their data in a structured, commonly used, machine-readable format, where feasible, under Article 20 of the Regulation.

If users believe their personal data has been processed unlawfully, they have the right to file a complaint with the relevant Data Protection Authority under Article 77 of the Regulation.

All requests regarding personal data must be submitted to Diforti in writing through the contact form on our website www.difortigroup.com.


Contact Us

For further inquiries, please contact Diforti’s customer service.