made pursuant to art. 13 and 14 of the European Regulation for the protection of personal data 2016/679 (GDPR)

This Privacy Policy is intended to describe how the site is managed, with reference to the processing of personal data of users / visitors who consult it, by connecting to the website and, and use the related web services starting from the address and The information is provided only for the aforementioned sites and not for other websites that may be consulted by the user through appropriate links. The website is owned by Ncc Group Italia Srl, which guarantees compliance with the legislation on the protection of personal data pursuant to Regulation 2016/679 / EU (articles 13 and following). Users / visitors must carefully read this Privacy Policy before submitting any type of personal information and / or filling in any electronic form on the site itself.

In general, it should be noted that different types of data collection are carried out through the website:

  1. Necessary and automatic collection of user data relating to the interaction with the website;
  2. Processing related to the collection of data entered voluntarily by the user to access services or to make requests via e-mail.

The types of data processed are therefore:

  1. Data relating to identified or identifiable persons;
  2. Navigation data: belong to this category of data, for example, the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the environment computer scientist of the user. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site.

It should be noted that the navigation data could be used to ascertain responsibility in the event of any computer crimes against the Site, in accordance with the procedures in force at the competent Authorities.

  1. Data provided by sending e-mails

1. Purpose of the treatment

The data you provide will be processed for the following purposes:

  1. establishment and execution of obligations deriving from rental contracts and / or provision of the main or ancillary services and connected to the service requested by you.
  2. preparation of measures relating to the protection against credit risk, including activities aimed at identifying the Customer, ascertaining the truthfulness of the data provided, its economic reliability / solvency, even during the relationship.
  3. preparation of measures relating to the protection of company assets (eg: vehicle fleet, etc.) or company personnel against any acts carried out by customers and which are illegal or fraudulent or in any case in violation of the contract or of the laws or regulations principles of correct behavior in commercial relations, including activities and treatments aimed at identifying the person responsible for such acts and at keeping the related information for subsequent determinations by the company.
  4. preparation of initiatives aimed at improving the services provided to our customers, such as market research, interactive commercial communications, economic and statistical analysis, commercial information, direct sales, sending of information / promotional material, detection of the degree of customer satisfaction.

2. Processing methods

In relation to the aforementioned purposes, the data will be processed in compliance with the regulations in force, by means of manual, IT and telematic tools, with logic strictly related to the purposes indicated above, and for the time strictly necessary to achieve the purposes for which they are been collected. Specific security measures are observed to prevent the loss of data, illicit or incorrect use, and unauthorized access, in accordance with the provisions of current legislation on the subject. In any case, the navigator is informed that the transmission of data via the internet cannot reach absolute security levels.

The Owner cannot be considered required to perform any other service other than the timely application of the safety standards imposed by the legislation in force, with particular reference to the adoption of safety measures.

3. Optional nature of providing data

The provision of your consent is optional for the processing of the related information, however any refusal to provide the data would make it impossible to provide the services you requested.

4. Subjects to whom personal data may be disclosed

With reference to the scope of communication of your data, we inform you that the information provided may be communicated to, or may become aware of the following subjects or categories of subjects:

  1. Police forces (even in the event, for example, of theft of the rented vehicle, which could be equipped with a satellite anti-theft system, capable of collecting information on the vehicle’s path), armed forces and other public administrations, for the fulfillment of obligations provided for by law, regulations or community legislation. 
  2. Consultants, partners and collaborating companies of NCC Group Italia Srl, including companies or other entities with which NCC Group Italia Srl has entered into agreements or conventions for the rental of vehicles subsequently intended for use by employees or other personnel by virtue of these companies or entities.
  3. To insurance companies, companies and subjects contractually linked to NCC Group Italia Srl, competent for the management and / or settlement of claims.
  4. To companies, organizations, consortia, and associations that exercise credit protection activities.

5. Treatment of sensitive data

It may happen that, in relation to specific activities related to the execution of the rental contract (eg: claims management), NCC Group Italia Srl may proceed with the collection and processing of your sensitive data, as defined in article 4, paragraph 1, lett. (d) of the Code, by means of manual, IT and telematic tools. Ncc Group Italia Srl could proceed with the processing of health data or data suitable for revealing his state of health. In such cases, for which your written consent is required, we inform you that NCC Group Italia Srl will proceed with the processing in full compliance with the provisions of the Code and the current General Authorizations of the Guarantor applicable to the processing of sensitive data.

Your sensitive data, which will not be disclosed in any way, may only be disclosed to the following categories of subjects:

  1. Police forces, armed forces and other public administrations, for the exclusive fulfillment of obligations established by law, regulations or community legislation, cases in which Article 26 of the Code excludes the obligation to acquire the prior consent of the interested party.
  2. Insurance companies competent for the settlement of claims, as well as companies or subjects contractually linked to NCC Group Italia Srl that carry out claims management activities.

6. Holder of the treatment

The owner and manager of the processing is:

Tax Code / VAT 05939340963
Via Per Monzoro 41/43
20010 Cornaredo (MI)
Ph. 39 02.00614834, +39 02.48750993
Fax. +39 02.48750993

7. Territorial scope of the processing

The data provided will be processed in Italy, at the headquarters of the Data Controller

8. Rights of the interested party

At any time, you can exercise your rights towards the data controller, pursuant to Article 7 of Legislative Decree 196/2003, which for your convenience we reproduce in full: “ 1. The interested party has the right to obtain confirmation of the existence or not of personal data concerning him, even if not yet registered, and their communication in an intelligible form.

The interested party has the right to obtain the indication of:

  1. the origin of personal data;
  2. the purposes and methods of the processing;
  3. the logic applied in case of processing carried out with the aid of electronic tools;
  4. the identity of the owner, manager and the representative appointed under Article 5, paragraph 2;
  5. the subjects or categories of subjects to whom the personal data may be communicated or who can learn about them as appointed representative in the State, managers or agents.

The interested party has the right to obtain:

  1. updating, rectification or, when interested, integration of data;
  2. the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, including those that do not need to be kept for the purposes for which the data were collected or subsequently processed;
  3. the attestation that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible or involves the use of means that are manifestly disproportionate to the protected right.

The interested party has the right to object, in whole or in part:

  1. for legitimate reasons to the processing of personal data concerning him, even if pertinent to the purpose of the collection;
  2. to the processing of personal data concerning him for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication.”

The related requests must be sent to the Data Controller at the e-mail address: