Privacy Policy


This page describes how the website is managed with regard to the processing of the personal data of its users, as well as the methods and purposes of personal data processing.

This information is provided in accordance with Articles 13-14 of Regulation (EU) 2016/679 – hereinafter, GDPR – to those who interact with the web services that can be accessed electronically from the address:

This site is the property of TERZUOLO – BRUNERO – & ASSOCIATI, which manages and maintains it for the purpose of providing information and communications relating to the products or services offered.

This information is provided only for the abovementioned website and not for any other websites that may be consulted through our links, for which TERZUOLO – BRUNERO – & ASSOCIATI is in no way responsible.

TERZUOLO – BRUNERO – & ASSOCIATI, with registered office in Corso Tassoni n.31/a, Turin, Italy, in its capacity as Data Controller of your personal data, pursuant to and for the purposes of EU Regulation 2016/679 – GDPR, hereby informs you that the GDPR Regulation provides for the protection of data subjects with regard to the processing of personal data and that such processing will be based on the principles of correctness, lawfulness, transparency and protection of your confidentiality and your rights.

Data controller contact information

The data controller can be contacted in the following ways:

  • Telephone: +39 0117716880
  • Email:
  • Certified email (PEC):

Your personal data will be processed in accordance with the legal provisions of the GDPR Regulation and the confidentiality obligations provided therein.


Browsing data

In the course of their normal operation, the computer systems and software procedures used to operate this website acquire certain personal data, the transmission of which is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with identified data subjects but, by its very nature, it could, through processing and association with data held by third parties, make it possible to identify users. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and computer environment. These data are used for the sole purpose of obtaining anonymous statistical information on the usage of the site and check its correct functioning and they are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site.

Data voluntarily provided by the user

  • SENDING COMMUNICATIONS TO OUR EMAIL ADDRESSES: the optional, explicit and voluntary sending of emails to the addresses indicated on this site, for the purpose of specific requests, entails the subsequent acquisition of the sender’s address, which is necessary for replying, as well as any other personal data included in the message.
  • CONTACT US: the explicit and voluntary filling in of the data collection form, for the purpose of requesting information, entails the subsequent acquisition of the sender’s address, which is necessary for replying, as well as any other personal data included in the request for information.
  • WORK WITH US: responding to a job advertisement on our site or submitting an unsolicited application will entail our obtaining all the information contained in your curriculum vitae. Your sensitive personal data (such as state of health, race and ethnic origin) will only be processed if relevant and necessary for the aforementioned purposes, otherwise they will not be taken into consideration (Provision of the Italian Personal Data Protection Authority containing prescriptions relating to the processing of special categories of data, pursuant to Article 21, paragraph 1 of Legislative Decree No. 101 of 10 August 2018).

Specific summary information is reported or displayed on the pages of the site dedicated to particular services on demand.


Data are processed mainly by electronic and computerised means and stored both on computer media and on paper media, as well as on any other suitable media, in compliance with the methods set out in Articles 6 and 32 of the GDPR and by adopting appropriate security measures to prevent loss of data, unlawful or incorrect use and unauthorised access.

We inform you that, in order to provide complete services, our portal may contain links to other websites not managed by us. We are not responsible for errors, content, cookies, publication of unlawful moral content, advertising, banners or files that do not comply with the regulations in force and for compliance with the Privacy Policy by sites not operated by us to which reference is made. In order to improve the services offered, we invite you to send an immediate report of malfunctions or misuses and suggestions to the following e-mail address:

Your data will only be processed by personnel expressly authorised by the Data Controller.


Data will be processed for the following purposes:

  1. managing requests for information. The legal basis for the processing is the consent of the data subject pursuant to Art. 6(1)(a) of the GDPR Regulation. The provision of data for these purposes is optional, but failure to provide them would make it impossible to obtain the information requested;
  2. fulfilling obligations under laws or regulations. For this purpose, the processing is necessary to fulfil the legal obligations to which the Controller is subject, pursuant to Art. 6(1)(c) of the GDPR Regulation;
  3. protection of the Controller in judicial proceedings. For this purpose, the processing is necessary for the pursuit of the legitimate interest of the Controller pursuant to Art. 6(1)(f) of the GDPR Regulation;
  4. selection and assessment for personnel recruitment. The legal basis for the processing is the performance of the contract or the execution of pre-contractual measures, pursuant to Art. 6(1)(b) of the GDPR Regulation. The provision of data for these purposes is optional, but failure to provide them would make it impossible to execute the contract.


The personal data relating to the processing in question may also be communicated to subjects to whom the right to access your personal data is conferred by law or secondary and/or EU regulations. Your data may be communicated exclusively to competent and duly appointed subjects for the performance of the services necessary to properly manage the relationship, guaranteeing the protection of the rights of the data subject. Furthermore, some data may be communicated and transmitted to internet operators used by TERZUOLO – BRUNERO – & ASSOCIATI for the management of their domains.

Your personal data will not be circulated in any way.


We wish to inform you that, in accordance with the principles of lawfulness, purpose limitation and data minimisation, pursuant to Article 5 of the GDPR, the retention of your personal data is set for a period necessary for the performance of the services requested and in compliance with the regulations in force concerning the storage of tax, fiscal and contractual documents.

  1. The data subject shall have the right to obtain confirmation as to whether or not personal data concerning him or her exist, even when they have not yet been recorded, and their communication in intelligible form.

2. The data subject shall have the right to obtain information concerning:

  1. the origin of his/her personal data;
  2. the purposes and methods of processing;
  3. the logic applied when the processing is carried out with the aid of electronic means;
  4. the identity of the data controller, data processors and appointed representative pursuant to Art. 5(2);
  5. the subjects or categories of subjects to which the personal data may be disclosed or who may come to acquire knowledge thereof in their capacity as appointed representatives in the territory of the state, data processors or persons in charge of processing.

3. The data subject shall have the right to obtain:

  1. the updating, the correction, and, if interested, the supplementing of his/her personal data;
  2. the deletion, transformation into anonymous form or blocking of data processed in breach of the law, including data whose storage is not necessary in relation to the purposes for which they were collected or subsequently processed;
  3. certification that the operations referred to in letters a) and b) have been notified, also for what concerns their content, to the entities to which the data were communicated or transmitted, unless this requirement proves impossible or involves a manifestly disproportionate effort compared to the rights being protected;
  4. data portability.

4. The data subject shall have the right to oppose, in whole or in part:

  1. for legitimate reasons, the processing of personal data concerning him/her, even though they are relevant to the purposes of collection;
  2. the processing of personal data concerning him/her for the purposes of sending advertising or direct sales material, for carrying out market research or for commercial communications.

5. The data subject shall have the right to request restriction of the processing.

The data subject may exercise his/her rights by sending an e-mail to or by sending a written request to the abovementioned contacts.

Furthermore, in the event that the data subject deems the processing of his/her data to be contrary to the legislation in force, he/she may lodge a complaint with the Italian Personal Data Protection Authority pursuant to Article 77 of Regulation 2016/679 or file a report pursuant to Article 144 of Legislative Decree 101/2018.