This Privacy Policy provided pursuant to EU Regulation no. 2016/679 (hereinafter, “GDPR” or “Regulation”), describes how personal and navigation data relating to users of website (the ‘Site’) are processed.


The data controller and data processor is the company Nextsense S.r.l. (the “Company”), with registered office in P.zza Umberto I, no. 1 – 84121 Salerno – ordinary e-mail; certified e-mail (only for certified e-mail senders).


Data provided voluntarily by the user

The optional, explicit and voluntary sending of one or more e-mail messages by the user through the contact form or by means of the e-mail addresses indicated on the site or in this information notice, entails the acquisition of the sender’s address as well as any further personal data contained in the message necessary for the purpose of replying to requests or for the purpose of executing the user’s purchase orders.

Navigation Data

The computer systems and software procedures used to operate the Site acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

This category of data includes IP (Internet Protocol) addresses or domain names of the computers and terminals used by users, temporary markers (cookies), URI/URL (Uniform Resource Identifier/Locator) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server and other parameters relating to the user’s operating system and computer environment.

This data is necessary for the use of the Site’s contents, for the processing of statistics on navigation methods (most visited pages, number of visitors per hour or day, geographical areas of origin, devices used, etc.).

Although this data is not processed for the purpose of being directly linked to interested parties, it could nevertheless allow users to be identified when processed in association with data held by third parties.


Responsible for the treatment

For maintenance purposes, assistance, and technical management of the Site as well as the administrative and logistical management of purchase orders, the Data Controller may make use of Data Processors (collaborators, professionals, companies) selected for this purpose, appointed and bound to comply with the regulations and instructions on the protection of personal data. It is possible to contact the Controller to find out the list of Data Processors.

People authorised to process data.

Access to the data collected during consultation of the Site may also be granted to the personnel of the Company (administrative, commercial, marketing, customer service, system administrators, legal) according to a criterion of strict relevance and on the basis of specific instructions provided by the Data Controller regarding the methods to be observed in processing the data.

Data transfer abroad

Collected data may be transferred to private entities operating in countries within or outside the European Union, some of which may not provide adequate data protection guarantees (a complete list of countries providing adequate data protection guarantees is available on the website of the Garante per la Protezione dei Dati Personali at

In such cases, the transfer of data will be carried out in compliance with the rules and international agreements in force and subject to the adoption of appropriate measures (e.g. standard contractual clauses; guarantees given by the third party recipient of the data) and in any case following an impact assessment of the data transfer.

In the presence of risks that are deemed serious and cannot be mitigated, Data Controllers will refrain from transferring the data collected.


The data collected are processed to allow the correct operation of the website, to achieve the institutional purposes connected or instrumental to the Company’s activities, as well as to allow the online commercial transactions requested by the users of the website. More specifically, the data collected are used for the purpose of:

  1. technical control and optimal usability of the website and its multimedia contents.

The legal basis of the relevant processing is represented by the legitimate interest of the Data Controller in promoting the knowledge and sale of Biovitae products and/or services to the audience of users visiting the website.

  1. the management, execution and after-sales service of purchase orders placed by the user.

The legal basis of the relevant processing is based on the contractual relationship to which the data subject is party or on the legal obligations connected with that contractual relationship.

  1. the sending of e-mails/newsletters and/or informative and/or promotional material relating to Biovitae technology or products present or not present on the Site.

The legal basis of the relevant processing is constituted by the voluntary, specific and explicit consent given in advance by the data subject through the completion and submission of the appropriate online form.

Rights of interested parties

Interested parties have the right to obtain from the Controller, in the cases provided for, access to their personal data, rectification, updating, deletion or restriction of the processing concerning them or to withdraw their consent or object to processing by simply forwarding their request to the ordinary e-mail address or to the certified e-mail address (only for senders of certified e-mail)

Right to complain

Interested parties who consider that the processing of personal data is inconsistent with the consent given have the right to lodge a complaint with the Italian Data Protection Authority by the means indicated on the Authority’s website at