Information on the processing of personal data 

    This information notice is provided to the user of OxySec websites in accordance with the Italian Legislative Decree no. 196 of 2003 and General Data Protection Regulation (EU) 2016/679 in relation to Personal Data Protection and Applicable Regulations. This information is limited to browsing on the aforementioned websites and does not apply to websites external to OxySec even if explored by following links contained on this website and related services.

Identity and contact details of the controller

    Exploring this website may involve data processing by identified or identifiable personnel. The Data Controller - that is, the legal entity that determines the purposes and means of processing personal data - is:

    OxySec S.r.l., Via delle Querce, 7 - 24048 Treviolo (BG)

Contact details of the Data Protection Officer

    Regarding the processing of personal data on this website, OxySec has appointed a Data Protection Officer, available at the OxySec office itself or at the following e-mail address:    

Categories of personal data processed

    Below will be listed the information that OxySec may process within the limits of the purposes and methods described in this Privacy Policy, and which may be considered as personal data ("Personal Data") by the Applicable Regulations. In particular:

  • Data provided voluntarily by the user by telephone or through our info/kit request forms
    • The optional, explicit and voluntary sending of e-mails to the addresses indicated on the OxySec sites, the completion of the information request forms and/or kits entail the subsequent acquisition of the name, e-mail address, and any other Personal Data included in the electronic communication, as well as the sender/user data needed to respond to requests.

Purpose and legal basis of the processing

    Personal Data provided by users who request information and/or development material are used for the sole purpose of providing the requested service and may be known by OxySec employees, instructed about the precautions and guarantees to use processing the information.

Processing modality

    Personal Data will be processed using manual, computerized or telematic tools, suitable to guarantee security and confidentiality, and will be carried out by personnel trained in compliance with the Applicable Regulations.

    Following the consent given by the user, it is possible that he/she is contacted by e-mail or telephone.


Scope of communication of personal data

    Personal Data may be communicated, even without your consent, to inspection bodies, law enforcement or judges who will treat them, upon their express request, as independent data controllers for institutional purposes and/or in accordance with the law in the course of investigations and checks.
    The Personal Data collected won't be disseminated under any circumstances.

Data retention period (determination criteria)

    OxySec will retain any Personal Data as long as there are commercial relationships with the Company of which the user is the contact, unless they are to be used to ascertain responsibility in the case of computer crimes against OxySec: in this case, the information will be kept available to the Authority for the time necessary to guarantee OxySec the exercise of its rights of defense.    

Rights that are recognized to You

    The Applicable Regulations recognize to users a series of entitlements including, but not limited to, the right:

  1. to access your Personal Data
  2. to ask for their correction
  3. to request the updating or cancellation, if incomplete, erroneous or collected in violation of the law
  4. to request that the treatment is limited to a part of the information concerning them
  5. to transmit to them or to third parties indicated by them the information concerning them (the so-called "data portability")
  6. to oppose their treatment for legitimate reasons
  7. to withdraw your consent at any time by requesting OxySec

     OxySec reminds you that, where the feedback to requests is not considered satisfactory, the user can contact and lodge a complaint with the Authority for the Protection of Personal Data ( in the manner provided by the Applicable Regulations.