Privacy Policy
Privacy Policy
Who We Are
When carrying on its business, Deltatre pays the utmost attention to privacy and data protection matters.
Deltatre Group Limited having registered office at 6th Floor, 55 New Oxford Street, London, England, WC1A 1BS, and company number 10196699. (“we”, “us”, “our” “the Company”) is the Data Controller for the processing connected to this website, marketing-related activities, and events-related activities.
As we are based outside the EU, our nominated representative for the purpose of data protection law is Deltatre S.p.A., whose contact details are set out below:
Deltatre S.p.a.
Via Francesco Millio 41, 10141 Turin, Italy
privacy@deltatre.com
Depending on your interactions with Deltatre, the controller of your personal data may be one of the of the Deltatre affiliates. You can find details on Deltatre group of companies here.
For more information about Deltatre and the products it provides, please see the home page of the website.
Description of processing
We process personal data in accordance with the UK General Data Protection Regulation, the EU General Data Protection Regulation and other national data protection legislations as may be applicable.
If you are a visitor of the website
Which Personal Data May Be Collected
Data provided by you if you contact Deltatre:
Contact data
Professional data
Interests - Information regarding areas that interest you, for example products you find interesting.
Data collected automatically:
Browsing Data – The system automatically acquires, while browsing, certain data whose transmission is implicit in the use of Internet communication protocols.
Usage data
Purpose
(i) Operational management and strictly related purposes; to allow access to the website; to provide the required assistance if you contact Deltatre.
(ii) To assess and patch any weakness and vulnerability in our systems and products, Deltatre may receive and share information with you.
(iii) To inform you about news of the Company and its group (details here), such news may include, for example, product updates, press releases, events, interviews.
(iv) To organize a meeting with you to inform you, also with demos and the provision of specific contents, about our products, updates, events and initiatives.
(v) To protect our legal rights (including where necessary, to share information with law enforcement and others), for example, to defend legal claims against us and to conduct litigation to defend our interests.
(vi) Compliance with legally binding requests by the legal authorities to discharge obligations of law, regulations or provisions.
Legal basis
(i) Our legitimate interest both to ensure technical functioning and security of the website and to enable visitors to access website and support if they contact us.
(ii) Our Legitimate Interest both to protect our own systems and products from vulnerability and weaknesses and to improve our services and products.
We consider the security of our systems and products as a priority in our business. Therefore, we encourage researchers across the globe to report us any vulnerability or security issues they’ve discovered according to our Coordinate Vulnerability disclosure policy.
(iii) Your explicit consent to receive company and its group news, updates and marketing communication.
Your consent can be withdrawn at any time. The withdrawal of your consent shall not affect any other possible relationship between you and the Company.
If you are a Client of Deltatre: we will inform you about news of the Company and its group (details here) based on our legitimate interest, where permitted by applicable laws.
(iv) Your explicit consent to be contacted to organize a meeting with you to inform you, also with demo and provision of specific content, about our products, updates, events, and initiatives.
Without your consent, we will not reserve a meeting with you. Your consent can be withdrawn at any time. The withdrawal of your consent shall not affect any other possible relationship between you and the Company.
(v) Our legitimate interest to protect the rights and interests of the Controller or third parties.
(vi) legal obligations, to which the Company must comply.
Retention Period
(i) For twenty-four (24) months.
(ii) For the time necessary to manage and patch the vulnerability/issue discovered starting from the moment we became aware of it and, in any case, for a period not longer than two (2) years.
(iii) For twenty-four (24) months from the date on which you provided your consent, except where you withdraw your consent; in this case, your personal data will be deleted without undue delay and, at last, within one month of receipt of your request.
(iv) For twenty-four (24) months from the last contact.
(v) We may keep the personal data we deem reasonably necessary for such purposes, for the period during which there is a risk of needing to defend or bring a legal claim.
(vi) For the period required by applicable law.
Deltatre also collects data on the use of the website, including information acquired via cookies. Please read our Cookie Policy to know more about cookies.
If you meet Deltatre during an Event/Fair
Which Personal Data May Be Collected
Data that you provided to Deltatre during the event /your visit to a Deltatre stand during a Fair:
Contact data – Information on your name, surname, company, address, telephone number, mobile telephone number, email address.
Interests – Information regarding areas that interest you, for example products you find interesting.
Purpose
(i) To organize a meeting with you to inform you, also with demos and the provision of specific contents, about our products and initiatives.
(ii) to book a meeting with you during an event (such as Sportel) when the Organizer provided the contacts of those persons who have agreed to be contacted by event exhibitors.
(iii) to protect our legal rights (including where necessary, to share information with law enforcement and others), for example, to defend legal claims against us and to conduct litigation to defend our interests.
(iv) Compliance with legally binding requests by the legal authorities to discharge obligations of law, regulations or provisions.
Legal basis
(i) Our legitimate Interest to follow up on contacts established during the event.
(ii) Your Consent provided to the organizer to be contacted by exhibitors.
(iii) Our legitimate interest to defend the rights and interests of the Controller or third parties.
(iv) legal obligations, to which the Company must comply.
Data retention
(i) For twenty-four (24) months from the last contact.
(ii) Until the end of the relevant event.
(iii) We may keep the personal data we deem reasonably necessary for such purposes, for the period during which there is a risk of needing to defend or bring a legal claim.
(iv) For the period required by applicable law.
If you are a Deltatre Client
With the exception of marketing related activities, the Data Controller is the Deltatre entity that owns the business relation with your organization. You can find details on Deltatre group of companies here.
Which Personal Data May Be Collected
Personal contact details – name, contact details such us, by way of example e-mail address, telephone number
Professional role
Content of communication
Purpose
(i) To enter into and perform the contractual relationship.
(ii) to protect our legal rights (including where necessary, to share information with law enforcement and others), for example, to defend legal claims against us and to conduct litigation to defend our interests.
(iii) Compliance with legally binding requests by the legal authorities to discharge obligations of law, regulations or provisions.
(iv) To inform you about product updates of the Company and its group (details here).
(v) If you send a feedback via the Deltatre product roadmap platform to receive and analyse your feedback.
(vi) to prepare transcripts, meeting minutes, reports, summary or other analytic documents. We may use AI tools assisting the preparation of these documents. In this context, personal data may be input into such tools.
Legal basis
(i) Performance of a contract.
(ii) Our legitimate interest to protect the rights and interests of the Controller or third parties.
(iii) Legal obligations, to which the Company must comply.
(iv) Where permitted by applicable law, our legitimate interest. For these marketing-related activities the Data Controller is Deltatre Group Limited.
(v) Our legitimate interest to ameliorate our products and services.
(vi) Our legitimate interest to ensure efficient internal communication, accurate documentation of meetings, and effective business operations.
Data retention
(i) For the duration of the contract and, thereafter, for as long as necessary to comply with applicable statutory, tax and auditing requirements.
(ii) We may keep the personal data we deem reasonably necessary for such purposes, for the period during which there is a risk of needing to defend or bring a legal claim.
(iii) For the period required by applicable law.
(iv) For twenty-four (24) months after the last contact.
(v) For twenty-four (24) months after the feedback has been sent.
(vi) For the duration of the contract and in any case no longer than the subsequent ten (10) years.
If you are a Deltatre Supplier or Partner
The Data Controller is the Deltatre entity that owns the business relation with your organization. You can find details on Deltatre group of companies here.
Which Personal Data May Be Collected
Personal contact details – name, contact details such us, by way of example e-mail address, telephone number.
Professional role
Content of communication
Purpose
(i) To enter into and perform the contractual relationship.
(ii) to protect our legal rights (including where necessary, to share information with law enforcement and others), for example, to defend legal claims against us and to conduct litigation to defend our interests.
(iii) Compliance with legally binding requests by the legal authorities to discharge obligations of law, regulations or provisions
(iv) AI-based tools to support the preparation of meeting minutes, reports, summaries or other analytic documents. In this context, personal data may be input into such tools.
Legal basis
(i) Performance of a contract.
(ii) Our legitimate interest to defend the rights and interests of the Controller or third parties.
(iii) legal obligations, to which the Company must comply.
(iv) Our legitimate interest to ensure efficient internal communication, accurate documentation of meetings, and effective business operations.
Data retention
(i) For the duration of the contract and, thereafter, for as long as necessary to comply with applicable statutory, tax and auditing requirements.
(ii) We may keep the personal data we deem reasonably necessary for such purposes, for the period during which there is a risk of needing to defend or bring a legal claim.
(iii) For the period required by applicable law.
(iv) For the duration of the contract and in any case no longer than the subsequent ten (10) years.
How We Collect Your Personal Data
Deltatre collects and processes your personal data in the following circumstances:
- if you contact us
- if you ask to book a meeting
- if you provide information to us during an event
- if you subscribe to receive Company latest news direct to your inbox
We may supplement the information you have provided with publicly available data (such as your job title or professional affiliation) in order to assess your potential interest in Deltatre updates and ensure that our communications are relevant.
Where you submit a job application, the processing of your personal data will be governed by a specific privacy notice relating to recruitment activities, which will be provided to you at the time of application.
If you provide personal data on behalf of someone else, you must first ensure they have read this Privacy Policy.
Kindly help us to keep your personal data up to date by informing us of any changes.
**
Children’s Privacy:** The protection of safety and privacy’s children is very important to us. Therefore, we do not knowingly collect and use personal data of individuals under the age of sixteen (16), or below any other minimum legal age limits being in force in your country of residence. Consequently, we ask you not to provide us with any personal data if you are not of legal age being in force in your country of residence. Where we become aware that personal data has been collected from a child without appropriate consent, we will take steps to delete such data without undue delay.
How Long Do We Store Your Information For
We will keep your personal data only for the length of time necessary to achieve the purposes for which they were collected or for any other related and lawful purpose. Therefore, if your personal data are processed for two different purposes, we will keep the data until the lengthier purpose is achieved. However, we will cease to process the personal data collected for the purpose whose retention period has expired.
We limit access to your personal data to only those individuals who need to use them for the appropriate purposes. When your personal data are no longer required, or when there is no longer any legal precondition for keeping them, they will be irreversibly anonymized (and in such a way may be stored) or securely destroyed.
The retention periods relating to the different purposes are indicated above under section “Description of processing”.
Who We Can Share Your Personal Data With
Your personal data may be accessed by duly authorized employees and by external suppliers, appointed, if necessary, as data processors, who support us in providing services. Furthermore, we may share the personal data with the following categories of recipient:
our group companies, who process personal data for purposes described in this Privacy Notice;
any competent law enforcement body, regulatory, government agency, court or other third party (such as our professional advisers) where we believe disclosure is necessary (i) as a matter of applicable law or regulation, (ii) to exercise, establish or defend our legal rights or so a third party can defend theirs, or (iii) to protect your vital interests or those of any other person;
a buyer (and its agents and advisers) in connection with any actual or proposed purchase, merger or acquisition of any part of our business, provided that we inform the buyer it must use your personal data only for the purposes disclosed in this Privacy Notice;
any other person with your consent to the disclosure (obtained separately from any contract between us).
Please contact us at privacy@deltatre.com if you would like to see a list of the data processors or other entities to which we communicate data.
International Data Transfer
As a globally active company, in order to carry out some processing activities, Deltatre may transfer your personal data to third parties located in countries that do not belong to the European Union (EU) or to the European Economic Area (EEA) (“Third Countries”).
Any transfer of personal data to Third Countries will be carried out according to applicable law. Where personal data are not transferred to Third Countries on the basis of an adequacy decision of the European Commission, standard contractual clauses approved by the European Commission will be adopted, possibly supplemented by additional measures, where necessary, to ensure that the level of protection is essentially equivalent to that guaranteed within the EU.
You can write to Deltatre, at any time, at the e-mail address privacy@deltatre.com, asking information about the entities that will receive your personal data and a copy of the safeguards adopted for the transfer.
Your Personal Data Protection Rights and Your Right to File Complaints Before the Supervisory Authorities
On certain conditions, you are entitled to:
- request the access to your personal data
- request a copy of the personal data you have provided to us (‘portability’)
- request the correction of your personal data
- request the deletion of any data for which the legal precondition for processing no longer exists
- request the restriction of the processing of your personal information
- to revoke your consent, in any moment, in cases where the processing is based on consent
You have also the right to object to processing of your personal information where we are relying on a legitimate interest and there is something about your particular situation which makes you want to object to processing on this ground.
The objection to processing shall be sent to the following address: privacy@deltatre.com.
The exercising of the above rights is subject to certain exceptions that are intended to safeguard the public interest (e.g., the prevention or identification of crimes) and our interests (e.g., maintaining professional secrecy).
Should you wish to exercise any of the above rights, you can write to privacy@deltatre.com.
We will check that you are entitled to do so and will usually respond within one month.
We endeavor to respond to any complaints or reports concerning the methods used to process your data. Nevertheless, should you wish, you may forward your complaints or reports to your local authority responsible for data protection. Contact details for ICO, the UK data protection authority are available here. Contact details for data protection authorities in the EEA are available here.
Updates to this Privacy Notice
We may update this Privacy Notice from time to time in response to changing legal, regulatory, technical or business developments. When we update our Privacy Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make.
Contacts
The contact details for the Company, in its capacity as Data Controller are the following: privacy@deltatre.com and dpo@deltatre.com.
A DPO has been appointed in respect of some of Deltatre entities and you can find the relevant contacts details here.
LAST UPDATE: APRIL 2026