V. March 20, 2026

PRIVACY POLICY

Volt S.r.l., as Data Controller, provides the following information regarding the management of its website (https://www.voltclub.it) with reference to the processing of users’ personal data. This notice is also provided pursuant to Article 13 of Regulation (EU) 2016/679 (“GDPR” or the “Regulation”).

LEGAL REFERENCES

  • Directive 2002/58/EC concerning the “processing of personal data and the protection of privacy in the electronic communications sector”;

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation);

  • Legislative Decree No. 196 of 30 June 2003 (“Personal Data Protection Code”), as amended by Legislative Decree No. 101 of 10 August 2018.

DATA CONTROLLER

The Data Controller is Volt S.r.l., with registered office in Milan, Via Enrico Besana no. 5, 20122, Milan, email address: privacy@antonioligroup.com.

DATA PROTECTION OFFICER

The Data Controller has appointed a Data Protection Officer (DPO), who can be contacted at: dpo@antonioligroup.com

PLACE OF DATA PROCESSING

Processing related to the web services of this site takes place at the aforementioned premises of Volt S.r.l. and at the premises of third parties, duly appointed as Data Processors pursuant to Article 28 GDPR, providing outsourced services.

TYPES OF DATA PROCESSED

Browsing Data

The IT systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified individuals, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.

This category includes IP addresses or domain names of users’ devices, URI (Uniform Resource Identifier) addresses of requested resources, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code indicating the status of the server response (successful, error, etc.), and other parameters relating to the user’s operating system and IT environment.

These data are used solely to obtain anonymous statistical information on site usage and to ensure proper functioning, and are deleted immediately after processing. Data may also be used to ascertain liability in case of hypothetical cybercrimes against the site.

Data Voluntarily Provided by the User

The optional, explicit, and voluntary sending of personal data by users (such as name, surname, email address, phone number) through forms on the site or via email or phone contacts indicated on the site results in the acquisition of such data, necessary to provide the requested service or information.

Anonymous or Aggregated Data

Anonymization is a processing activity aimed at preventing the identification of the data subject. Anonymous data do not fall within the scope of data protection legislation.

Aggregated data may derive from personal data provided by users but are not considered personal data, as they do not allow the identification of the data subject, either directly or indirectly.

COOKIES

The Data Controller uses exclusively technical cookies, strictly necessary for the proper functioning of the website.

PURPOSES AND LEGAL BASIS OF PROCESSING

Personal data will be processed for the following purposes:

(i) Browsing and consultation of the website

Legal basis: consent, deemed to be given through website use (Art. 6(1)(a) GDPR).

(ii) Responding to information requests

Legal basis: consent, deemed to be given when submitting the request (Art. 6(1)(a) GDPR).

(iii) Sending commercial communications (promotions, newsletters, advertising related to brands and services of the Antonioli Group)

Legal basis: consent (Art. 6(1)(a) GDPR).

(iv) Profiling activities aimed at evaluating user preferences (e.g., bookings and browsing behavior) and sending personalized marketing communications from Antonioli Group companies

Legal basis: consent (Art. 6(1)(a) GDPR).

(v) Defensive purposes in case of misuse of the website or fraud attempts

Legal basis: legitimate interest (Art. 6(1)(f) GDPR).

LINKS TO OTHER WEBSITES

This website may contain links to other websites. The Data Controller does not control cookies or tracking technologies used by such websites, and this Privacy Policy does not apply to them. Users are encouraged to consult the respective privacy policies.

OPTIONAL NATURE OF DATA PROVISION

Except for browsing data (necessary for proper site operation), users are free to provide personal data. However, failure to provide such data may make it impossible to fulfill requests or complete bookings.

CONTROL OVER PERSONAL DATA

Users may at any time restrict the collection or use of their personal data. For example, if consent for marketing has been given, it can be withdrawn at any time by contacting privacy@antonioligroup.com.

The company will not sell or distribute personal data to third parties without explicit consent, unless required by law. With consent, data may be used to send commercial communications.

PROCESSING METHODS AND DATA RETENTION

Personal data are processed using automated tools for the time strictly necessary to achieve the purposes for which they were collected.

Marketing data processed based on consent or legitimate interest will be retained until consent is withdrawn. Profiling data will be retained for 12 (twelve) months.

Appropriate security measures are implemented to prevent data loss, unlawful use, or unauthorized access. The Data Controller has adopted additional measures aligned with international standards to ensure confidentiality, availability, and integrity of data.

DATA SHARING AND DISCLOSURE

Collected data may be transferred or disclosed to companies appointed as Data Processors for activities strictly related to the purposes above.

Outside these cases, personal data will not be disclosed or shared unless contractually required or authorized.

TRANSFER OF DATA TO THIRD COUNTRIES

Personal data will not be transferred to countries outside the European Union or the European Economic Area. Should this occur, the Data Controller guarantees compliance with Articles 44 et seq. GDPR.

DATA SUBJECT RIGHTS

Data protection laws grant specific rights to data subjects.

Pursuant to Articles 15 et seq. of Regulation (EU) 2016/679, users have the right to:

  • obtain confirmation of whether personal data concerning them exist;

  • access such data;

  • request rectification or erasure;

  • request restriction of processing;

  • request data portability;

  • object to processing.

Requests can be sent to the Data Controller via registered mail or email at privacy@antonioligroup.com, or to the DPO at dpo@antonioligroup.com.

RIGHT TO LODGE A COMPLAINT

Data subjects who believe that the processing of their personal data violates the GDPR have the right to lodge a complaint with the Supervisory Authority pursuant to Article 77 GDPR.

CHANGES TO THIS PRIVACY POLICY

The Data Controller periodically reviews its privacy and security policy and may update it in line with regulatory, organizational, or technological changes. Updates will be published on this page.

QUESTIONS, COMPLAINTS, AND EXERCISE OF RIGHTS

For further information, suggestions, complaints, or to exercise rights under data protection laws, users may contact:

Volt S.r.l.

Via Enrico Besana no. 5, 20122 Milan

Email: privacy@antonioligroup.com

or the Data Protection Officer at: dpo@antonioligroup.com