Request information

Legal area

Privacy Policy

This notice explains how personal data is processed through the GstarConcrete website, contact form, download area and related commercial request channels.

Last updated: 26 May 2026.

Back to home Go to Cookie Policy

Data controller

  • Company name: SETEC Informatica Srls
  • VAT number: 04535350401
  • Registered office: Via Niccolò Copernico, 101 - 47122 Forlì (FC)
  • Email: setec.informatica@setecom.it
  • Certified email: setec.informatica@pec.it
  • No Data Protection Officer has been indicated for the current website activities.
  • Applicable framework: Regulation (EU) 2016/679 (GDPR) and the Italian Privacy Code, Legislative Decree 196/2003 as amended.

Categories of personal data

  • Identification and contact data entered in the request form: name or company, business email, country and optional phone number
  • Commercial request data: request type, product interest and free-text message
  • Security verification data used by the contact form CAPTCHA to reduce automated spam submissions
  • Technical browsing data generated by normal website access, hosting logs, security logs and third-party resource requests
  • Approximate country information used on the download page to manage regional software availability

Main purposes

  • Managing contact requests and commercial assistance
  • Sending requested information or quotations
  • Routing requests to internal staff or authorized local dealers where relevant
  • Managing download availability rules for Italy and other markets
  • Website security, maintenance, abuse prevention and compliance with legal obligations

Transparency notice

How personal data is used on this website.

This notice explains what information may be processed through the GstarConcrete website, why it is processed, how long it may be retained and what rights users may exercise under applicable data protection law.

Legal basis

  • Article 6(1)(b) GDPR: processing necessary to take pre-contractual steps requested by the user
  • Article 6(1)(f) GDPR: legitimate interest in replying to product, dealer and technical enquiries and protecting the website
  • Article 6(1)(c) GDPR: compliance with legal, tax or administrative obligations, where applicable

Recipients

  • Authorized internal personnel handling commercial and administrative requests
  • The mailbox used for website requests, currently staff@auto-ca.com
  • Authorized local dealers or partners, only where needed to handle the user's request or requested area
  • Technical service providers involved in hosting, email handling, security or website operation
  • Public authorities or professional advisors when required by law

Retention period

  • Contact request data is normally kept for up to 24 months after the last interaction, unless a longer period is needed for contractual, accounting or legal reasons
  • Administrative or contractual data may be retained for the periods required by applicable law
  • Technical log data is retained for the time necessary for security, maintenance and system integrity, unless longer retention is required to investigate abuse or legal claims

How the contact form works

  • The website request form sends the information entered by the user to a server-side email endpoint and delivers the request to staff@auto-ca.com.
  • Before sending, the form asks the user to complete a puzzle CAPTCHA; the verification token and slider position are checked server-side to reduce automated fake requests.
  • The form does not require users to open their own email client and does not intentionally store requests in a public front-end database.
  • The mandatory privacy checkbox confirms that the user has read this Privacy Policy before sending the request.
  • Users should avoid sending special-category data or information that is not necessary for the requested commercial contact.

Third-party resources

  • The website currently loads Google Fonts from `fonts.googleapis.com` and `fonts.gstatic.com`.
  • Some dealer logos are loaded directly from third-party partner domains.
  • The download page may request approximate country information from IP geolocation services such as GeoJS, country.is and ipwho.is.
  • When those resources are requested, technical data such as IP address, browser information and request metadata may be transmitted to those providers.

International transfers

  • Some third-party providers may process technical data outside Italy or outside the European Economic Area.
  • Where such services are used, transfers are assessed against the applicable GDPR framework, adequacy decisions, standard contractual clauses or provider terms where relevant.
  • If the website is later updated to self-host fonts and media assets, exposure to third-party requests may be reduced.

Data subject rights

  • Right of access, rectification, erasure and restriction of processing under Articles 15-18 GDPR
  • Right to data portability under Article 20 GDPR, where applicable
  • Right to object under Article 21 GDPR, where processing is based on legitimate interest
  • Right not to be subject to decisions based solely on automated processing; this website does not currently perform automated decision-making or profiling
  • Right to lodge a complaint with the Italian Data Protection Authority, the Garante per la protezione dei dati personali

How to exercise your rights

  • Requests relating to privacy or data protection may be sent to setec.informatica@setecom.it.
  • Certified communications may be sent to setec.informatica@pec.it.
  • Complaints may be lodged with the Italian Data Protection Authority through www.garanteprivacy.it.
  • This Privacy Policy may be updated whenever the website features, contact procedures or third-party services change.