Privacy Policy

European legislation on the protection of personal data (GDPR – General Data Protection Regulation, EU Reg. 2016/679).

The privacy protection policy of Stock Line di Gri Tomaso concerns the collection, use and safeguarding of personal information that may be acquired during each approach of you, customers, to our services: when you visit our website, you purchase our products or call our sales and service offices.

The processing of your personal data (when requested) is carried out by Stock Line in accordance with EU REGULATION 2016/679 GDPR.

Your privacy is a priority for us and we constantly strive to protect it, in line with the values ​​we pursue. We collect your personal information because it helps us to offer you a higher level of performance: it allows us to provide you with convenient access to our products and services, to focus on the categories that interest you most and to always keep you updated on our latest products, special offers and events of possible usefulness.

In accordance with the commitment and care that Stock Line dedicates to the protection of personal data, we inform you about the methods, purposes and scope of communication and dissemination of your personal data and about your rights, in accordance with art. 13 of the GDPR.

  1. Data controller and treatment methods.

The Data Controller is Stockline di Gri Tomaso with registered office at Via Roma 133, 33050 Pocenia (UD) to which the interested party may, at any time, contact to exercise the rights referred to in EU Regulation 2016/679 (so-called GDPR).

Personal data will be processed with automatic and/or manual procedures for the purposes specified above which, as mentioned, may be exclusively of a commercial, fiscal, administrative and informational nature, in line with contractual requirements, with the fulfillment of all obligations resulting from it and with the desire to achieve more effective management of commercial relationships. In order to improve our service to you, the information you provide to us will therefore be used to communicate news, offers and promotions of interest to you, unless you express your wish to object to such processing.

  1. Purpose and legal basis of the processing

Stockline di Gri Tomaso processes the personal data of natural persons, legal entities, sole proprietorships and/or freelancers (“Data Subjects”) for the following purposes:

  • for the management and provision of various services and related assistance;
  • for the processing of statistical and market analyses;
  • to send communications relating to services and initiatives proposed by the site manager;
  • to send information relating to business-to-business and business-to-consumer services and any promotions and/or services presented on the site.
  1. Subjects authorized to process

The data is processed not only by the Gri Tomaso Stockline and all its collaborators, but also by external companies and partners committed to providing and guaranteeing the continuity of services and managing the information systems. The subjects can also be partner companies or companies attributable to the group, as well as management companies of marketing platforms and systems connected to the management of the information acquired. All those who can come into contact for shipping, accounting, financial, administrative and legal management activities are authorized.

  1. Non-personal technical navigation data collected in aggregate form

The computer systems for the use of this website acquire some data that cannot properly be defined as personal, the transmission of which is however implicit in the use of internet communication protocols. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the addresses in URI (Uniform Resource Identifier) ​​notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment. These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. Among these data, IP addresses are the only data which, although not associated with directly identified interested parties, can by its very nature, through processing and association with data held by third parties, allow users to be identified. Where possible, our company, as required by law, has set up anonymization and masking in the collection of the IP address as specified below. The data, however, could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site. Except for this eventuality, at present the web IP data does not persist for more than 3 months.

  1. Consent and type of data processed voluntarily provided by the user

Consent to the processing of data is freely and voluntarily provided by the user through the web forms with specific approval for the different purposes and recorded for verification by the authorities or for a request by the interested party. The interested party has the right to withdraw his consent at any time. Consent can also be requested in written form if the particular actions require it, otherwise what is expressed in the IT methods described above applies. The data are those provided, also collected as a supplement to previously collected data in order to always keep them updated.

  1. Cookies and profiling and tracking data

For extended information on the use of technical and profiling/tracking cookies for marketing purposes, please refer to the extended privacy at the following link

  1. Purpose of data processing

The data is collected for the purposes of providing services, for processing requests received, for marketing communications or for any analyzes and for transfer to authorized third parties. All the authorizations requested are diversified by the type of purpose in the various collection forms, with a clear indication of the data processed and their purposes. Each type of data processing collected requires specific authorization based on the purpose expressed above. The authorization requests differ, in the collection phase, according to the different purposes of data processing as specified below:

  1. Processing of mandatory data for the provision of the service. [obligatory]

This is a mandatory consent to allow us to provide the requested services. Processing may also include the transfer of data to third-party companies for the purposes of managing information and providing services in order to guarantee greater security and control over the data and activities covered by the services provided. It also includes communications regarding the various needs related to the provision of services such as: sending deadlines, payments, invoices, technical and service communications, alerts and information on the status of the systems, sending service notes, data recovery in the event of accidental loss , backups. The revocation of the authorization, although possible, prevents the service from being able to be provided further. The data may also be transferred to third parties who reside outside the European Union in the condition provided for in article no. 27 paragraph 2 paragraph (a), which does not provide for the establishment of a DPO (Data Protection Officer) or data processing representative.

  1. Processing for marketing purposes. [optional]

It concerns an optional consent for marketing purposes linked to products and/or services purchased or of interest. It provides for the authorization to send emails, text messages, and communications also via other electronic and paper means of advertising. The data will be processed internally for communications by the Gri Tomaso Stockline regarding the activities expressed above. The data may be transferred and/or provided to third-party partner companies or interested external parties both for the management of the communications themselves and for related marketing, survey and/or survey activities, and for additional purposes. Processing by third-party companies may concern activities aimed at helping manage improved analyzes on performances and conversions. You can revoke or rectify your consent at any time.

  1. Method and duration of data processing

The data is collected in full compliance with current legislation. In particular, the collection phase of the same occurs through encryption with an SSL protection certificate. The data is stored on cloud storage with backup and redundancy and kept for the period necessary to provide the services and related activities. The disks on which the data is stored are encrypted. The data processed may be periodically subject to verification of correctness. In these cases the interested party will receive a communication of adjustment of his data present in our archives. Physical access to the servers is protected with anti-intrusion and access control systems to the data rooms. The data is also geographically replicated for greater protection against accidental deletion due to natural disasters or physical theft of the same. There is a register of logs of the data and consents provided and of the authorizations granted in the phase of entering and managing the data and information linked to these authorizations. The aim is to quickly identify the activities linked to the data management of the individual users involved. The data is stored securely and any unauthorized access is limited to a minimum by implementing all the security activities required by the technology. In any case of access, the interested parties will be promptly informed and the data, in the case of accidental deletion, immediately restored.

  1. Rights of the interested party regarding data processing

The interested party may at any time request the rectification, integration or total deletion of the data. Such requests can be made directly to the contact details on the website . The interested party can also request the revocation of the authorizations to process for the different purposes. If the revocation concerns the mandatory purpose of data processing for the provision of services, the same can no longer be provided and may be suspended without refunds. It is possible to request, always in accordance with the provisions of the law, a copy of the data processed and the purposes of the processing. It is possible to initiate a complaint to or directly to the Personal Data Guarantor Authority or one of the supervisory authorities in case of non-compliance that goes against the provisions of the GDPR legislation.

All data entered on the site through the forms, managed and processed for the purposes requested for quotes, assistance, newsletters and contact in general, also sent by email on domains of our company or attributable to it, or through third-party systems and in any case sent to us, are processed in compliance with the regulations of the Privacy Guarantor of EU regulation 2016/679 GDPR for the processing of personal data.


Our company is committed to preserving the environment by selecting quality, long-lasting materials from certified forests


The refitting of our products is at the center of our mission. Regenerate products to give them a second life and save money for the environment and the customer

Used as new

We focus attention on good team synergy. We share our values ​​and our days by promoting optimal working conditions