Privacy Policy

1. Data Controller

The data controller within the meaning of the UK General Data Protection Regulation (UK GDPR) is:

Numeri Primi Srl
Via Tiziano 32
20145 Milan (MI), Italy
Email: [email protected]
Phone: +44 7742904665
VAT: IT11621120960

As a non-UK establishment, Numeri Primi Srl acknowledges the requirement under Article 27 UK GDPR to appoint a representative in the United Kingdom. We are currently reviewing the appointment of a UK representative and will update this policy accordingly.

2. Hosting

Our website is hosted by IONOS SE, Elgendorfer Str. 57, 56410 Montabaur, Germany.

IONOS processes personal data (e.g. IP addresses) to provide and ensure the operation of this website. Processing is carried out on the basis of Article 6(1)(f) UK GDPR (legitimate interest in the secure and stable operation of the website).

Data Collection

3. Server Log Files

When you access this website, information is automatically collected by the server and stored in server log files:

  • IP address
  • Date and time of the request
  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing device

This data is used for the technical security and stability of the website. The legal basis is Article 6(1)(f) UK GDPR (legitimate interest). Log files are automatically deleted after no more than 14 days.

4. Contact Form

When you contact us via the repair request form, the data you enter (e.g. name, telephone number, email address, address and description of the problem) is stored for the purpose of processing your enquiry.

The legal basis is Article 6(1)(b) UK GDPR (performance of a contract or pre-contractual measures).

Your data is used solely for the purpose of processing your enquiry and will not be shared with third parties without your consent.

Analytics and Cookies

5. Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses cookies and similar technologies to analyse the use of our website. Processing is carried out solely on the basis of your consent pursuant to Article 6(1)(a) UK GDPR.

IP addresses are processed in anonymised form. Direct identification of individuals is not possible.

Data may be transferred to servers of Google LLC in the United States. For data transfers to the US, Standard Contractual Clauses (SCCs) approved by the UK International Data Transfer Agreement (IDTA) are used as the appropriate safeguard.

You may withdraw your consent at any time via our cookie consent tool.

6. Cookies

Our website uses cookies. Strictly necessary cookies are required for the operation of the website and do not require consent.

Analytical cookies (such as Google Analytics) are only set with your explicit consent, in accordance with the Privacy and Electronic Communications Regulations 2003 (PECR), which requires prior consent for non-essential cookies.

You may adjust or withdraw your cookie preferences at any time via our consent banner.

7. Google Tag Manager

This website uses Google Tag Manager, a tag management service provided by Google Ireland Limited. Tag Manager itself does not set cookies or collect personally identifiable data, but it allows other services (such as Google Analytics and Google Ads) to load — and these only do so after you have provided consent through the cookie banner.

8. Google Ads (Conversion Tracking and Remarketing)

This website uses Google Ads advertising tags (provided by Google Ireland Limited) for two purposes: (a) Conversion Tracking, to measure the effectiveness of advertising campaigns (e.g. enquiries generated); (b) Remarketing, to display tailored advertisements to users who have already visited the site. These technologies are activated only with the user's explicit consent (Article 6(1)(a) UK GDPR), which may be withdrawn at any time via the cookie banner. Advertising preferences can be managed directly with Google at My Ad Center.

9. Google reCAPTCHA

The contact form and repair request form are protected by Google reCAPTCHA v3, an anti-spam and anti-abuse service provided by Google Ireland Limited. reCAPTCHA collects hardware and software information (e.g. device and application data) and transmits it to Google to determine whether the request originates from a human or an automated bot. The legal basis for processing is the legitimate interest of the data controller in ensuring information security (Article 6(1)(f) UK GDPR). Google's Privacy Policy and Terms of Service apply.

10. Google Consent Mode v2

This website implements Google Consent Mode v2. This means Google Analytics and Google Ads tags load with a default state of "denied" and are activated only after the user provides explicit consent through the cookie banner. Until consent is granted, no analytics or marketing cookies are set, and no personally identifiable data is transmitted to Google.

11. WhatsApp Contact

If you click the WhatsApp link on our website, you will be redirected to the service provided by WhatsApp Ireland Limited. WhatsApp's own privacy policy applies.

Your Rights

12. Data Retention

Personal data is retained only for as long as is necessary for the relevant purposes or as required by applicable legal retention obligations.

13. Your Rights under UK GDPR

Under the UK GDPR, you have the following rights:

  • Right of access (Article 15)
  • Right to rectification (Article 16)
  • Right to erasure (Article 17)
  • Right to restriction of processing (Article 18)
  • Right to data portability (Article 20)
  • Right to object to processing (Article 21)

You also have the right to lodge a complaint with the supervisory authority. In the United Kingdom, the supervisory authority is the Information Commissioner's Office (ICO):

Information Commissioner's Office
Wycliffe House, Water Lane
Wilmslow, Cheshire SK9 5AF
Website: ico.org.uk
Helpline: 0303 123 1113

14. International Transfers

As our company is based in Italy (EU/EEA), personal data is transferred to the EU. The UK government has issued an adequacy decision recognising the EU/EEA as providing an adequate level of data protection, meaning no additional safeguards are required for these transfers.

Where data is transferred to the United States (e.g. via Google Analytics), appropriate safeguards are in place through Standard Contractual Clauses (SCCs) supplemented by the UK International Data Transfer Agreement (IDTA).

15. Changes to this Privacy Policy

We reserve the right to update this privacy policy to ensure it remains compliant with current legal requirements. The most recent version will always be available on this page.

Last updated: 8 May 2026.