privacy policy

Policy pursuant to article 13 of EU Regulation 2016/679 (GDPR)

Blum Srl collects and processes personal data of its Users and Customers in compliance with the provisions of EU Regulation 2016/679 (GDPR).

Data Controller

Blum srl
Tax Code and VAT No. IT02837820212
Piazza Fiera, 1
39100 Bolzano

Email: amministrazione@blum.vision
DPO: privacy@legalest.it

Personal data collected

Personal data processed by the Controller may be transmitted directly by the user or collected automatically through the tools used to access the website.

Technical browsing data: this is all data that is essential for the use of the service and is collected automatically.

Identification data: this is data provided directly by the user, e.g. name and surname, email address, telephone number.

The Controller does not directly process profiling data for advertising purposes. Nevertheless, it uses some services that allow the enjoyment of external content (Youtube, Vimeo, Facebook, Twitter) that could, if authorised by the data subject, collect this type of data.

Processing purpose and legal basis

Personal data collected will be used for the following purposes:

  1. Management of communications at the request of users. Processing is based on the consent of the data subject.
  2. Analysis and management of its website traffic, performed anonymously. Processing represents a legitimate interest of the Controller, which aims to provide the best possible browsing experience for its users.
  3. Promotion and direct marketing. Processing may take place upon the consent of the data subject, who has requested to receive information and news from the Controller.

Categories of recipients of personal data

Personal data is not subject to dissemination.

It may be communicated to certain categories of recipients, such as employees and collaborators of the Controller or appointed professionals, if necessary, as external data processors.

Transfer of data abroad

Personal data will be processed within the European Union. Should transfer outside the EU be necessary for technical reasons, processing will always be in accordance with Chapter V of the GDPR.

Retention period

Data will be retained for the duration of the service requested, unless otherwise required by law and for possible legal action.

Data subjects’ rights

Data Subjects have the right to request the Data Controller for access to and rectification or erasure of personal data or restriction of processing concerning them or to object to its processing, as well as the right to data portability, withdrawal of consent, and the right to lodge a complaint with a supervisory authority.


This website uses technical cookies that allow the proper functioning of the website and statistical analysis in aggregate and anonymous form.

Upon the consent of the data subject, certain external services used to enable the enjoyment of external content, such as Youtube, Vimeo, Facebook and Twitter, may install profiling cookies, according to their own specific policies to which we refer.

Users can, at any time, delete installed cookies and prevent their future use.