Privacy Policy

Who we are

Our website address is:


Pursuant to and for the purposes of Article 13 of Regulation (EU) 2016/679 General data protection regulation (Gdpr), we inform you that the Municipality of Narni (hereinafter also Municipality or Data Controller) processes the personal data you have provided and freely communicated in order to perform its institutional functions.

The Municipality guarantees that the processing of your personal data is carried out with respect for your fundamental rights and freedoms, as well as your dignity, with particular reference to confidentiality personal identity and the right to protection of personal data.

This information notice describes the methods for processing the personal data of users, collected during the navigation of the web site of the Municipality of Narni, accessible at the following address:

Navigation data

During navigation on the site, the system, in the course of its normal operation, acquires certain personal data. These data include the IP addresses or domain names of the computers (or other systems) used, the URI/URL (Uniform Resource Identifier/Locator) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the computer environment used.

These data, which are necessary for the use of the site, are processed as part of the activities involved in the provision of the services therein.

Browsing data are also processed in order to obtain statistical information on the use of services and to check the proper functioning of the services offered.

Data voluntarily provided by the user

The optional, explicit and voluntary sending of messages to the Municipality’s contact addresses, as well as the completion and forwarding of the forms on the site, entail the acquisition of the sender’s contact data, necessary to reply, as well as any personal data included in the communications. This data is processed for the sole purpose of responding to the questions, requests and queries raised.

Specific information may be published on the pages of the Municipality’s sites set up for the provision of certain services.


Cookies are small files sent by the web server to the user’s browser and stored by the latter on the user’s device/terminal. The web server, in subsequent accesses to the site, accesses these files stored on the user’s device for different purposes.

No use is made of cookies for user profiling, nor are any other tracking methods employed.

The use of session cookies is strictly limited to what is necessary for the safe and efficient navigation of the sites. The storage of session cookies in browsers is under the control of the user.

For further information on the processing of personal data deriving from the use of cookies, please refer to the specific information provided pursuant to Article 122 of the Privacy Code and provision no. 229/2014 of the Italian Data Protection Authority.

The recipients of your personal data are

The recipients of your personal data are: employees and collaborators of the Municipality, expressly designated and authorised to whom specific instructions have been given. Authorised persons have differentiated levels of access, depending on their specific duties. Possible data processors for the management and maintenance of the institutional website.

The data collected will not be disseminated -except to meet regulatory obligations- and are not subject to transfer outside the European Union.

Data management and storage period

Browsing data and cookies will be retained for a period of seven days. Such data may, however, be retained for a longer period in order to ascertain liability in the event of offence.
Data voluntarily communicated by users by email or by filling in forms on the site will be kept for the time necessary to comply with the purposes of the processing referred to above and, in any case, not beyond the terms to which the Data Controller is subject by law or regulation.

Rights of the data subject

As a data subject, according to current regulations, you may:

exercise the right of access to your personal data and information relating thereto; request the rectification of inaccurate data or the supplementation of incomplete data;

request the deletion of personal data relating to you (upon the occurrence of one of the conditions indicated in Article 17(1) of the GDPR and in compliance with the exceptions provided for in paragraph 3 of the same article, for example if your data are processed unlawfully) request the restriction of the processing of your personal data (in the event of the occurrence of one of the cases referred to in Article 18(1) of the GDPR when, for example, your data are unlawfully processed) object at any time to the processing of your personal data in the event of special situations concerning you;

Such requests may be addressed to the Data Controller – also through the Data Protection Officer (DPO) – by means of a communication to the addresses indicated above, by filling in the form made available on the website of the Data Protection Authority;

to lodge a complaint with a supervisory authority (Privacy Authority for the Protection of Personal Data –, or to take appropriate legal action, if you believe that the processing of personal data relating to you, carried out through this site, is in breach of the provisions of the GDPR.

Consequences of non-disclosure of personal data

With regard to the disclosure of personal data for a legal obligation, or for the performance of a task in the public interest, failure to disclose personal data prevents the provision of the online services requested.

Automated decision making, including profiling

Your personal data will not be subject to any automated decision-making process, including profiling.