Privacy Policy
Privacy Policy
This policy describes how ViviBamboo Albania Shpk processes the personal data of users of the MarchioGreen website, in accordance with Regulation (EU) 2016/679 (GDPR) and Albanian data protection law.
Last updated: June 2026
MarchioGreen is a service offered and managed by ViviBamboo Albania Shpk (NUIS/VAT L91515023M), a company incorporated under Albanian law.
Data controller
The data controller is ViviBamboo Albania Shpk, NUIS/VAT L91515023M, with registered office at Rr. Agolli 00400001, Nd.29, H.1, Maqellarë, Kërcisht i Poshtëm, 8302, Dibër — Albania.
For any request regarding personal data you can write to privacy@marchiogreen.com.
Data we collect
Data provided voluntarily through the contact form: company name, contact person, email, phone, message and any estimated emissions provided.
Customer data required to issue certificates: company name, VAT/tax code, address, contact details.
Browsing data and technical cookies (see the Cookie Policy).
Purposes and legal bases
Responding to contact requests and managing the pre-contractual relationship (pre-contractual measures and legitimate interest).
Issuing, delivering and managing offset certificates (performance of the contract).
Legal, accounting and tax obligations (legal obligation).
Website security and spam prevention, including via Google reCAPTCHA (legitimate interest).
Blockchain registration
Certificates are recorded as tokens on the public Polygon blockchain. Information written on-chain is public, permanent and immutable: for this reason we limit recorded data to what is strictly necessary for verification (e.g. certificate number, CO₂ amount, technical references).
Publication of a company’s logo and name in the public showcase only occurs with the customer’s explicit consent, which can be withdrawn at any time.
Data recipients
Data may be processed by providers acting as data processors: hosting provider, email service and, for anti-spam protection only, Google (reCAPTCHA).
We do not sell personal data to third parties.
Data transfers
The controller is based in Albania (a non-EU country) and some providers (e.g. Google) may process data outside the EU. Such transfers take place in compliance with the safeguards required by the GDPR (e.g. standard contractual clauses or adequacy decisions).
Retention
We retain data for as long as necessary for the stated purposes and in accordance with legal obligations. Data recorded on the blockchain cannot, by its nature, be deleted.
Your rights
At any time you may exercise your rights of access, rectification, erasure, restriction, objection and portability, and withdraw any consent given, by writing to the controller.
You also have the right to lodge a complaint with the competent supervisory authority.
Make your sustainability official.
Talk to our team and discover the certification path best suited to your company.