Privacy Policy

Privacy Policy

Users Section

Mod.INF.UT.-PRI

Ed. 01/2023

The undersigned Company Mecc 2000 srl, VAT no. and tax code: 01071680357. 01071680357, owner of the website https://mecc2000.com/ (hereinafter, the “Site“), in its capacity as data controller of the personal data of the users of the Site (hereinafter, the “Users“) provides below the privacy policy pursuant to Article 13 of the EU Regulation 2016/679 of 27 April 2016 (hereinafter, the “Regulation“, or the “Applicable Legislation“).

This Site and any services offered through the Site are reserved for individuals who are 18 years of age or older. Therefore, the Data Controller does not collect personal data relating to persons under the age of 18. At the request of Users, the Data Controller will promptly delete all personal data involuntarily collected relating to persons under the age of 18.

The Data Controller takes the right to privacy and the protection of personal data of its Users into the utmost consideration. For any information in relation to this privacy policy, Users may contact the Controller at any time, using the following methods:

• By sending a registered letter with return receipt to the holder’s registered office Mecc 2000 srl Via Fiorentina 4/d 42013 Casalgrande (RE);
• By sending an e-mail message to the following addresses: email: info@mecc2000.com and pec: mecc2000@pec.it.

1. Category of data processed:

The data covered by this processing are as follows:

1. a) all personal data whose transmission is implicit in the use of Internet communication protocols, which the computer systems and software procedures used to operate the Site acquire during their normal operation: IP addresses or domain names of the computers used by Users, URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User’s operating system and computer environment; the User’s operating system and computer environment; the information provided by the Site, the data transmission method used to transmit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User’s operating system and computer environment. ) and other parameters relating to the User’s operating system and computer environment;
2. b) personal identification data (e.g. name, surname, e-mail address, telephone number, city, company name, location, IP address, log files, ect);
3. c)any further data the User may have possibly and voluntarily published in the “request a quote” section;
4. d) any further data possibly and voluntarily entered in the ‘work with us’ recruitment and selection form.

2. Purpose of processing

Users’ personal data will be lawfully processed by the Controller in accordance with Article 6 of the Regulation for the following purposes:

1. 1. provision of the service, i.e. to allow navigation of the Site by the User. The User’s data collected by the Owner for this purpose include all data are used for the sole purpose of obtaining anonymous statistical information on the use of the Site and to allow it to function properly. Without prejudice to what is provided for elsewhere in this privacy policy, under no circumstances will the Data Controller make Users’ personal data accessible to other Users and/or third parties.

   2. Fulfilling the User’s request: Users’ personal data are collected and processed by the Controller for the sole purpose of fulfilling their request. The User’s data collected by the Controller for this purpose include: name, surname, email address, telephone number, city, company and any additional User data that may be voluntarily published in the “request a quote” section. No other processing will be carried out by the Controller in relation to Users’ personal data. Without prejudice to what is provided for elsewhere in this privacy policy, under no circumstances will the Controller make Users’ personal data accessible to other Users and/or third parties.

   3. processing of Work with Us requests: activities connected with or instrumental to the company’s internal selection processes in order to assess the candidates’ profiles in relation to employees, trainees or collaborators who have been assigned professional work assignments; evaluation and preservation of CVs

   4. administrative and accounting purposes, i.e. to carry out activities of an organisational, administrative, financial and accounting nature, such as internal organisational activities and activities functional to the fulfilment of contractual and pre-contractual obligations

   5. legal obligations, i.e. to fulfil obligations laid down by law, authority, regulation or legislation and to ascertain liability in the event of hypothetical computer crimes to the detriment of the Site

   6. performance of a contract, if the processing is necessary for the performance of a contract with the User and/or the execution of pre-contractual measures.

       

However, it is always possible to ask the Data Controller to clarify the concrete legal basis of each processing and in particular to verify whether the processing is based on the law, required by a contract or necessary to conclude a contract.

The provision of personal data for the processing purposes indicated above is optional but necessary, since failure to provide such data will make it impossible for the User to make his/her request to the Controller.

Personal data that are necessary for the pursuit of the processing purposes described in this point 2) are indicated with an asterisk in the request form.

3. Processing methods and data retention periods

The Data Controller will process the personal data of the Users by means of manual and computerized tools, with logics strictly related to the purposes themselves and, in any case, in such a way as to guarantee the security and confidentiality of the data.

The personal data of the Site’s Users will be stored for the time strictly necessary to fulfil the primary purposes illustrated in point 2) above or, in any case, as long as necessary to protect the interests of both the Users and the Data Controller under civil law.

4. Scope of data communication and dissemination

The subjects in charge of managing the Site and the Users’ requests may become aware of the Users’ personal data. These subjects, who have been instructed to do so by the Data Controller in accordance with Article 29 of the Regulation, will process the User’s data exclusively for the purposes indicated in this information notice and in compliance with the provisions of the Applicable Regulations.

Users’ personal data may also be disclosed to third parties who may process personal data on behalf of the Data Controller in the capacity of “External Data Processors”, such as, by way of example, suppliers of IT and logistical services functional to the operation of the Site, suppliers of outsourced or cloud computing services, professionals and consultants.

Users are entitled to obtain a list of any Data Processors appointed by the Controller by making a request to the Controller in the manner indicated in point 6) below.

5. Data Transfer

Data collected in connection with the aforementioned purposes are not transferred to non-EU countries. The data controller, however, reserves the right to use cloud services; in which case, the service providers will be selected from among those who provide adequate guarantees, as provided for in Article 46 of EU Regulation 2016/679.

6. Rights of Interested Parties

Users may exercise the rights guaranteed to them by the Applicable Legislation by contacting the Controller in the following ways:

• By sending a registered letter with return receipt to the holder’s registered office Mecc 2000 srl Via Fiorentina 4/d 42013 Casalgrande (RE);
• By sending an e-mail message to the following addresses: email: info@mecc2000.com and pec: mecc2000@pec.it.

Users have the right to obtain:

• access to personal data in order to know (‘responsive transparency’) the purposes of the processing, the categories of personal data collected, the recipients of the data communication, in particular if third countries or international organisations are involved, the period of data retention envisaged (Art. 15)

• obtain rectification (Art. 16);

• the right to obtain the deletion of personal data if they are no longer necessary in relation to the purposes for which they were collected and if there is no further legal need for their storage (Art. 17 GDPR);

• request restriction of processing (Art. 18);

• request data portability (Art. 20);

• right to object to processing for reasons related to your particular situation (Art. 21 GDPR). In this case, we will refrain from further processing your data unless you demonstrate the existence of compelling legitimate grounds for processing (e.g. to defend your rights in court).

• not to be subject to automated decision-making, including profiling (Art. 22);

• to withdraw consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation (Art. 7).

Lastly, the data subject shall have the right to lodge a complaint with the Supervisory Authority pursuant to Art. 13(2)(d) of the aforementioned Regulation as well as pursuant to Art. 77 of the Regulation.

The Italian supervisory authority is the Garante per la protezione dei dati personali, based in Piazza Venezia 11, 00186 – Roma (https://www.garanteprivacy.it/).

For all matters not provided for in this Information Notice, reference is made to Regulation (EU) 2016/679 to Legislative Decree 196/03 as amended by Legislative Decree 101/2018 as amended, as well as to any other provision issued by the Italian Data Protection Authority (“Garante”).

The Data Controller is not responsible for updating all the links displayed in this Information Notice, therefore whenever a link is not working and/or updated, Users acknowledge and accept that they must always refer to the document and/or section of the websites referred to by that link. In case of non-acceptance of the changes made to this Privacy Policy, the User shall cease using the website https://mecc2000.com/ and may request the Data Controller to remove his/her Personal Data. Unless otherwise specified, the previous privacy policy shall continue to apply to the Personal Data collected up to that point.