PRIVACY NOTICE ON THE PROCESSING OF PERSONAL DATA PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679
– Version February 2022 –
Mecoil Diagnosi Meccaniche S.r.l. (hereinafter also referred to as “Mecoil”), in its capacity of Data Controller of your personal data, informs you pursuant to Article 13 Regulation (EU) No 2016/679 (hereinafter also referred to as “GDPR”) of our privacy policy and to understand how your personal information is handled when you use our services.
According to the rules of the Regulation, the processing carried out by Mecoil will be based on the principles of lawfulness, correctness, transparency, purpose limitation and conservation, data minimization, accuracy, integrity and confidentiality.
1. Data Controller details
1.1 The data controller is Mecoil Diagnosi Meccaniche S.r.l. with headquarters in Via delle Panche, 140 – 50141 Florence, Italy [C.F./P.IVA: 01519020489].
1.2 Below are the contact details of the Data Controller:
– telephone: +39 055 6120.567 – +39 055 6120486
– e-mail:
– PEC:
2 Data Protection Officer (DPO) details
2.1 The Data Protection Officer (DPO), designated by the Data Controller pursuant to Art. 37 GDPR, is Sicurdata S.r.l. in the person of DPO Agostino Oliveri with registered office in Scandicci (FI), Via E. Codignola, 10/A – 50018 [C.F./P.IVA: 06387650481]
2.2 Below is the contact information of the Data Protection Officer:
– telephone: +39 3487035239
– e-mail:
– PEC:
3. Personal data processed
3.1 The personal data collected are identification data such as name, surname and e-mail address, in addition to those that you may have communicated;
3.2 We will also process the usage data necessary to allow you to navigate this website.
3.2.1 Usage data is information collected automatically through this website (including by third party applications integrated into this website) including: the IP addresses or domain names of the computers used by the user who connects to this website, the addresses in URI (Uniform Resource Identifier) notation, the time of the request, the method used in forwarding the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server, the country of origin, the characteristics of the browser and operating system used by the visitor, the various temporal connotations of the visit (e.g. the time spent on each page) and the details of the itinerary followed within the Application, with particular reference to the sequence of pages consulted, the parameters relating to the user’s operating system and computer environment.
4. Purposes, legal basis of the processing, nature of the conferment
4.1 The data will be processed for the following purposes and according to the relevant legal basis. We also provide you with the necessary information on the nature of the conferment of the data.
A) Purpose: to allow navigation and consultation of the website; legal basis: art. 6.1 lett. f) GDPR as the processing is necessary for the pursuit of the legitimate interest of the owner; nature of the provision: necessary to be able to navigate the website;
B) Purpose: to respond to requests for assistance or information, which we will receive by e-mail via the appropriate form; legal basis: art. 6.1 lett. b) GDPR as it is necessary for the performance of a contract to which the data subject is a party or the execution of pre-contractual measures adopted at the request of the same; nature of provision: necessary to be able to make requests for assistance or information;
C) Purpose: to fulfil legal obligations; legal basis: art. 6.1 lett. c) GDPR as it is necessary to fulfil a legal obligation to which the data controller is subject; nature of the provision: mandatory.
D) Purpose: for the exclusive purposes of security and prevention of fraudulent conduct, the Controller implements an automatic control system that involves the detection and analysis of user behaviour on the site associated with the processing of personal data, including the IP address; legal basis: art. 6.1 lett. f) GDPR as the processing is necessary for the pursuit of the legitimate interest of the Controller; nature of the provision: necessary to be able to exercise a right in court.
5. Possible recipients of the data
5.1 Your personal data may be communicated to:
a) entities that typically act as data processors namely:
a.1) persons or companies that provide assistance and consulting services to the data controller;
a.2) subjects with whom it is necessary to interact for the provision of services;
a.3) subjects delegated to carry out technical maintenance activities (including the maintenance of network equipment and electronic communication networks);
b) subjects, bodies or authorities to whom it is obligatory to communicate your personal data by virtue of legal provisions or orders by the authorities;
c) persons authorised by the data controller to process personal data necessary to carry out activities strictly related to the provision of the Services, who have committed themselves to confidentiality or are under an appropriate legal obligation of confidentiality, such as employees of the data controller;
5.2 The full list of data processors is available by sending a written request to the data controller at the above email address.
6. Transfer of data abroad
6.1 The management and storage of personal data carried out by the data controller shall take place on servers located within the European Union of the data controller and/or of companies designated as data processors.
7. Period of data retention
7.1 The data relating to navigation are kept until the end of the session.
8. Cookies
8.1 Please refer to the Cookie Policy.
9. Rights of the interested party, complaints and judicial redress.
9.1 With regard to the data itself, the data subject, or a person delegated in writing, may exercise the following rights:
a) the right of access by the data pursuant to Article 15 GDPR;
b) the right to rectification pursuant to Article 16 GDPR;
c) the right to erasure “right to be forgotten” pursuant to Article 17 GDPR;
d) the right to restriction of processing when one of the cases provided for in Article 18 GDPR applies;
e) the right to receive certification that the operations carried out pursuant to Articles 16, 17 and 18 GDPR have been brought to the attention of those to whom the data have been communicated, unless this proves impossible or involves a disproportionate effort (Article 19 GDPR);
f) the right to data portability pursuant to Article 20 GDPR;
g) the right to object to the processing of personal data pursuant to Article 21 GDPR;
h) the right to lodge a complaint with a supervisory authority pursuant to Article 77 GDPR;
i) the right to seek judicial review pursuant to Articles 78 and 79 GDPR.
9.2 To exercise your rights, you may contact the Data Controller at the contact points of the Data Controller indicated in this notice.
9.3 To receive any clarification, you may contact the Data Protection Officer at the contact points set out in point 2.2 above.
COOKIE POLICY
1. Cookies are small text files created by a server and are stored on the device used by the user to navigate the site. They allow the site to provide the user with full functionality, a better and complete browsing experience, and to be aware of the user’s preferences and behaviour.
2. Mecoil S.r.l. uses two types of cookies, session and persistent.
Session cookies allow the user to explore the website safely and efficiently; these cookies are not permanently stored on the user’s device and they are deleted when the browser is closed. Persistent cookies are transmitted to the user’s device the first time he/she connects to Mecoil’s website, and are stored on the device itself. Mecoil uses persistent cookies to store the user’s preferences.
3. Mecoil uses technical cookies used for the sole purpose of “carrying out the transmission of a communication on an electronic communication network, or to the extent strictly necessary for the provider of an information society service explicitly requested by the contracting party or user to provide such service” (art. 122.1 Privacy Code – Legislative Decree 196/2003).
3.1 Therefore, technical cookies are necessary for the operation and use of the web service and allow the site to function properly, allowing the visitor a better navigation of the site.
3.2 These cookies cannot be disabled as they are necessary to contribute and make the website usable by enabling basic functions such as page navigation and access to protected areas of the site. The website cannot function properly without these cookies.
4. In addition, Mecoil uses analytical cookies aimed at evaluating and analysing the “traffic” on the web, i.e. quantifying the number of visitors to the website, also possibly broken down by geographical area, time of connection or other characteristics.
4.1 The website in question uses third party analytical cookies using the Google Analytics service, a web analysis service provided by Google, Inc. (“Google”), whose cookie policy can be viewed at https://support.google.com/analytics/answer/6004245.
4.1.1 The data are collected for the sole purpose of compiling statistical information on the use of the site and to verify the proper functioning of the site; browsing data may be used to identify the user only if this is necessary for the detection of computer crimes.
4.1.2 Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.
4.1.3 These cookies prevent the direct identification of the person concerned as they anonymise part of the user’s IP address. Therefore, according to the “Cookie and other tracking tools guidelines” of June 2021 of the Privacy Guarantor, they are comparable to technical cookies.
5. The user can oppose the recording of cookies on his device by configuring the browser used for browsing. The methods for blocking or deleting cookies from one’s own device vary according to the type of terminal and the type of browser used; therefore, the user can choose to enable or disable cookies by adjusting the settings of his/her browser according to the instructions made available by the relevant providers.