Select your language

Information pursuant to Article 13 of EU Regulation 2016/679

We wish to inform you, in accordance with the European Regulation 2016/679 also known as the "General Data Protection Regulation" (hereinafter "GDPR") and Legislative Decree 196/2003 and subsequent amendments relating to the protection of individuals with regard to the processing of personal data, as well as the free circulation of such data, that the information and data provided by you or otherwise acquired in the context of the web services provided by MIR SOLUTION SRL. will be processed in compliance with the aforementioned provisions and the confidentiality obligations that inspire our activity

The purpose of this information is to transparently disclose the purposes for which we may use your data, how we will manage them, to whom they could be communicated, where they could possibly be transferred (inside or outside the European Economic Area), and what your rights are.

Data Controller

Your data will be processed by MIR SOLUTION SRL. as the Data Controller.

In addition to MIR SOLUTION SRL., we inform you that there are External Data Processors for the processing of personal data, who have been appropriately mapped, listed, contracted, and appointed by MIR SOLUTION SRL. based on the provisions of Article 28 of the GDPR.

The list of External Data Processors is available at the registered office of MIR SOLUTION SRL.

Types of Data Processed

The data subject to processing includes navigation data and data voluntarily provided by the user, as specified below.

MIR SOLUTION SRL. informs users of the site that the collected data will be used exclusively for the purposes indicated below.

Navigation Data

The computer systems and software used for the website's proper functioning acquire, during their normal operation, some data, the transmission of which is implicit in the use of Internet communication protocols.

This category of data includes IP addresses or domain names of computers used by users who connect to the site, URI addresses of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (success, error, etc.), and other parameters related to the user's operating system and computer environment.

This data is used solely for the purpose of obtaining anonymous statistical information about the use of the site and to ensure its proper functioning. They are deleted immediately after processing. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site.

Data Provided Voluntarily by the User

The optional, explicit, and voluntary sending of electronic mail to the addresses indicated on the site or the completion of specific contact forms involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data provided. This data will be communicated to third parties only if necessary to fulfill user requests.

Processing Purposes

The processing of data is solely aimed at achieving the following purposes:

  1. Activities related to consulting the contents of the site.
  2. Activities strictly connected and instrumental to the management of relationships with users and potential collaborators (contact requests).

From the above, it follows that the provision of personal data is strictly necessary to pursue purposes a) and b): failure to provide data will make it impossible to achieve the aforementioned purposes and therefore to respond to the request. The extent and adequacy of the data provided will be evaluated from time to time to determine the consequent decisions and avoid the processing of data exceeding the purposes pursued.

Processing Methods

For the processing of personal data, as provided for in Article 4(2) of the GDPR, we intend any operation or set of operations, also carried out without the aid of electronic tools, concerning the collection, recording, organization, storage, consultation, processing, modification, selection, extraction, comparison, use, interconnection, blocking, communication, dissemination, deletion, and destruction of data, even if not recorded in a database. Processing is carried out through automated systems for the time strictly necessary to achieve the purposes for which they were collected and in any case, in compliance with current legislative provisions.

Data Retention Period

Personal data will be stored for a period not exceeding that necessary for the purposes for which they were collected and subsequently processed. Personal data will be kept for the entire duration of the relationship between the parties and also for a subsequent period according to the following criteria:

  1. within the terms set by current legislation
  2. Within the terms set by secondary legislation that requires data retention (e.g., tax declarations).
  3. Within the period necessary to protect the data controller's rights in the event of any disputes related to the provision of the service.

In any case, the maximum data retention period is estimated at 10 years from the termination of the relationship between the parties.

Communication and Dissemination of Data

Personal data are processed by employees and/or collaborators of the Data Controller, adequately trained, and will not be disclosed but may be communicated to third parties (including Partners, consultants, and freelancers, banks and credit institutions, insurance companies) to comply with obligations arising from the law, regulations, EU regulations, or for aspects concerning the management and execution of the legal relationship. For all the purposes indicated in this information, your data may also be communicated abroad, within and outside the European Union, respecting the rights and guarantees provided by current legislation, after verifying that the country in question guarantees an "adequate" level of protection.

Rights of the Data Subject

As data subjects, you can request at any time:

  1. Access to personal data
  2. Their correction in case of inaccuracy
  3. Deletion
  4. Limitation of processing
  5. The right to object to the processing of data if the conditions are met;
  6. The right to data portability, i.e., to receive personal data provided in a structured, commonly used, and machine-readable format

For what is not expressly provided for by the above provisions, reference is made in full to the current legislation on Privacy and specifically to Articles 15, 16, 17, 18, 20, 21, and 22 of the GDPR.

In case of violation, the data subject has the right to lodge a complaint with the competent Supervisory Authority (Article 13(2)(d) of the GDPR).

Revocation of Consent

Consent given regarding the processing of personal data can be revoked at any time without prejudice to the lawfulness of the data processed before such revocation and further processing based on legal grounds other than consent, such as contractual and legal obligations

For further clarification about this information or on any topic related to the protection of your personal data and their free circulation, or if you wish to exercise the above rights or revoke your consent, you can write to This email address is being protected from spambots. You need JavaScript enabled to view it..

Data Controller

The Data Controller is MIR SOLUTION SRL., with operational headquarters at Via T. Frizzoni, 22, 24121 Bergamo