top of page

Privacy Policy

This Policy, issued pursuant to Article 13 of Regulation (EU) 2016/679 (General Data Protection Regulation, hereinafter “GDPR”) and Legislative Decree 196/2003 (hereinafter the “Privacy Code”), aims to explain the methods and purposes of the processing of personal data carried out by DEAMED SRL Semplificata, with registered office at Via Brunete 2/B, 41012 Carpi (MO), Italy, tel.: +39 345 3767850,  email: info@deamed.it, PEC: deamed@pec.it, as Data Controller (hereinafter the “Controller”), through the website https://www.deamed.it/ (the “Website”).

The processing of users’ personal data will be carried out in full compliance with the applicable data protection legislation.

The Controller reserves the right to update this Policy at any time and to inform users through the most appropriate means.

For any further information, users may contact the Controller at the email address provided above.

THE WEBSITE

The Website is configured to minimize the collection and use of users’ personal data, excluding processing wherever the intended purposes can be achieved by other means.

This Policy applies exclusively to the Website and to events managed by the Controller, and does not extend to pages or websites accessible via links and/or managed by third parties.

Users are therefore encouraged to review the relevant privacy policies of such third-party websites.

PURPOSES OF PROCESSING

Personal data are processed by the Controller within the limits and for the purposes of selling goods and providing services accessible through the Website, in particular for:

  • Browsing and interaction with the Website: Management of navigation and provision of requested content and services (Art. 6.1.b GDPR)

  • Handling requests: Responding to inquiries received via email or contact forms (Art. 6.1.b GDPR)

  • Contract performance: Account creation, order management, shipping, invoicing, and after-sales services (Art. 6.1.b GDPR)

  • Legal obligations: Compliance with legal requirements, such as tax and accounting obligations (Art. 6.1.c GDPR)

  • Marketing and commercial communications: Sending newsletters, promotional materials, event invitations, and market research via electronic means, subject to explicit user consent (Art. 6.1.a GDPR)

  • Soft spam: Sending promotional communications related to products or services similar to those already purchased, pursuant to Art. 130(4) of the Privacy Code

  • Protection of the Controller’s rights: Monitoring Website security and managing potential legal disputes (Art. 6.1.f GDPR)

TYPES OF DATA PROCESSED

Data collected automatically

The IT systems and software procedures used to operate the Website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

These data are not collected to be associated with identified individuals; however, by their nature, they could allow identification through processing and association with data held by third parties.

This category includes, by way of example, IP addresses, domain names of users’ devices, URI addresses of requested resources, request times, methods used to submit requests, file size, server response status codes, and other parameters relating to the user’s operating system and IT environment.

The Website uses cookies to enhance the user experience. For more details, please refer to the Cookie Policy.

Data provided voluntarily by the user

The voluntary sending of personal data by users for contractual or informational purposes such as name, surname, company name, address, phone number, and email address implies the acquisition and processing of such data by the Controller in order to respond to requests and/or provide the requested service.

Additional data related to contractual relationships may include order details, invoices, and payment information.

Users who wish to avoid data collection are advised not to submit requests or to provide only the minimum necessary personal data.

Data provided during events

Some events published on the Website may require registration of personal data such as name, surname, and email (mandatory), as well as job position and organization (optional).

These data are used to understand the audience and ensure proper event management.

If, after participating in an event, users do not express interest in receiving newsletters or updates, their personal data will be deleted within 30 days or retained in anonymized and aggregated form.

METHODS OF PROCESSING

Personal data are processed mainly using electronic tools; however, processing by paper means is not excluded.

Processing is carried out exclusively by personnel authorized in writing by the Controller, in compliance with applicable regulations.

Data are stored in a form that allows identification of users only for the time strictly necessary to achieve the purposes for which they were collected and, in any case, within legal limits.

Personal data related to contracts are retained for 10 years. Marketing data are reviewed every two years.

DISCLOSURE OF PERSONAL DATA TO THIRD PARTIES

No data will be disclosed or communicated to third parties without the explicit consent of the data subject, unless necessary to provide a requested service.

Data may be communicated to:

  • Service providers for website and communication networks (e.g., hosting, email services, payment providers, e-commerce platforms)

  • Legal, tax, or accounting consultants

  • Banks and financial institutions for online or installment payments

  • Credit agencies and debt collection entities for administrative and financial purposes

  • Marketing service providers (subject to consent where required)

  • Competent authorities for legal obligations

A list of data processors is available at the Controller’s registered office.

Data may also be disclosed to authorities when required by law.

Personal data may be transferred outside the EU in compliance with applicable regulations.

SECURITY MEASURES

The Controller adopts appropriate security measures to minimize risks of data loss, unauthorized access, or unlawful processing.

USER RIGHTS

Users have the right to obtain confirmation of whether personal data concerning them exist and to receive such data in an intelligible form.

Users may also request:

  • Access, update, rectification, or integration of data

  • Deletion, anonymization, restriction, or blocking of data

  • Objection to processing

  • Lodging a complaint with the Data Protection Authority

These rights may be exercised at any time by contacting the Controller at the email address provided above.

This Privacy Policy may be subject to updates. Any new versions will be published on the Controller’s website.

Copyright @ DEAMED  IT 04246070363                                                                                                                                                                                                            Privacy Policy

bottom of page