Information regarding the processing of personal data
Pursuant to Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, concerning the protection of natural persons with regard to the processing of personal data (hereinafter “GDPR”).
Last updated: October 8, 2024
Dear users/customers,
In compliance with the current European and Italian regulations, we ensure the protection and confidentiality of your personal data while you navigate our website and use it to acquire information about our activities and products, or to obtain our contact details.
We invite you to review this information regarding the methods, means, and purposes of the processing of your personal data through the website.
Data Controller
The data controller is M.E.T.A. S.r.l., with legal headquarters at Ponte a Piglieri n. 5 – 56121 Pisa (PI), to whom you can contact to exercise the rights recognized by the GDPR or to request clarifications regarding this information, using the following contact details:
e-mail: privacy@gruppometa.it
phone: 055/2260212 Fax: 055/2008015
or by regular mail to the address mentioned above
Categories of Data Processed and Purposes of Processing
During navigation through the sections of our site, which is accessible to any user without the need for registration, we acquire and process the following personal data for the specific purposes indicated:
(i) Browsing Data Related to the Session
The IT systems used for the operation of this site acquire, during their normal functioning, certain personal data whose transmission is implicit in the use of Internet communication protocols (e.g., IP addresses, internet connection data and traffic, domain names of devices used by visitors to the site).
These are information that is not collected to be associated with identified individuals or to identify users.
Unless specifically provided for in the document regarding the specific processing of cookies on the site, this data is used solely to derive anonymous information about the use of the site and to monitor its proper functioning.
The data may be used for the ascertainment of responsibility in the event of hypothetical cyber crimes against the site.
(ii) Browsing Data Related to Services Provided by Third Parties and/or Acquired from Third Parties Through the Site
The development of certain functionalities of the site occurs through services provided by third parties (including Google Analytics, regarding the monitoring and analysis of traffic data and user behaviors), through the use of cookies, as specified in the following paragraph.
Additionally, functionalities related to sharing web pages or content on social channels involve the acquisition of certain data (e.g., the web pages visited by the user) and their subsequent transmission to the servers of third parties managing the social networks.
The processing of the above data is aimed at ensuring the proper functioning and use of our site, through: a) performance evaluations of the site during the browsing session, aimed at monitoring and improving the services we offer; b) analysis of browsing data, in aggregate form, for statistical purposes and to track user behavior, without involving profiling activities (using Google Analytics functionalities). The processing also aims to facilitate sharing by users on Twitter, through access to the user's personal profile, of the contents of our site.
Our site features a contact form through which you can contact the Company and send requests for information or proposals for collaboration. The data is collected and processed by a plugin (which composes an email subsequently sent to a company mailbox) and is stored in the incoming email inbox for a limited time, solely to follow up on the requests.
Our site also contains, in the “contacts” section, addresses and contact details of the legal headquarters and operational offices of our Company; the optional and voluntary sending of emails (or regular mail) to the addresses indicated on this site involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message; by sending, you consent to the processing of the data for the indicated purposes.
We process the personal data in question to allow you to contact us, to request information and/or assistance, and for our Company to respond to your requests. The email provider is Gmail.
Legal Basis for Processing
The processing of personal data, depending on the case, is based on the following legal grounds:
Pursuing a legitimate interest of the data controller to ensure the security of the site, monitor its proper functioning, and obtain statistics related to its use, regarding session browsing data, and to assert or defend a right in court (Article 6, paragraph 1, letter f)
The consent provided by the user (by checking a box, clicking to continue browsing or on social buttons/widgets, sending emails or regular mail) concerning the processing of data provided via email, mail, or contact form, and for the use of browsing data related to services provided by third parties through the site and/or acquired from third parties through the site, including for sharing on social channels (Article 6, paragraph 1, letter a). Consent can be revoked at any time.
Processing Methods
The processing of personal data will be carried out using IT tools, both automated and non-automated (in which case, through human intervention in managing IT systems), and using analog tools (paper management), according to logics strictly related to the purposes of processing and, in any case, with the support of equipment and in ways that ensure the security and confidentiality of the data, preventing loss of data, unlawful or incorrect use, and unauthorized access.
For processing data on our site, we use technical cookies (“application”), both our own and from third parties.
Social buttons/widgets (sharing cookies).
Our site features particular “buttons” (referred to as “social buttons/widgets”) representing social network icons. These buttons allow users navigating the site to interact directly with the depicted social networks with a “click.” In this case, the social network acquires data related to the user’s visit.
“Sharing” cookies (or social network cookies) are used to allow users to interact with sites through their social account and serve, for example, to express appreciation and share it with contacts.
The presence of plugins involves the transmission of cookies to and from all sites managed by third parties. The management of the information collected by “third parties” is governed by their respective privacy policies, which we encourage you to consult.
When accessing one of our web pages equipped with the plugin, the internet browser connects directly to the servers of third parties, and the plugin is displayed on the screen via the connection with the browser. The plugin may communicate to third-party servers which pages the user has visited.
Communication and Dissemination of Data
The subjects who may become aware of personal data are our employees and collaborators who manage the administrative aspects of the web page and relations with users/customers. The company responsible for managing the site may also become aware of personal data during assistance/maintenance interventions.
Data is never transferred to or otherwise acquired by third parties based outside the European Union, except for the following: Google, LLC, limited to the functionalities of Google Analytics and Gmail; Twitter, Inc., limited to social sharing functionalities (all companies are included in the so-called Privacy Shield List https://www.privacyshield.gov/welcome: thus, they ensure an adequate level of protection). Additionally, some services from Google, since January 25, 2019, are provided by Google Ireland Limited for subjects based and/or operating within the European Union.
If we have the obligation to report a crime or otherwise need to pursue our legitimate interest to exercise or defend a right in court, user data may be communicated to the judicial authority or law enforcement.
Apart from the cases just mentioned, personal data will not be communicated to third parties and/or disseminated outside the scope of the European Union.
Data Retention Period
Browsing data is deleted immediately after processing, at the end of the browsing session (closing the browser).
Data voluntarily provided by users (through sending emails), or by fax or phone, will be retained for 30 days after the users have received the requested information, unless further retention of the data is necessary to comply with legal obligations, or if a different relationship between the parties is established.
Data processed through third-party cookies (including sharing ones) is retained for the period specified by the managers, according to their respective privacy policies.
Data processed using Google Analytics cookies is retained for 14 months from their acquisition.
Rights of the Data Subject Regarding Personal Data Processing (Articles 15-22 and 77 of the Regulation)
It is possible to submit requests to exercise the rights recognized by the Regulation (access, rectification, deletion, objection, restriction, and portability if the conditions are met), also by completing and sending to the addresses listed the specific form “Exercise of Rights Regarding Personal Data Protection (Articles 15-22 of Regulation (EU) 2016/679)” available at the following link.
To allow us to respond promptly, we kindly ask you—thanking you in advance for your cooperation—to provide your name and surname, email address. Some requests (e.g., related to exercising the right of access) must be accompanied by a photocopy of an identity document with your signature to verify your identity; you must also specify the address to which you wish to receive the response. The response will be sent within one month of receiving the request.
The data subject also has the right, if they believe that the processing of their data is being conducted in violation of the provisions of the Regulation, to address the competent civil or administrative authorities, or to lodge a complaint with the Authority for the Protection of Personal Data, as applicable.
Newsletter Subscription
Information on the processing of personal data pursuant to Article 13 of EU Regulation No. 2016/679 (hereinafter “GDPR”).
The GruppoMeta newsletter is sent via email to those who expressly authorize its sending and, for this purpose, consent to the processing of their personal data: it aims to provide periodic information to subjects potentially interested in our projects, services, activities, and initiatives.
The data controller is M.E.T.A. S.r.l., with legal headquarters at Ponte a Piglieri n. 5 – 56121 Pisa (PI), email: privacy@gruppometa.it / phone number: 055/2260212 Fax: 055/2008015, to whom you can contact to exercise the rights recognized by the Regulation or to obtain clarifications.
The site also features a specific form for subscribing to the newsletter service: the processing of the personal data in question (name and email address) is carried out upon activation of the service via your request for subscription, to keep you informed and updated on various activities, initiatives, opportunities, and job offers.
Providing data is optional; however, refusal to provide data and/or lack of consent to their processing for the specified purposes will prevent you from using the newsletter service. Consent, when given, can always be revoked.
The data provided will be processed using IT and telematic tools by our employees and collaborators responsible for the service, solely for the purpose of sending the newsletter to clients and, for this reason, will be retained exclusively for the period during which the service remains active: thus, your data will be retained until you request to stop receiving messages from this newsletter.
The data may be communicated to third parties (e.g., companies providing IT services, email providers, etc.) collaborating with the data controller for the delivery of this service, also as Data Processors pursuant to Article 28 of the GDPR.
To stop receiving the newsletter, it is sufficient to disable the service by clicking the “unsubscribe” link at the bottom of the emails through which the newsletter is sent: in this case, your email address will be immediately removed from the mailing list associated with the newsletter service but may still be retained in the company database for purposes other than sending the newsletter, within the framework of managing existing business relationships (if any).
The legal basis for this processing is found in the consent you provided (according to Article 6, paragraph 1, letter a of the GDPR).
Data will be processed exclusively by the personnel and collaborators of the Company or expressly authorized third parties. The personal data subject to processing will not be disseminated and will be processed solely within the European Union: limited to the functionalities of the MailChimp platform for the newsletter service, to which the data is communicated as Data Processor pursuant to Article 28 of the GDPR, data is transferred to The Rocket Science Group LLC (a company included in the so-called Privacy Shield List https://www.privacyshield.gov/welcome: thus, it ensures an adequate level of protection and the transfer is carried out in accordance with Article 45 of the GDPR).
Data subjects have the right to request and obtain from the data controller, in cases provided for by law, access to personal data and rectification or deletion of the same, or limitation of processing concerning them; they may also oppose the processing, or exercise the right to data portability (according to Articles 15 et seq. of the GDPR). The specific request to exercise these rights is submitted using the relevant forms, available in the “Privacy” section of the Company’s website, to be sent to the addresses indicated above, by email or regular mail. Requests will be addressed by the data controller as soon as possible, in any case within one month.
Data subjects who believe that the processing of their personal data through this service is occurring in violation of the provisions of the Regulation have the right to lodge a complaint with the Guarantor, as provided for in Article 77 of the Regulation, or to pursue appropriate judicial remedies (Article 79 of the Regulation).