Information on the processing of personal data (Article 13 of EU Regulation 2016/679)

Medaarch srl stp, with registered office in Viale Crispi, 14, 84013 – Cava de ‘Tirreni (SA), VAT number 05443180657 (hereinafter, “Data Controller”), as Data Controller of personal data, informs you pursuant to of the art. 13 of EU Regulation 2016/679 (hereinafter, “GDPR”) that your data will be processed in the manner and for the purposes set out below. Anyone who accesses our site or uses our services accepts our collection and processing conditions.

  1. Object of the treatment

The Data Controller processes personal identification data (for example, name, surname, company name, address, telephone number, e-mail address, bank and payment details) – hereinafter, “personal data” or even “data” – communicated by you in phase of conclusion of the contract and / or registration on the website of the Data Controller.

Some data may also include the tax code, registration in professional registers, and the city of registration in the register, necessary for the activity of third parties in the context of continuing professional training to be communicated to public bodies for institutional purposes.

In other cases, always with reference to the data subject indicated above, data such as the professional category may be processed.

Billing information and payment data (VAT number, tax code, address, any other data).

  1. Purpose of processing and provision of data

Your personal data are processed without your express consent (Article 6 paragraph 1 letter b) and c) of the GDPR), for the following purposes:

provide both free and paid services;

fulfill the pre-contractual, contractual, administrative and accounting / tax obligations deriving from existing relationships with you;

fulfill the obligations established by law, by a regulation, by community legislation or by an order of the Authority (for example, in the field of anti-money laundering and anti-fraud, pursuant to Directive 2015/2366 (EU), and subsequent amendments).

The provision of such data is a necessary requirement for the conclusion of the contract for subscribed users and / or for registration on the site and the use of the services provided by the same and reserved respectively for subscribed and registered users; any refusal will make it impossible to use it. The services will be rendered only after registration.

Furthermore, e-mails of newsletters, commercial communications and / or advertising and / or information material for promotional and commercial purposes on the activities and initiatives of the Data Controller may be sent, on the basis of the processing for the legitimate interest of Medaarch s.r.l s.t.p. From the sending of these newsletters it is always possible to cancel.

Furthermore, the interested party will be free to interrupt this specific treatment, at any time and free of charge, by writing to; the lawfulness of the processing remains valid during the period of validity of the same consent.

It should be noted that the legitimate interest (Article 6 par. 1 letter f) of the GDPR) prevailing of the owner consists in the processing of data, for the purpose of improving the efficiency of products and services offered by Medaarch s.r.l s.t.p.

Processing for marketing purposes (Article 7 of the GDPR) is based on the consent of the interested party. The release of the aforementioned consent is optional. In any case, even where the interested party has given consent, he will remain free at any time to revoke it. Following the receipt of this request, it will be the responsibility of the Data Controller to promptly remove and delete the data from the databases used for these purposes. The simple receipt of the cancellation request will be valid as confirmation of cancellation.

  1. Methods of data processing

The processing of your personal data is carried out by means of the operations indicated in art. 4 n. 2 GDPR, in an automated and / or manual form, in compliance with the provisions of art. 32 of the GDPR regarding security measures, by the Data Controller and / or Data Processor, as well as by persons specifically authorized for processing.

  1. Data retention

The data will be kept for the period of time strictly necessary for the execution of the contractual relationship and, subsequently, in implementation of the obligations established by law.

  1. Communication of data

The subjects authorized to process the processing and / or the data processors (for example, our staff for the performance of their administrative and promotional activities) may become aware of the personal data. Personal data may be disclosed to employees and collaborators of the Data Controller, in their capacity as authorized and / or internal managers of the processing and / or system administrators, only for the purposes of the processing indicated above and in general, to all public and / or private individuals to whom the communication is necessary for the correct fulfillment of the aforementioned purposes and for the fulfillment of legal obligations (as an indication, banking institutions for collections and payments, professional offices for administrative practices or for any credit recovery) .

  1. Dissemination of data

The data will not be disseminated.

  1. Transfer of personal data abroad

The data will not be transferred either to member states of the European Union or to third countries not belonging to the European Union.

  1. Rights of the interested party

At any time, you can exercise, pursuant to art. 15 – 22 of the GDPR, the right to:

  • ask for confirmation as to whether or not their personal data is being processed and to obtain access to them;
  • obtain rectification, deletion of data, limitation of processing;
  • oppose the processing at any time;
  • lodge a complaint with a supervisory authority;
  • obtain information about the existence of an automated decision-making process, including profiling, and, at least in such cases, have significant information on the logic used, as well as the importance and consequences envisaged for the data subject; in such cases, the interested party has the right to object at any time;
  • revoke the consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation (articles 6 par. 1 letter a) and 9 par. 2 lett. a) GDPR).

The interested party may consequently, at any time, send an e-mail to to exercise their rights and to obtain information or make requests regarding their personal data and respect for their privacy.

  1. Owner, manager and persons in charge of processing

The Data Controller is Medaarch s.r.l s.t.p, where the processed data reside.

The detailed list of the persons appointed as Data Processors and third parties to whom the personal data may be disclosed will be provided upon your express request to Medaarch s.r.l s.t.p, where the updated list is kept.

  1. Changes to the information and the purposes of the processing

This information may be subject to changes, also due to regulatory changes that have occurred. Any substantial changes in the use of user data will be promptly communicated on this page.


No personal user data is acquired by the site on purpose, and no profiling and / or tracking activity is performed.

With this information we inform you that cookies are not used to transmit information of a personal nature, nor are so-called c.d. persistent cookies of any kind, or systems for profiling and / or tracking users.

The use of so-called session / technical cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed or by cancellation) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow the safe and efficient exploration of the site. The so-called Session / technical cookies used on this site avoid the use of other IT techniques that are potentially prejudicial to the confidentiality of users’ browsing and do not allow the acquisition of the user’s personal identification data.

This site’s use of cookies relating to the WordPress CMS technology (W3tc_referrer) – which are not stored permanently on the user’s computer – is strictly limited to the proper functioning of this technology, which otherwise would cease to function. These cookies do not record any type of information that can be traced back to the single visitor user.

This site also uses analytics cookies used directly by the manager (Google) exclusively to collect information, in aggregate form, on the number of users and how they visit the site. Within the site, exclusively to allow a better experience of using the web, third-party services may be contained with cookies used directly by the various service managers (cookies managed by third parties) such as Youtube, GoogleMaps, Vimeo, Yandex, Facebook .

The user can limit, block or delete cookies by adjusting the settings of their web browser. The procedure may vary slightly with respect to the type of browser used. For detailed instructions, click on the link of your browser.