Back to Home

Privacy Policy

Last updated: November 24, 2025

PRIVACY POLICY pursuant to Art. 13 of Regulation (EU) 2016/679 ("GDPR")

With this information notice, the data controller wishes to provide you with details regarding the processing of your personal data for the purpose of browsing the website (the "Website") and for managing your requests.

Data Controller

Mediterra Datacenters S.r.l., with registered office at via Alessandro Manzoni 38, 20121, Milan, represented by its legal representative pro tempore is the data controller of your personal data (the "Controller" or "Mediterra").

The Controller can be contacted by writing to the following email address: privacy@mediterradatacenters.com

Purposes and legal basis of the processing

Your personal data will be processed by the Data Controller lawfully and according to the principle of fairness. By personal data ("Personal Data" or, in plural "Personal Data") it is meant: "any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person".

In particular, during your browsing within the Website and for the management of your requests, the Data Controller processes the Personal Data indicated below, in relation to specific purposes.

1. Browsing within the Website

Personal Data is processed within the scope of browsing the Website and activities related to browsing.

In particular, as a visitor of the Website and within the context of browsing on it, Mediterra processes the following Personal Data:

  • IP, domain name and URL used for browsing;
  • geolocation data, type of browser and operating system;
  • browsing data (e.g. number of visits to the Website and time spent on the Website);
  • browsing history;
  • search queries and content visited on our Website.

The collection of Personal Data is limited exclusively to browsing data. The transmission of such data to the Website is essential for the proper functioning of the computer systems responsible for managing the Website and for Internet communication protocols. Consequently, the legal basis for the processing is represented by art. 6, par. 1, lett. f) of the GDPR, that is, the legitimate interest of the Controller to ensure users' access to and use of the Website's functionalities during browsing.

2. Formulation of requests by users

Personal Data is processed by Mediterra to meet your requests and for the use of the services offered by the Controller. To this end, Mediterra processes the following Personal Data:

  • first and last name;
  • email address and phone number;
  • name of the organization for which he works;
  • any other additional information provided in the context of the request.

Regarding this purpose, the legal basis is represented by Art. 6, par. 1, lett. b), GDPR, that is, the execution of a contract or pre-contractual measures.

Processing methods

Personal Data is processed respecting the necessary security and confidentiality to ensure compliance with current regulations. The processing methods include: data collection at the company, the collection and registration of such data for specific, explicit purposes and the use of data in further processing operations only if compatible with the purposes for which such data were collected. Moreover, processing may occur with the aid of electronic tools.

Communication of data to third parties

Your Data are not transferred to countries located outside the European Economic Area.

For the achievement of the purposes listed above, the Controller may communicate your Personal Data to the following categories of recipients, who will process your Personal Data as processors or as independent controllers. By way of example and not limited to, the entities to whom Personal Data may be communicated are:

  • group entities: the Controller, when necessary for the provision of requested services, may share your Personal Data with affiliated companies and subsidiaries of the Mediterra group, including those located in Germany;
  • suppliers and subcontractors: your Personal Data may be transferred to Mediterra suppliers and subcontractors only to the extent that such information is necessary for the provision of the requested services. Such transfers will occur exclusively under written and documented instructions from the Controller, who undertakes to ensure that third parties adopt adequate security measures to protect your Personal Data;
  • in exceptional situations, Mediterra may be required to disclose your Personal Data to competent government authorities or other authorized entities, in compliance with legal obligations, or when necessary to protect the vital interests of Mediterra's employees, customers, or the public.

Retention periods

Your Personal Data is retained by the Controller for the time necessary to achieve the purposes outlined in the paragraph "Purpose of processing" and, in particular:

  • the data provided for the formulation of requests by users and for the enjoyment of the services offered by the Controller will be retained for the entire duration of the contract and until there are no obligations or requirements related to its execution. Upon termination of the contractual relationships between you and the Data Controller, your Data will be further retained for 11 years solely for purposes related to the fulfillment of legal obligations or the defense of the Controller's rights.

Rights as a data subject

During the period when the Controller holds or processes Personal Data, you, as the data subject, can at any time exercise the following rights:

  • right of access to the data;
  • right to rectification of the data;
  • right to erasure of the data;
  • right to restriction of processing;
  • right to object to processing;
  • right to data portability;
  • right to withdraw consent at any time;
  • right not to be subject to an automated decision that has legal effects concerning your person.

Furthermore, you have the right to lodge a complaint with the Supervisory Authority (Italian Data Protection Authority, Piazza Venezia 11, 00187 – Rome, Italy, Telephone +39 06696771, E-mail: protocollo@gpdp.it, www.garanteprivacy.it).

You can exercise your rights by contacting the Data Controller at the contact details provided above.

Back to Home