PRIVACY POLICY
Last updated: June 2026
This Privacy Policy describes how personal data of users visiting the website www.dictomed.com (hereinafter, the “Website”) is collected, used, and protected, in accordance with Regulation (EU) 2016/679 (“GDPR”) and applicable data protection laws.
1. DATA CONTROLLER
The Data Controller is:
DICTOMED SRLS
Via Vittorio Veneto 54/B
00187 Rome (RM) – Italy
VAT Number: 18540151000
Email: info@dictomed.com
PEC: dictomedsrls@pec.it
Phone: +39 392 091 6169
2. TYPES OF DATA COLLECTED
While browsing the Website, the following categories of personal data may be collected:
a) Browsing Data
The computer systems and software procedures used to operate the Website automatically acquire certain information whose transmission is inherent in the use of Internet communication protocols, including:
- IP address;
- browser type;
- operating system;
- date and time of access;
- pages visited;
- time spent on the Website;
- device-related information.
b) Data Voluntarily Provided by the User
Through the contact forms available on the Website, the following personal data may be collected:
- first name;
- last name;
- email address;
- telephone number;
- company name;
- content of the message submitted.
c) Downloadable Documents
Accessing and downloading brochures, catalogs, and technical documentation may involve the collection of personal data when users provide such information through dedicated forms.
3. PURPOSES OF DATA PROCESSING
Personal data is processed for the following purposes:
a) Responding to User Requests
Data submitted through contact forms is used to:
- provide information about DICTOMED products and services;
- manage commercial inquiries;
- evaluate partnership and collaboration opportunities;
- provide customer support.
Legal basis:
Article 6(1)(b) GDPR – performance of pre-contractual measures requested by the data subject.
b) Website Operation and Security
Browsing data may be processed to:
- ensure the proper functioning of the Website;
- prevent fraudulent activities;
- maintain the security of IT systems and infrastructure.
Legal basis:
Article 6(1)(f) GDPR – legitimate interest of the Data Controller.
c) Analytics and Website Improvement
Analytical tools may be used to collect aggregated and statistical information regarding the use of the Website.
Legal basis:
User consent, where required by applicable law.
d) Marketing and Advertising Activities
Subject to the user’s consent, the Data Controller may use profiling and remarketing tools to display personalized advertising content through third-party platforms.
Legal basis:
Article 6(1)(a) GDPR – consent.
4. THIRD-PARTY SERVICES
The Website may use the following third-party services:
- Google Analytics 4
- Google Tag Manager
- Google Ads
- Google Maps
- Meta Pixel (Facebook and Instagram)
These services may collect information regarding the use of the Website and may transfer personal data to countries outside the European Union, including the United States, in compliance with the safeguards required by the GDPR.
For further information, users are encouraged to consult the privacy policies of the respective service providers.
5. METHODS OF PROCESSING
Personal data is processed using electronic and digital tools, adopting appropriate technical and organizational measures to ensure the security, integrity, and confidentiality of the information.
6. DATA RETENTION
Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected and, in any case:
- contact requests: up to 24 months;
- marketing-related data: until consent is withdrawn and in any event no longer than 24 months;
- technical browsing data: according to the retention periods established by the respective services used.
7. DATA RECIPIENTS
Personal data may be disclosed to entities acting as data processors or independent data controllers, including:
- hosting providers;
- IT consultants and service providers;
- cloud service providers;
- analytics and marketing service providers;
- public authorities where required by law.
8. TRANSFERS OF DATA OUTSIDE THE EEA
Some of the service providers used by the Website may transfer personal data to countries outside the European Economic Area (EEA).
Such transfers are carried out in compliance with Articles 44 et seq. of the GDPR and through the adoption of appropriate safeguards as required by applicable law.
9. DATA SUBJECT RIGHTS
Users may exercise at any time the rights granted under Articles 15–22 of the GDPR, including:
- right of access;
- right to rectification;
- right to erasure;
- right to restriction of processing;
- right to object to processing;
- right to data portability;
- right to withdraw consent at any time.
Requests may be submitted to:
info@dictomed.com
10. RIGHT TO LODGE A COMPLAINT
Users have the right to lodge a complaint with the competent Data Protection Authority if they believe that the processing of their personal data violates applicable data protection laws.
11. CHANGES TO THIS PRIVACY POLICY
The Data Controller reserves the right to amend or update this Privacy Policy at any time.
Any changes will be published on this page together with the relevant update date.