Privacy Policy


Date updated: 19/10/2020

DISCLOSURE PURSUANT TO REG. EU 2016/679 (hereinafter GDPR)


This Privacy Policy is intended to describe the management methods of personal data acquired through this site.

In compliance with the obligations deriving from the national legislation (Legislative Decree No. 196/2003) and the European Community (European Regulation for the protection of personal data No. 679/2016, GDPR) and subsequent modifications, this site respects and protects the confidentiality of visitors and users, making every effort possible and proportionate so as not to damage users' rights.

This information is provided pursuant to Article 13 of the GDPR, valid exclusively for the exacoding Srl website and not for other websites that may be consulted by the user via links.


The owner of the processing of personal data is exacoding Srl Contact details: exacoding Srl Via Roma 21, 10099 San Mauro Torinese (TO) Italy -


exacoding S.r.l. has appointed a Data Protection Manager (DPO) who you can contact at




The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numeric code indicating the status of the response given by the server (good purpose, error, etc.) and other parameters relating to the operating system and the user's IT environment.


Navigation data is used only to obtain anonymous statistical information on the use of the site and to check its correct functioning. The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site: except for this eventuality, the data on web contacts do not persist for more than 180 days.

Processing methods

The information is processed in an automated manner and collected in an exclusively aggregated form by external parties appointed as Data Processors by the Data Controller.

Legal basis of the processing

The data is processed according to the legitimate interests of the owner: verification of the correct functioning of the site, verification of responsibility in the case of computer crimes against the site.

Place of processing

The data collected from the site are processed at the headquarters of the Data Controller and through the Microsoft Azure infrastructure located in the European Economic Area and operating in accordance with European standards.

Period of conservation

Without prejudice to the possibility of using the data to ascertain responsibility in the event of hypothetical computer crimes, at present data on web contacts does not persist for more than 180 days.


The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message.

The provision of any personal data in the aforementioned hypothesis is entirely optional. Failure to provide such data may make it impossible to obtain what is requested. The communication of personal data relating to a minor must be made by a parent or a person exercising parental authority.


The personal data provided by users who request information is used only to perform the requested service.

Processing methods

Processing is carried out using IT and / or telematic tools, with organizational methods and logic strictly related to the needs of requests sent by the sender.

In addition to the data controller, those in charge of the organizational areas involved in the management of requests (administrative, commercial, marketing, system administrators, ...) may have access to the data.

Specific security measures are applied to prevent the destruction or loss of data, unauthorized access or illicit use and in any case adequate security measures are taken, be they physical or IT, in line with the provisions of the Regulation.

Legal basis of the processing

Treatment carried out for the execution of pre-contractual measures.

Place of processing

The data collected is processed at the headquarters of the Data Controller and through Google's G-Suite and Cloud services that operate in accordance with European standards.

Period of conservation

Personal data is stored with automated tools for the time strictly necessary to achieve the purposes for which it was collected.


Pursuant to the European Regulation 679/2016 (GDPR) and the national legislation, the User can, according to the methods and within the limits established by current legislation, exercise the following rights:

  • request confirmation of the existence of personal data concerning him (right of access);
  • know its origin;
  • receive intelligible communication;
  • have information about the logic, methods and purposes of the processing;
  • request the updating, rectification, integration, cancellation, transformation into anonymous form, blocking of data processed in violation of the law, including those no longer necessary for the pursuit of the purposes for which they were collected;
  • in the case of treatment based on consent, to receive at the sole cost of any support, its data provided to the holder, in a structured and readable form by a data processor and in a format commonly used by an electronic device;
  • withdraw consent at any time without prejudice to the lawfulness of the processing based on the consent given before the revocation;
  • the right to file a complaint with the Control Authority;
  • as well as, more generally, exercise all the rights that are recognized by the current legal provisions.

The interested parties' requests for the exercise of their rights must be addressed to the Data Controller.


Cookies are small text files that the visited sites send to the user's terminal, where they are stored, to then be re-transmitted to the same sites on the next visit.

The Site uses:

  • session cookies whose use is not instrumental to the collection of personal identification data of the user, being limited only to the transmission of session identification data in the form of numbers generated automatically by the server.
  • analytics cookies used to collect information, in aggregate form, on the number of users and how they visit the Site.

The site uses the Google Analytics service, whose cookie policy can be viewed via the following link. In order to respect the privacy of the Users, the service is used with the "_anonymizeip" mode, which allows to mask the IP addresses of the users browsing the website (more information on the functionality). The data is collected for the sole purpose of processing anonymous statistical information on the use of the Site and to verify its correct functioning; the navigation data could be used for the purpose of identifying the user only if this is necessary to ascertain computer-related crimes.

The cookies used by the Site do not allow the collection of personal information relating to the User and are automatically deleted when the browser is closed.

Cookies are not used for User profiling activities.

The User can choose to enable or disable cookies by acting on the settings of his or her navigation browser according to the instructions made available by the relevant suppliers at the links indicated below: