Imprint &
Privacy Policy

Data controller
MDR-RA
Via Manzoni 56, 20089 Rozzano (Milano), Italy

Purposes of processing
We collect and process personal data only when you use our contact form or subscribe to project updates. All processing is lawfully based on your consent (Art. 6 (1)(a) GDPR) or our legitimate interest (Art. 6 (1)(f) GDPR) in providing and improving this website’s functionality.

Scope of data
• Name, e-mail address and message content when you submit the contact form
• Technical data (IP address, browser type) via cookies and server logs

Your rights
Under the EU General Data Protection Regulation (GDPR), you have the right to:
• Access your personal data (Art. 15 GDPR)
• Rectify inaccurate or incomplete data (Art. 16 GDPR)
• Erase your data (“right to be forgotten,” Art. 17 GDPR)
• Restrict processing (Art. 18 GDPR)
• Data portability (Art. 20 GDPR)
• Object to processing (Art. 21 GDPR)

Data retention
Personal data submitted via the contact form will be retained only as long as necessary to handle your request, but no longer than 24 months.

Cookies
We don't use cookies that extend the requirements of our website-host.

External services
This site is hosted on Webflow Inc., whose privacy policy can be found at https://webflow.com/legal/privacy.

Privacy Policy
Data Controller:
MDR-RA
Via Manzoni 56
20089 Rozzano (Milano), Italy

Data We Collect
Contact Form DataWhen you submit our contact form, we process: Name Email address Message content‍
Analytics
Measure and improve Site performance (e.g. Google Analytics)See § 4 below3. Legal Basis for Processing

Consent (Art 6 (1)(a) GDPR):
for setting non-essential cookies and subscribing to newsletters.

Legitimate interests (Art 6 (1)(f) GDPR): to operate and improve our Site, detect fraud and ensure security.

Technical logs:
Retained for no longer than 12 months.After the retention period, personal data will be securely deleted or anonymized.7. Your Data Protection RightsUnder the GDPR, you have the right to:
Access your personal data (Art 15 GDPR)
Rectify inaccurate or incomplete data (Art 16 GDPR)
Erase your data (“right to be forgotten,” Art 17 GDPR)
Restrict processing (Art 18 GDPR)
Portability of your data (Art 20 GDPR)
Object to processing based on legitimate interests (Art 21 GDPR)
Withdraw consent at any time, without affecting the lawfulness of processing before withdrawal
To exercise any of these rights, please contact us.

Security Measures
We implement technical and organizational measures to protect personal data, including:
Encryption of data in transit (HTTPS/TLS)
Access controls limiting data access to authorized personnel
Regular security reviews and updates of our hosting and software stack

The Logo of MDR-RA
HomeAboutPatient InitiativesMedia & PuplicationsNews & EventsImprint & Privacy