Privacy Policy — Clients & Suppliers

Mithub Srls — Piazza F. Marenghi 2, 46100 Mantova (MN), Italy

Last updated: 25/05/2026

Mithub Srls, acting as Data Controller pursuant to EU Regulation 2016/679 (GDPR), informs data subjects that the processing of personal data will be guided by the principles of fairness, lawfulness, transparency, and respect for privacy and individual rights.

Data Controller Mithub Srls — Piazza Franco Marenghi 2, 46100 Mantova (MN), Italy — mithubsrls@legalmail.it (PEC)

1 Nature and Type of Data Collected

In the course of our activities we collect common personal data belonging to clients and prospective clients, suppliers, or their representatives. Most data is provided directly by data subjects; some may come from external or public sources.

Data processed includes: name and surname, email address, phone numbers, workplace address, job title, and information on the data subject's economic activity. We may process tax data for legal obligations, and other personal data from contracts, business cards, websites, social media profiles, or direct professional relationships.

2 Purposes and Legal Basis of Processing

Data is processed for the following primary purposes:

  • Managing relationships with clients and suppliers
  • Correct and complete performance of contracts
  • Compliance with mandatory legal obligations
  • Provision or supply of contracted services or products
  • Managing purchases, sales, and work scheduling
  • Retention of sales and purchase documents

Additional possible purposes:

  • Sending direct marketing communications for products or services similar to those already contracted
  • Quality management and satisfaction surveys
  • Exercise of the Controller's legitimate interests
  • Dispute management and/or debt recovery
Legal basis Performance of a contract or pre-contractual measures (Art. 6(1)(b)); compliance with legal obligations (Art. 6(1)(c)); specific consent where required (Art. 6(1)(a)); legitimate interest of the Controller (Art. 6(1)(f)).

3 Methods of Processing

Data is processed using both manual and IT procedures, with appropriate security measures. It is processed only by authorised personnel or Data Processors appointed pursuant to Article 28 of the Regulation.

4 Communication of Data

Data is communicated exclusively to competent parties for the provision of necessary services, with guaranteed protection of data subjects' rights, including:

  • Authorised internal personnel
  • Companies, consultants, and freelance professionals for services functional to our activities
  • Private and/or public bodies where required by law
  • Transport, postal, and logistics companies
  • Banks, insurers, credit or debt recovery companies

5 Disclosure and Extra-EU Transfer

Data will not be disclosed in any way. Personal data will not be transferred outside the European Union.

6 Retention

Data is retained for the duration of the contractual or commercial relationship, subject to any legal obligations for the retention of fiscal or legally significant documents, and in any case for no longer than necessary to achieve the purposes of processing.

7 Your Rights

Under GDPR Articles 15–22, you have the right to:

  • obtain confirmation of the existence of your data and access its content;
  • know the origin of the data, the purposes and methods of processing;
  • request update, rectification, or erasure of your data;
  • request restriction of processing or data portability;
  • object to processing on legitimate grounds.

Requests should be addressed to the Data Controller via certified email (PEC): mithubsrls@legalmail.it.

8 Right to Lodge a Complaint

If you believe that the processing of your personal data infringes the GDPR, you have the right to lodge a complaint with the competent supervisory authority in your EU member state, pursuant to Art. 77 of the Regulation. The Italian supervisory authority is the Garante per la Protezione dei Dati Personali (www.garanteprivacy.it). You may also seek judicial remedy.