
Privacy Policy and GDPR Notice.
Effective date: July 1, 2026. This policy explains how Mero Productions collects, uses, stores, and protects personal data in accordance with Regulation (EU) 2016/679 (GDPR).
Data Controller
Mero Productions di Salvatore Giovanni Allotta, via Karl Marx, 8, Belmonte Mezzagno, 90031, Palermo, Italy, P.IVA 07013270827, is the data controller for personal data processed through this website and production inquiry channels. Contact: info@meroproductions.it, +39 3295636967.
What Data We Process
We may process contact details (name, email, phone), company details, project and production data, billing information, communication history, and technical usage data (for example server logs). We do not intentionally collect special categories of personal data unless you choose to provide them.
Why We Process Data (Purposes)
We process data to respond to inquiries, prepare and execute production services, manage logistics and permits, provide quotations, handle invoicing/accounting, comply with legal obligations, and protect platform security.
Lawful Bases Under GDPR
Our lawful bases are: contract performance (Art. 6(1)(b)), pre-contractual steps requested by you (Art. 6(1)(b)), legal obligations (Art. 6(1)(c)), legitimate interests such as service operations and security (Art. 6(1)(f)), and consent where required (Art. 6(1)(a)).
Data Retention
We retain personal data only as long as necessary for the purpose collected, then archive or delete it according to legal and operational requirements. Inquiry and project records may be retained for contract, accounting, and legal defense needs.
Recipients and Processors
Data may be shared with trusted processors and partners involved in service delivery (for example hosting providers, accounting services, logistics partners, and local rental/production partners), under confidentiality and data processing obligations.
International Transfers
If data is transferred outside the EEA/UK/Switzerland, we use GDPR-compliant safeguards such as adequacy decisions, Standard Contractual Clauses, or equivalent legal mechanisms.
Your GDPR Rights
You may request access, rectification, erasure, restriction, portability, and objection, and you may withdraw consent at any time where consent is the legal basis. You also have the right to lodge a complaint with your supervisory authority.
Cookies and Similar Technologies
We use strictly necessary technologies required for core website operation. Any non-essential analytics or marketing cookies should only be activated with prior consent where legally required.
Security
We apply reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.
Automated Decision-Making
We do not use solely automated decision-making that produces legal or similarly significant effects.
Policy Updates
We may update this policy from time to time. Material changes will be reflected on this page with an updated effective date.