Privacy Policy

Last updated: 22 May 2026

This Privacy Policy explains how personal data is processed through the website https://simoneronco.com (the “Site”) and in connection with the MDN – Medical Device News newsletter.

1. Data Controller

The data controller is:

Simone Ronco
Email: info@simoneronco.com

You may contact the data controller at the email address above for any question relating to this Privacy Policy or the processing of your personal data.

2. Personal Data Processed Through the Site

The Site may process the following categories of personal data:

  • your email address, when you voluntarily subscribe to the MDN newsletter;
  • technical data processed for website security purposes;
  • privacy-oriented statistical information relating to visits to the Site;
  • information concerning your cookie or service consent preferences, where provided through the consent management tool.

The Site does not require users to create an account, does not process online payments and does not collect payment card or financial information.

3. MDN – Medical Device News Newsletter

Visitors may voluntarily subscribe to MDN – Medical Device News through the subscription form available on the Site.

MDN provides periodic curated updates relating to medical devices and in vitro diagnostic devices, including regulatory news, guidance documents, safety communications and relevant institutional updates.

When you subscribe, the Site collects your:

  • email address.

Your email address is processed for the following purposes:

  • managing your subscription request;
  • sending the MDN newsletter;
  • confirming your subscription through the double opt-in procedure;
  • enabling you to manage your subscription or unsubscribe;
  • preventing automated or abusive subscription attempts.

The legal basis for this processing is your consent, pursuant to Article 6(1)(a) of Regulation (EU) 2016/679 (“GDPR”).

Subscription uses a double opt-in procedure. After submitting your email address, you must confirm your subscription through the confirmation email before receiving the newsletter.

You may withdraw your consent and unsubscribe at any time by using the unsubscribe link included in each newsletter email. Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

4. Newsletter Management and Delivery – MailPoet

The Site uses MailPoet to manage newsletter subscriptions, double opt-in confirmation, newsletter delivery, subscription preferences and unsubscribe requests.

When you subscribe to MDN, your email address is processed through MailPoet solely for purposes connected with providing the newsletter service you requested.

MailPoet is configured using its Base engagement analytics setting. This means that the Site does not use MailPoet to monitor individual newsletter openings or link clicks and does not use MailPoet cookie-based engagement tracking.

The subscription form also uses MailPoet’s built-in CAPTCHA functionality to help prevent automated or abusive form submissions.

5. Website Statistics – WP Statistics

The Site uses WP Statistics to understand general website traffic and to improve the content and technical operation of the Site.

WP Statistics is configured using privacy-oriented settings, including:

  • anonymization of IP addresses;
  • hashing of IP addresses;
  • support for browser Do Not Track preferences.

The statistical processing is carried out on the basis of the legitimate interest in understanding aggregated use of the Site and improving its content and operation, pursuant to Article 6(1)(f) GDPR.

The Site does not use Google Analytics, advertising pixels or behavioural advertising tracking tools.

6. Website Security – Wordfence

The Site uses Wordfence to protect the Site against malicious traffic, unauthorised access, attacks, security incidents and abusive activity.

For these security purposes, Wordfence may process technical information relating to requests made to the Site, including:

  • IP address;
  • browser and device information;
  • requested resources;
  • date and time of requests;
  • security-event information.

This processing is carried out on the basis of the legitimate interest in protecting the security, integrity and availability of the Site, pursuant to Article 6(1)(f) GDPR.

Security-related data may be retained for the period reasonably necessary to investigate security events, prevent abuse and protect the Site.

7. Google Fonts

The Site may load certain fonts through Google Fonts, including font resources connected with website or newsletter-form functionality.

Where Google Fonts are loaded from Google servers, the visitor’s browser connects to Google in order to retrieve the required font files. In this context, Google may receive technical information, including:

  • the visitor’s IP address;
  • browser and operating system information;
  • the requested font resource;
  • referring webpage information.

Where externally loaded Google Fonts require consent, they are activated according to the visitor’s choices expressed through the Site’s consent management tool.

The legal basis for activating externally loaded Google Fonts, where consent is required, is your consent pursuant to Article 6(1)(a) GDPR.

8. Cookies and Consent Management – Real Cookie Banner

The Site uses Real Cookie Banner to provide information about cookies and services used on the Site and, where required, to collect and manage visitor consent preferences.

Real Cookie Banner may store information necessary to:

  • remember the consent choices made by a visitor;
  • allow the visitor to change those choices;
  • document the consent preferences provided through the banner.

Essential technical and security functions necessary to operate and protect the Site may be used without optional consent where permitted by applicable law.

Optional services requiring consent, including externally loaded services where applicable, are activated according to the choices made through the cookie banner.

You may review or modify your cookie and service preferences at any time through the cookie settings available on the Site.

9. Google Search Console

The Site uses Google Search Console to monitor the Site’s indexing status and aggregated performance in Google Search results.

Google Search Console is used by the Site owner for technical and search-performance analysis. It is not used by the Site to create individual visitor profiles or to provide behavioural advertising.

10. Purposes and Legal Bases of Processing

Purpose Data involved Legal basis
Managing MDN subscriptions and sending newsletters Email address Consent – Article 6(1)(a) GDPR
Confirming subscriptions through double opt-in and managing unsubscribe requests Email address and subscription status Consent – Article 6(1)(a) GDPR
Preventing automated or abusive newsletter subscriptions Technical form-submission information Legitimate interest – Article 6(1)(f) GDPR
Producing privacy-oriented website statistics Anonymised/hashed technical visit information Legitimate interest – Article 6(1)(f) GDPR
Protecting the Site against attacks and abuse IP address and security-related technical data Legitimate interest – Article 6(1)(f) GDPR
Managing cookie and service consent preferences Consent-preference information Compliance with applicable privacy requirements
Loading external Google Fonts, where active and subject to consent IP address and technical request information Consent – Article 6(1)(a) GDPR

11. Data Retention

Newsletter data

Your email address is retained for as long as you remain subscribed to the MDN newsletter.

If you unsubscribe, your email address will no longer be used to send newsletters. Limited information may be retained where necessary to:

  • document your unsubscribe request;
  • prevent unwanted future communications;
  • comply with applicable legal obligations;
  • protect the Site and newsletter service from abuse.

Website statistics

Statistical data processed through WP Statistics is retained according to the configuration of the Site and only for as long as reasonably necessary to understand website usage and improve the Site.

Security data

Security-related information processed through Wordfence may be retained for as long as reasonably necessary to prevent abuse, investigate security incidents and protect the Site.

Consent preferences

Information concerning cookie and service preferences may be retained for the period necessary to remember and demonstrate the choices made through the consent management tool.

12. Recipients and Service Providers

Personal data may be processed by service providers used to operate, secure and maintain the Site and to provide the newsletter service, including:

  • MailPoet, for newsletter subscription management and email delivery;
  • WP Statistics, for privacy-oriented website statistics;
  • Wordfence, for website security and protection against malicious activity;
  • Real Cookie Banner, for cookie and service preference management;
  • hosting and technical infrastructure providers necessary to operate the Site;
  • Google, where Google Fonts are loaded externally from Google servers.

Personal data is not sold to third parties.

13. Transfers Outside the European Economic Area

Some service providers may process personal data outside the European Economic Area.

Where personal data is transferred outside the European Economic Area, such transfers will take place in accordance with applicable data-protection requirements and, where required, on the basis of appropriate safeguards provided by applicable law.

14. Your Rights

Under the GDPR, you have the right, where applicable, to:

  • obtain confirmation as to whether your personal data is being processed and request access to that data;
  • request correction of inaccurate or incomplete personal data;
  • request deletion of your personal data;
  • request restriction of processing;
  • object to processing based on legitimate interests;
  • receive your personal data in a structured, commonly used and machine-readable format, where applicable;
  • withdraw your consent at any time, without affecting the lawfulness of processing carried out before withdrawal;
  • lodge a complaint with the competent data protection supervisory authority.

To exercise your rights, please contact:

info@simoneronco.com

In Italy, the competent supervisory authority is the Garante per la protezione dei dati personali.

15. Children

The Site and the MDN newsletter are not directed at children, and the Site does not knowingly collect personal data from children.

If you believe that a child has provided personal data through the Site, please contact info@simoneronco.com so that appropriate action can be taken.

16. External Links

The Site may contain links to external websites or resources. This Privacy Policy applies only to this Site.

When you access an external website through a link on the Site, the privacy policy and practices of that external website will apply.

17. Changes to This Privacy Policy

This Privacy Policy may be updated to reflect changes to the Site, the newsletter service, the technologies used or applicable legal requirements.

Any updated version will be published on this page with a revised Last updated date.

18. Contact

For any question about this Privacy Policy or the processing of personal data through the Site, please contact:

Simone Ronco
Email: info@simoneronco.com

Home