Skip to main content

Privacy Policy

MrCall collects some Personal Data of its Users.

This document can be printed using the print command available in the settings of any browser.

Data Controller

Hahn Banach Srl Via Sottocorno 17 20129 Milan, Italy VAT Number IT11619040964

Email address of the Data Controller:

Types of Data Collected

Among the Personal Data collected by MrCall, either independently or through third parties, there are: Tracking Tools; Usage Data; email.

Complete details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through specific informational texts displayed before the Data is collected. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of MrCall. Unless otherwise specified, all Data requested by MrCall is mandatory. If the User refuses to provide them, it may be impossible for MrCall to provide the Service. In cases where MrCall indicates some Data as optional, Users are free to refrain from communicating such Data, without this having any consequence on the availability of the Service or on its operation. Users who have doubts about which Data are mandatory are encouraged to contact the Data Controller. The possible use of Cookies – or other tracking tools – by MrCall or the third-party service holders used by MrCall is aimed at providing the Service requested by the User, in addition to the other purposes described in this document and in the Cookie Policy.

The User assumes responsibility for Personal Data belonging to third parties obtained, published, or shared through MrCall.

Methods and Place of Processing of the Collected Data Processing Methods

The Data Controller adopts the appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data. Processing is carried out using computers and/or IT-enabled tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization of MrCall (administrative, commercial, marketing, legal, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data, if necessary, as Data Processors appointed by the Data Controller. The updated list of Data Processors can always be requested from the Data Controller.


The Data is processed at the Data Controller’s operating offices and in any other places where the parties involved in the processing are located. For more information, contact the Data Controller. The Personal Data of the User may be transferred to a country other than the one in which the User is located. To obtain further information about the processing location, the User can refer to the section concerning the details about the processing of Personal Data.

Retention Period

Unless otherwise specified in this document, Personal Data is processed and stored for the time required by the purposes for which it was collected and may be retained for a longer period in order to comply with legal obligations or upon the User’s consent.

Purposes of the Processing of Collected Data

User data is collected to allow the Data Controller to provide the Service, comply with legal obligations, respond to requests or actions of enforcement, protect their rights and interests (or those of Users or third parties), detect any malicious or fraudulent activities, as well as for the following purposes: Creation and management of MrCall, Statistics, Tag Management, Remarketing, and behavioral targeting, and Advertising.

For detailed information on the purposes of processing and the Personal Data processed for each purpose, the User can refer to the section “Details on the processing of Personal Data.”

Details on the Processing of Personal Data

Personal Data is collected for the following purposes and using the following services:

Creation and management of MrCall

Tag Management


Remarketing and behavioral targeting


Information on how to opt out of interest-based advertising

In addition to any opt-out feature provided by any of the services listed in this document, Users can learn more about opting out of interest-based advertising within the dedicated section of the Cookie Policy.

Cookie Policy

MrCall uses Tracking Tools. For more information, Users can consult the Cookie Policy.

Additional information for Users Legal basis of processing

The Data Controller processes Personal Data relating to the User in case one of the following conditions applies:

The User has given their consent for one or more specific purposes; Note: In some jurisdictions, the Data Controller may be allowed to process Personal Data without the User’s consent or another of the legal bases specified below, as long as the User does not object (“opt-out”) to such processing. This is not, however, applicable if the processing of Personal Data is regulated by European data protection law; the processing is necessary for the performance of a contract with the User and/or for the execution of pre-contractual measures; the processing is necessary to fulfill a legal obligation to which the Data Controller is subject; the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller; the processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.

It is always possible to ask the Data Controller to clarify the concrete legal basis of each processing and in particular to specify whether the processing is based on the law, provided for by a contract, or necessary to conclude a contract.

Further information about the retention period

Unless otherwise specified in this document, Personal Data is processed and stored for the time required by the purposes for which it was collected and may be retained for a longer period in order to comply with legal obligations or upon the User’s consent.


Personal Data collected for purposes related to the performance of a contract between the Data Controller and the User will be retained until such contract has been fully performed. Personal Data collected for the purposes of the Data Controller’s legitimate interests will be retained as long as needed to fulfill those purposes. Users may obtain further information about the legitimate interests pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller. When processing is based on the User’s consent, the Data Controller may retain Personal Data for a longer period until such consent is revoked. Furthermore, the Data Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or an order from an authority.

At the end of the retention period, Personal Data will be deleted. Therefore, at the end of this term, the right to access, delete, correct, and the right to data portability cannot be exercised anymore.

User Rights

Users can exercise certain rights with respect to the Data processed by the Data Controller.

In particular, within the limits provided by law, the User has the right to:

withdraw consent at any time. The User can withdraw their consent to the processing of their Personal Data previously expressed. object to the processing of their Data. The User can object to the processing of their Data when it occurs on a legal basis other than consent. access their Data. The User has the right to obtain information on the Data processed by the Data Controller, on certain aspects of the processing and to receive a copy of the Data processed. verify and request the rectification. The User can verify the correctness of their Data and request its updating or correction. obtain the limitation of the processing. The User can request the limitation of the processing of their Data. In this case, the Data Controller will not process the Data for any other purpose than their storage. obtain the cancellation or removal of their Personal Data. The User can request the deletion of their Personal Data by the Data Controller. receive their Data or have it transferred to another controller. The User has the right to receive their Data in a structured, commonly used, and machine-readable format and, if technically feasible, to have it transmitted without any hindrance to another controller. file a complaint. The User can lodge a complaint with the competent data protection supervisory authority or take legal action.

Users have the right to obtain information regarding the legal basis for the transfer of Data to countries outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, as well as regarding the security measures adopted by the Data Controller to protect their Data.

Details on the right to object

Where Personal Data is processed for the public interest, in the exercise of an official authority vested in the Data Controller, or for the purposes of the legitimate interests pursued by the Data Controller, Users may object to such processing by providing a ground related to their particular situation.

Users are reminded that if their Data is processed for direct marketing purposes, they can object to that processing at any time without providing any justification. To learn, whether the Data Controller is processing Personal Data for direct marketing purposes, Users can refer to the relevant sections of this document.

How to exercise rights

To exercise their rights, Users can direct a request to the contact details of the Data Controller indicated in this document. Requests are free of charge and will be addressed by the Data Controller as early as possible, within one month, unless an extension is required. In any case, the Data Controller will inform the User of the actions taken.

Additional information about Data processing Legal defense

The User’s Personal Data may be used for the legal defense of the Data Controller in court or in the stages leading to possible legal action against improper use of MrCall or related services by the User. The User declares to be aware that the Data Controller may be required to reveal Personal Data upon request of public authorities.

Specific information

Upon request of the User, in addition to the information contained in this privacy policy, MrCall may provide the User with additional and contextual information regarding specific services, or the collection and processing of Personal Data.

System logs and maintenance

For operation and maintenance purposes, MrCall and any third-party services may collect files that record interaction with MrCall (System logs) use other Personal Data (such as the IP Address) for this purpose.

Information not contained in this policy

More details concerning the collection or processing of Personal Data may be requested from the Data Controller at any time. Please see the contact information at the beginning of this document.

Changes to this privacy policy

The Data Controller reserves the right to make changes to this privacy policy at any time by giving notice to Users on this page and possibly within MrCall and/or – as far as technically and legally feasible – sending a notice to Users via any contact information available to the Data Controller. It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom.

Should the changes affect processing activities performed on the basis of the User’s consent, the Data Controller shall collect new consent from the User, where required.

Definitions and legal references Personal Data (or Data)

Any information that directly or indirectly identifies a natural person, such as a Personal Identification Number, name, email address, or other identifying information.

Usage Data

Information collected automatically through MrCall (or third-party applications integrated into MrCall), including IP addresses or domain names of computers used by Users who connect with MrCall, addresses in URI notation (Uniform Resource Identifier), the time of the request, the method used to submit the request to the server, the size of the file received in response, the numeric code indicating the status of the server’s response (successful, error, etc.), the country of origin, the features of the browser and the operating system used by the User, the various time details per visit (e.g., the time spent on each page), and details about the path followed within MrCall with special reference to the sequence of pages visited, other parameters about the operating system and the User’s IT environment.

Data voluntarily provided by the User

Users of the service can provide their own personal data to access certain services. This involves the acquisition by the Company of the following categories of personal data relating to Users: a) username and email address b) Information about people who contact the User and leave a message for the service, such as phone number and first name released to the assistant himself. This information is necessary to provide the service and communicate to the User who called and left a message. c) The User can use the contact upload function and provide MrCall with the phone numbers in their address book. Contact information is used exclusively to communicate the name, as saved in the address book, of the person who called.

User Data Deletion

All User data is deleted two weeks after the User has requested the deletion of the account.

User Contact Data Deletion

The user can delete all their contacts registered on their MrCall account at any time.


Service Personalization


The individual who uses MrCall, who, unless otherwise specified, corresponds to the Interested Party.

Interested Party

The natural person to whom the Personal Data refers.

Data Processor (or Processor)

The natural person, legal person, public administration, or any other entity that processes Personal Data on behalf of the Data Controller, as described in this privacy policy.

Data Controller (or Owner)

The natural person or legal entity, public authority, service or other body that, individually or together with others, determines the purposes and means of the processing of Personal Data and the tools adopted, including the security measures concerning the operation and use of MrCall. The Data Controller, unless otherwise specified, is the owner of MrCall.

MrCall (or this Application)

The hardware or software tool by which Personal Data of Users is collected and processed.


The Service provided by MrCall as described in the relevant terms (if available) on this site/application.

European Union (or EU)

Unless otherwise specified, any reference to the European Union contained in this document shall be extended to all current member states of the European Union and the European Economic Area.


Cookies are Tracking Tools consisting of small pieces of data stored within the User’s browser.

Tracking Tool

Any technology – e.g., Cookies, unique identifiers, web beacons, embedded scripts, e-tags, and fingerprinting – that enables the tracking of Users, for example by collecting or saving information on the User’s device.

Legal references

Unless otherwise specified, this privacy policy only concerns MrCall.