Privacy Policy
This Privacy Policy describes how this website collects, uses, and protects the personal information you provide to us via our contact form.
Data Controller
The Data Controller for the personal data collected through this website is: Stefania Rota, email address: direzione.stefaniarota@yahoo.com
Data Collected via the Contact Form
When you use our contact form, we ask you to provide the following information:
Full Name: so that we can identify you correctly.
Email Address: so that we can reply to you.
Subject of the Message: to understand the nature of your request.
Message: the content of your request or communication.
We do not collect sensitive data via the contact form (such as data related to health, sexual orientation, political or religious beliefs, etc.). Please do not include such information in your message.
Purposes of Processing
The personal data you provide to us via the contact form is processed exclusively for the following purposes:
Managing and responding to your requests: We use your data to answer your questions, provide information, and manage any other requests you send us via the form.
Improving our services: Aggregated and anonymous information may be used to better understand the needs of our users and to improve our services and our website.
Legal Basis for Processing
The legal basis for processing your personal data collected via the contact form is your explicit consent. When submitting the form, you will be asked to accept this Privacy Policy. Without your consent, it will not be possible to send the message.
Processing Methods
Your personal data is processed using automated and non-automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are adopted to prevent data loss, illicit or incorrect use, and unauthorized access.
Data Retention
We will store your personal data for the time strictly necessary to manage your request and for a reasonable additional period for administrative and reporting purposes, or as required by law. Once the purpose for which the data was collected and stored has been fulfilled, it will be deleted or anonymized.
Data Sharing
We do not share, sell, or transfer your personal data collected via the contact form to third parties, except in the following cases:
Service providers: We may use third-party service providers (e.g., website hosting services, email management services) who assist us in the operation of the website and the management of communications. These providers are bound by confidentiality agreements and may process the data only according to our instructions.
Legal obligations: We may disclose your data if required by law or in response to a court order or other legitimate governmental request.
Your Rights
In accordance with the General Data Protection Regulation (GDPR), you have the following rights in relation to your personal data:
Right of access: To obtain confirmation as to whether or not personal data concerning you is being processed, and, where that is the case, access to the data.
Right to rectification: To obtain the rectification of inaccurate personal data concerning you or the completion of incomplete data.
Right to erasure ("right to be forgotten"): To obtain the erasure of personal data concerning you without undue delay.
Right to restriction of processing: To obtain the restriction of processing where one of the conditions provided for in Art. 18 of the GDPR is met.
Right to data portability: To receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format.
Right to object: To object at any time to the processing of personal data concerning you.
Right to withdraw consent: To withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
Right to lodge a complaint: To lodge a complaint with a supervisory authority (in Italy, the Garante per la Protezione dei Dati Personali).
To exercise your rights, you can contact us at the email address specified in the "Data Controller" section of this policy.