/ Privacy Policy / By

Privacy Policy (GDPR)

1. Data Controller

The data controller is Enrico Deiana, contactable at the email address: [email protected].

2. Types of Data Collected

The website may collect and process the following categories of personal data:

  • Data provided voluntarily: name, surname, email address, phone number, billing information, details related to purchases or donations.
  • Payment data: managed through secure third-party platforms (e.g., PayPal, Stripe, Metamask); the website does not store credit card information.
  • Navigation data: IP address, browser type, date and time of access, visited pages, source, and other technical parameters.
  • Cookies and similar technologies: for more information, please refer to the Cookie Policy.

3. Purposes and Legal Basis for Processing

The data is processed for the following purposes:

PurposesLegal Basis
Management and response to requests sent via the contact formConsent of the data subject (Art. 6, par. 1, letter a GDPR)
Management of orders, payments, courses and shipmentsPerformance of a contract (Art. 6, par. 1, letter b GDPR)
Fulfillment of legal, fiscal and accounting obligationsLegal obligation (Art. 6, par. 1, letter c GDPR)
Sending promotional communications (Newsletter)Consent of the data subject
Anonymous statistical analysis and website improvementLegitimate interest of the data controller (Art. 6, par. 1, letter f GDPR)
Prevention of fraud and abuseLegitimate interest of the data controller

4. Methods of Processing

Personal data is processed using IT and telematic tools in compliance with the security measures provided by the GDPR.
No automated profiling is carried out except as specified in the Cookie Policy.

5. Data Retention

  • Data related to orders, invoices, and donations: 10 years (tax obligations).
  • Data collected for contacts or newsletters: until revocation of consent.
  • Navigation data: maximum 12 months, unless subject to judicial obligations.

6. Communication and Transfer of Data

The data may be communicated to third parties that carry out activities necessary for the management of the website and services, for example:

  • Hosting (Bluehost, etc.) and IT service providers (Titan, WordPress, etc.) ;
  • Payment services (e.g., PayPal, Stripe, Metamask, etc.);
  • Accounting or tax consultants;
  • Public authorities, if required by law.

The data is not transferred outside the European Union, except for the use of services (e.g., Google, Meta, etc.) that comply with standard contractual clauses in accordance with the GDPR.

7. Rights of the Data Subject

The user may exercise the rights provided for in Articles 15-22 of the GDPR at any time:

  • Access to their personal data;
  • Rectification, deletion (“right to be forgotten”);
  • Restriction or objection to processing;
  • Data portability;
  • Revocation of consent.

Requests should be sent to: [email protected]. The user also has the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it).

8. Updates to this Policy

This notice may be updated. Material changes will be highlighted.

9. Contacts

Data Controller: Enrico Deiana
Email: [email protected]
Website: www.enricodeiana.net

error:
Scroll to Top
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.