Following consultation of this site, data relating to identified or identifiable persons may be processed. This information is provided only for the site www.francescadiana.com and not for other websites that may be consulted by the user through external links. Additional information may be provided within the different access channels.
1. Data Controller
The Data Controller is Francesca Diana, born in Nuoro on 24/12/1981, registered office in via Vienna 4a 08048 Tortolì, Nuoro. She is registered with the Order of Engineers of the province of Cagliari under no. 6383. PIVA 01602710913. Available at the following contacts firstname.lastname@example.org, (+39)3494703980
2. Personal Data collected by the Application
The Owner collects the following types of Personal Data:
2.1 CContent and information voluntarily provided by the User specifically contact data and content that the User voluntarily provides to the Application during its use, such as personal data, contact details, tastes, interests and personal preferences. Failure by the User to provide Personal Data, if they are a necessary requirement for using the service, will make it impossible for the Owner to provide all or part of its services. The User who communicates Personal Data of third parties to the Owner is directly and exclusively responsible for their origin, collection, processing, communication or dissemination.
2.2 Data and contents acquired automatically during the use of the Application:
2.2.1 Technical data: the computer systems and software procedures used to operate this Application may acquire, during their normal operation, some Personal Datawhose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with identified Users, but by its very nature could, through processing and association with Data held by third parties, allow Users to be identified. This category includes IP addresses or domain names used by Users connecting to the Application, URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the User’s operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site: except for this possibility, at present the data on web contacts do not persist for more than seven days.
2.2.2 Usage data: Personal data may also be collected on the use of the Application by the User, such as the pages visited, the actions performed, the functions and services used.
The Personal Data collected may be used for the performance of contractual and pre-contractual obligations, to provide the advice requested by the Users and for legal obligations as well as for the following purposes:
External management of payments by credit card, bank transfer or other instruments: to manage Users’ payments through external platforms that acquire payment data without the Application owner having access. Personal Data are communicated to PayPal (Europe) https://www.paypal.com/ and Stripe https://stripe.com/
Storage, hosting and backend infrastructure management: to manage the technical infrastructure for storing Users’ data. Personal Data are disclosed to Aruba https://www.aruba.it/
Statistics only with anonymous data: to perform statistical analysis based on aggregate data or data that do not allow the identification of the User. The Personal Data are communicated to Google LLC, https://policies.google.com/privacy
4. Processing methods
The processing of Personal Data is carried out using computer and/or telematic tools, with organisational methods and logics strictly related to the purposes indicated. It is possible to ask the Data Controller to clarify the legal basis of each processing at email@example.com
5. Security measures
The Processing is carried out according to methods and with tools suitable to guarantee the security and confidentiality of Personal Data, the Data Controller having adopted adequate technical and organisational measures that guarantee, and allow to demonstrate, that the Processing is carried out in compliance with the reference legislation.
6. Period of Data Retention
Personal Data will be retained for the period of time necessary to fulfil the purposes for which they were collected. In particular, Personal Data will be kept for the entire duration of the consultancy, for the performance of the related and consequent fulfillments, for the compliance with the applicable legal and regulatory obligations, as well as for its own or third parties’ defence purposes. If the processing of Personal Data is based on the User’s consent, the Controller may keep the Personal Data until the consent is revoked. Personal Data may be kept for a longer period if necessary to comply with a legal obligation or by order of an authority. All Personal Data will be deleted or retained in a form that does not permit identification of the User within 30 days after the end of the retention period. At the end of this period, the right of access, cancellation, rectification and the right to portability of Personal Data may no longer be exercised.
7. Automated decision-making processes
All Personal Data collected will not be subject to any automated decision-making process, including profiling, which may produce legal effects for the individual or which may significantly affect the individual.
8. Rights of the persons concerned
The subjects to whom the personal data refer have the right at any time to obtain confirmation of the existence or otherwise of such data and to know its content and origin, verify its accuracy or request its integration or updating, or correction (art. 7 of Legislative Decree no. 196/2003). Pursuant to the same article, they have the right to request the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, and to oppose in any case, for legitimate reasons, their processing. Requests should be addressed to Dr Francesca Diana firstname.lastname@example.org
In order to exercise their rights, Users may send a request to the Controller’s contact details indicated in this document. Requests are made free of charge and processed by the Controller as soon as possible, in any case within 30 days.
9. Place of data processing
The processing of content and information provided voluntarily by the User takes place at the Data Controller’s premises. For further information, please contact the Data Controller at email@example.com or at the postal address of the Data Controller’s registered office.