Privacy Policy-en

www.miasardegna.eu

Last update: March 31, 2025

INTRODUCTION

This Privacy Policy aims to describe how the website www.miasardegna.eu (hereinafter "Site") manages the processing of personal data of users who visit it, in compliance with EU Regulation 2016/679 (hereinafter "GDPR") and applicable national legislation.

This notice is provided only for the Site and not for other websites that may be accessed by users via links.

  1. DATA CONTROLLER

The Data Controller of personal data is:

Oxana Denezhkina
Via Caio Cestio 32
00012 Guidonia Montecelio Roma (RM)
Email

  1. TYPES OF DATA PROCESSED
    2.1 Browsing data

The computer systems and software procedures used to operate the Site acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified subjects, but by its nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes: IP addresses, domain names of computers used by users connecting to the Site, request times, methods used to submit requests to the server, size of files obtained in response, numerical codes indicating the response status of the server (successful, error, etc.), and other parameters related to the user’s operating system and IT environment.

These data are used solely to obtain anonymous statistical information on the use of the Site and to check its proper functioning. The data could be used to ascertain responsibility in case of hypothetical cybercrimes against the Site.

2.2 Data voluntarily provided by the user

The voluntary, explicit, and optional sending of messages to the contact addresses indicated on the Site, as well as the completion of data collection forms on the Site, entails the acquisition of the sender’s contact details necessary to respond to requests, as well as all personal data included in the communications.

2.3 Cookies and similar technologies

The Site uses cookies, web beacons, unique identifiers, and other similar technologies to collect information about the Site and the emails the user receives. For more information on cookies and how the Controller uses them, please refer to the Cookie Policy available on this Site.

  1. PURPOSES AND LEGAL BASIS OF PROCESSING

Personal data of users are processed for the following purposes:

3.1 Site management and related services

  • Allow browsing on the Site

  • Manage requests received through the Site

  • Improve the browsing experience

  • Ensure the Site functions correctly

  • Prevent or detect fraudulent activities or harmful abuses to the Site

Legal basis: the Controller's legitimate interest (Art. 6, para. 1, letter f of the GDPR) in properly managing the Site and related services.

3.2 Sending newsletters

  • Sending periodic informational communications related to the Controller’s activities and services, if the user has given specific consent.

Legal basis: user's consent (Art. 6, para. 1, letter a of the GDPR).

3.3 Compliance with legal obligations

  • Fulfillment of obligations established by laws, regulations, EU legislation, or orders from Authorities.

Legal basis: compliance with a legal obligation to which the Controller is subject (Art. 6, para. 1, letter c of the GDPR).

3.4 Statistics and analysis

  • Conduct statistical analysis, market research, and assessments related to the use of the Site.

Legal basis: the Controller's legitimate interest (Art. 6, para. 1, letter f of the GDPR) in improving its services.

  1. NATURE OF DATA PROVISION

Providing data for browsing the Site is necessary to allow users to use the requested services. Failure to provide data may result in the inability to obtain what is requested.

Providing data for newsletter subscription is optional. Failure to provide data will result in the inability to receive the newsletter.

  1. PROCESSING METHODS

Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access.

  1. DATA RETENTION PERIOD

Personal data are processed for the time strictly necessary to achieve the purposes for which they were collected and, in any case:

  • Browsing data are retained for a short period unless there is a need for verification in case of crimes by competent Authorities.

  • Data voluntarily provided by the user to request information or services are retained for the time necessary to respond to requests and, subsequently, for the period required by applicable administrative and tax regulations.

  • Data provided for newsletter subscription are retained until the user requests deletion or until the Controller continues sending the newsletter.

  1. DATA COMMUNICATION AND DISCLOSURE

Collected personal data may be disclosed, within the limits strictly relevant to the indicated purposes, to subjects or categories of subjects acting as Data Processors (Art. 28 GDPR) or as persons authorized to process personal data under the direct authority of the Controller (Art. 29 GDPR).

In particular, data may be communicated to:

  • Entities providing IT system management and communication network services (including email)

  • Hosting service providers

  • Newsletter management service providers (AcyMailing)

  • Navigation analysis service providers (Google Analytics, Yandex Metrica)

  • Interactive map service providers (Phoca maps)

  • Judicial or administrative authorities, for compliance with legal obligations

  1. DATA TRANSFER ABROAD

Some of the services mentioned above may be managed by companies with offices or servers in non-EU countries. Data transfer to these countries complies with the GDPR's guarantees, such as European Commission adequacy decisions, standard contractual clauses, or other safeguards deemed appropriate.

  1. DATA SUBJECTS' RIGHTS

Users, as data subjects, may exercise their rights under Articles 15 et seq. of the GDPR, including:

  • Right of access (Art. 15)

  • Right to rectification (Art. 16)

  • Right to erasure ("right to be forgotten") (Art. 17)

  • Right to restriction of processing (Art. 18)

  • Right to data portability (Art. 20)

  • Right to object (Art. 21)

  • Right to lodge a complaint with the Data Protection Authority (Art. 77)

To exercise these rights, users can contact the Controller at: This email address is being protected from spambots. You need JavaScript enabled to view it., postal address Via Caio Cestio 32, 00012 Guidonia Montecelio Roma (RM).

  1. CHANGES TO THE PRIVACY POLICY

The Controller reserves the right to modify this Privacy Policy at any time, publishing the changes on this page. Users are advised to consult this page frequently, referring to the last modification date indicated at the bottom. If the user does not accept the changes, they may request the deletion of their personal data. Unless otherwise specified, the previous Privacy Policy will continue to apply to data collected until that moment.

  1. MINORS

The Site is accessible to minors, but the Controller does not intentionally collect personal data from individuals under 16 years old. If a minor has provided personal data without parental or guardian consent, they may contact the Controller at This email address is being protected from spambots. You need JavaScript enabled to view it. to request deletion of such information.

  1. CONTACTS

For any information regarding this Privacy Policy, the processing performed, or to exercise rights, users may contact the Controller at: This email address is being protected from spambots. You need JavaScript enabled to view it..

Data Controller:
Oxana Denezhkina
Via Caio Cestio 32
00012 Guidonia Montecelio Roma (RM)