Privacy Policy

1. Data Controller

The Data Controller is:

PerSeoDesign
Headquarters: Florence, Italy
Website: perseodesign.com
Email: Contact form

2. Introduction

This Privacy Policy describes how PerSeoDesign collects, uses, and protects users' personal data on the perseodesign.com website, in compliance with Regulation (EU) 2016/679 (GDPR) and applicable Italian data protection laws.

3. Data Collected and Purposes of Processing

3.1 Navigation Data

During the normal operation of the site, IT systems and software procedures acquire personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified individuals but, by its nature, could allow users to be identified through processing and association with data held by third parties. This data category includes IP addresses, URI addresses of requested resources, time of request, method used to submit the request to the server, size of the file obtained in response, numerical code indicating the status of the response, and other parameters related to the user's operating system and IT environment.

Purpose: Used exclusively to obtain anonymous statistical information on site usage and check its correct functioning.

Legal basis: Legitimate interest of the Data Controller (Art. 6, par. 1, let. f) GDPR)

Retention period: Navigation data is kept for the time strictly necessary for the above purposes and in any case not beyond 7 days.

3.2 Data provided voluntarily by the user

The optional, explicit, and voluntary sending of messages to the contact addresses on this site entails the acquisition of the sender's contact details, necessary to respond, as well as any personal data included in the communication.

Purpose: Responding to user requests, providing information on offered services, managing potential quotes.

Legal basis: Execution of pre-contractual measures adopted at the user's request (Art. 6, par. 1, let. b) GDPR) or user consent (Art. 6, par. 1, let. a) GDPR)

Retention period: Voluntarily provided data is kept for the time necessary to fulfill the request and, subsequently, for a period not exceeding 2 years, unless otherwise required by law.

4. Cookies and Similar Technologies

The site uses only technical cookies necessary for its operation. For more information, please refer to our Cookie Policy.

We do not use:

• Profiling cookies
• Third-party cookies for advertising purposes
• User behavior tracking tools (Google Analytics, Meta Pixel, etc.)
• Tracking tools for remarketing or personalized advertising

5. Processing Methods

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are observed to prevent data loss, illicit or incorrect use, and unauthorized access.

Personal data is processed at the Data Controller's operational headquarters and in any other place where the parties involved in the processing are located. For further information, contact the Data Controller.

6. Communication and Dissemination of Data

Your personal data is not disseminated and may only be communicated to:

• Entities providing IT system management and website maintenance services (hosting providers, technical service providers), as Data Processors
• Competent authorities for compliance with legal obligations

The Data Controller undertakes to sign written agreements with Data Processors to ensure data is processed in compliance with current legislation.

7. Data Transfer Abroad

Currently, users' personal data is processed within the European Economic Area (EEA). If we were to transfer data to third countries, we will ensure adequate guarantees are adopted in compliance with the GDPR (e.g., standard contractual clauses approved by the European Commission).

8. Data Subject Rights

Under Articles 15-22 of the GDPR, the data subject has the right to:

• Access: obtain confirmation of the existence or otherwise of personal data concerning them
• Rectification: obtain the rectification of inaccurate data or integration of incomplete data
• Erasure: obtain the erasure of their personal data (right to be forgotten)
• Restriction: obtain the restriction of processing when one of the hypotheses provided by Art. 18 GDPR applies
• Portability: receive personal data in a structured, commonly used, and machine-readable format, and transmit it to another data controller
• Objection: object to the processing of their personal data
• Withdrawal of consent: withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal
• Complaint: lodge a complaint with the Data Protection Authority (www.garanteprivacy.it)

To exercise your rights, you can contact us via the contact form. Contact form.

9. Changes to the Privacy Policy

This Privacy Policy may be subject to changes over time. We invite you to regularly consult this page to stay updated on our privacy practices. The date of the last update is indicated at the beginning of the page.

10. Data Security

We adopt appropriate technical and organizational security measures to protect your personal data from unauthorized access, loss, destruction, or accidental disclosure. These measures include:

• Use of encrypted HTTPS connections
• Limiting access to personal data to authorized personnel only
• Periodic data backups
• Server protection through firewalls and monitoring systems

11. Minors

The site is not intended for children under 16. We do not intentionally collect personal data from children under 16. If we become aware that we have collected personal data from a minor without the consent of parents or legal guardians, we will immediately delete such data.

12. Contacts

For any questions regarding this Privacy Policy or to exercise your rights, you can contact us through the contact form. Contact form.