Privacy Policy

This policy describes how the website https://davidecattaneo.it manages personal data of users who visit it. This notice is provided in accordance with applicable personal data protection regulations.

1. Data Controller

The Data Controller is:

Davide Cattaneo
Email: info@davidecattaneo.it
Phone: +39 393 567 0750

2. Types of Processing and Data Collected

Among the Personal Data collected by this site, independently or through third parties, are:

Data voluntarily provided by the user:

• First and last name, email address, phone number (optional): collected via contact forms to respond to user requests.

Browsing Data:
The computer systems and software procedures used to operate this website acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified individuals, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category includes IP addresses or domain names of the computers used by users connecting to the site, URI (Uniform Resource Identifier) addresses of requested resources, and other parameters related to the user's operating system and computing environment. Processing is carried out automatically by the website.

Cookies:
This site uses only technical cookies. For more details, see the "Cookie Policy" section.

3. Purposes and Legal Basis for Processing

User data is collected for the following purposes and on the following legal bases:

Purpose of Processing	Personal Data Processed	Legal Basis
Responding to contact requests	First name, last name, email, phone (optional)	Performance of pre-contractual measures taken at the request of the data subject (Art. 6(1)(b) GDPR).
Ensuring the proper functioning of the site	Browsing data, technical cookies	Necessity to make the site usable following user access (legitimate interest of the Controller – Art. 6(1)(f) GDPR).

4. Processing Methods and Location

Processing is carried out using IT and/or electronic tools, with organizational methods and logic strictly related to the stated purposes. Data is processed at the Controller's operational headquarters and in any other location where the parties involved in the processing are located.

Specific security measures are in place to prevent data loss, unlawful or improper use, and unauthorized access — primarily through electronic storage on devices protected by access credentials, held by duly trained personnel or in locations with adequate security measures.

5. Retention Period

Data is processed and stored for as long as required by the purposes for which it was collected. Specifically:

• Personal Data collected for purposes related to the performance of a contract or pre-contractual measures (contact requests) will be retained until the performance of that contract is complete, and destroyed if no contract is concluded with the Controller following the request.
• Browsing data and technical cookies are not retained beyond the duration of the individual browsing session.

6. Data Disclosure

Collected personal data will not be disseminated or communicated to third parties without the explicit consent of the data subject.

Without requiring the data subject's consent, the Data Controller may communicate personal data in its possession: a) to those parties to whom such communication must be made in compliance with a legal, regulatory, or EU obligation; b) to intermediaries to whom data may be communicated pursuant to anti-money laundering regulations (cf. Art. 39, paragraphs 3 and 5, of Legislative Decree No. 231/2017), which allows for the communication of personal data relating to suspicious transaction reports, additional information requested by the FIU, or the existence or likelihood of investigations into money laundering or terrorist financing.

7. Rights of the Data Subject

Pursuant to Articles 15 et seq. of the GDPR, the user has the right to:

• Withdraw consent at any time.
• Access their own Data.
• Verify and request rectification of their Data.
• Obtain restriction of processing.
• Obtain erasure or removal of their Personal Data (right to be forgotten).
• Receive their Data or have it transferred to another controller (right to data portability).
• Object to the processing of their Data.
• Lodge a complaint with the competent personal data protection supervisory authority (in Italy, the Garante per la Protezione dei Dati Personali).

To exercise their rights, users may address a request to the Controller's contact details indicated in this document. Requests are handled free of charge and fulfilled by the Controller as soon as possible, and in any case within one month.

8. Cookie Policy

This site uses exclusively technical cookies, which are essential for the proper functioning of the site and to enable browsing. No profiling cookies are used, nor are any other tracking methods employed. Since no profiling cookies are used, prior user consent is not required.

What are Cookies

Cookies are small text files that visited websites send and store on the user's computer, smartphone, or tablet, to be re-transmitted to those same sites on the next visit. Through cookies, a site remembers the user's actions and preferences (such as login details, chosen language, font size, and other display settings) so they do not need to be re-entered each time the user returns to the site or navigates between its pages.

Cookie Classification

Cookies can be classified into several categories based on three main criteria: their duration, their origin, and their purpose.

A. By DURATION:
Session Cookies: Temporarily stored on the user's device and automatically deleted when the browser is closed.
Persistent Cookies: Remain stored on the user's device until a pre-set expiry date (which may range from minutes to several years) or until manually deleted by the user.

B. By ORIGIN:
First-Party Cookies: Installed and managed directly by the operator of the website the user is visiting.
Third-Party Cookies: Installed and managed by domains or websites other than the one the user is visiting (for example, through the integration of maps, videos, social buttons, or external advertising services).

C. By PURPOSE (Type):

1. Technical Cookies (Strictly Necessary): These are cookies essential for the proper functioning of the website. Without them, certain operations could not be performed or would be more complex and less secure. Consent: Prior user consent is not required for the installation of these cookies.
2. Analytical (Statistical) Cookies: Used to collect information, in aggregate or disaggregated form, on the number of users and how they visit the site. Consent: If data is anonymized and not cross-referenced with other data, these may be treated as technical cookies. If they allow identification, user consent is required.
3. Functionality Cookies: Allow the user to browse according to a set of selected criteria in order to improve the service provided.
4. Profiling Cookies (Marketing/Advertising): Aimed at building user profiles and used to deliver advertising messages aligned with expressed preferences. Consent: Prior and freely given user consent is always required for the use of profiling cookies.

Cookie List and Function

Name	Nature	Function

How to Manage or Disable Cookies

Upon first accessing the site, you will be shown a banner with a brief notice and a preferences management panel, through which you can accept, reject, or selectively choose the categories of cookies to install (except for technical cookies, which are always active).

The website https://davidecattaneo.it works best when cookies are enabled. You can decide how cookies are used on your device by accessing your browser settings directly:

Firefox; Internet Explorer; Edge; Google Chrome; Safari

Please note that disabling cookies may disable some site features.

Retention

Technical cookies are retained only for the duration of the browsing session.

Disclosure

Without requiring the data subject's consent, the Data Controller may communicate personal data in its possession to those parties to whom such communication must be made in compliance with a legal, regulatory, or EU obligation.

9. Changes to this Privacy Policy

The Data Controller reserves the right to make changes to this privacy policy at any time, by notifying users on this page. Please check this page frequently, referring to the date of last modification shown at the bottom.