Welcome to the privacy policy of graffico.it. This policy will help you understand what data we collect, why we collect it and what your rights are in this regard.
Contitolari del trattamento ex art. 26 GDPR: Andrea Fragnelli (P.IVA 04097790366, Via Arturo Toscanini 9, 41030 Bomporto MO) e Lorenzo Angelino (P.IVA 10544921215, Via Stanislao 80, 80126 Napoli NA), congiuntamente operanti come «Graffico». Punto di contatto unico per l'esercizio dei diritti dell'interessato: info@graffico.it.
Via Arturo Toscanini 9, 41030 Bomporto (MO)
Via Stanislao 80, 80126 Napoli (NA)
VAT: 04097790366, 10544921215
Email:info@graffico.it
We automatically collect your data, for example when you visit Graffico (di Andrea Fragnelli e Lorenzo Angelino). Includes: IP address, Usage data, Tracking Tools, number of Users, session statistics, device identifiers (user-agent, language, timezone).
We collect the data you provide us, for example when you fill out a contact form. Includes: name, email.
Below are details on how data is collected and the third-party services we use.
Monitoring and Stats
We automatically collect your data, for example when you visit graffico.it . Includes: IP address, Usage data, Tracking Tools, number of Users, session statistics, device identifiers (user-agent, language, timezone).
Support and Feedback
We collect the data you provide us, for example when you fill out a contact form. Includes: name, email.
Each processing purpose relies on a specific lawful basis pursuant to art. 6 GDPR. Below is the mapping declared by the Controller.
| Details on the processing of Personal Data | Lawful bases of processing |
|---|---|
| Google Analytics 4 | Explicit consent of the data subject (art. 6.1.a GDPR) |
| Google Ads | Explicit consent of the data subject (art. 6.1.a GDPR) |
| Meta Pixel | Explicit consent of the data subject (art. 6.1.a GDPR) |
| Modulo di Contatto | Performance of a contract or pre-contractual measures (art. 6.1.b GDPR) |
Personal Data may be shared with the data processors listed below. Each processor has been selected for reliability and adequacy of technical and organizational safeguards.
Some external processors are based outside the European Economic Area. Transfers occur under adequacy decisions (e.g. EU-US Data Privacy Framework) or Standard Contractual Clauses (SCC 2021/914) adopted by the European Commission, supplemented by additional measures where needed. The User can request a copy of the safeguards by contacting the Controller.
Personal Data is kept only for the time strictly necessary to the purposes for which it was collected.
Contact forms
Fino a richiesta dell'interessato
Analytics data
14m
Marketing data
2y
The Controller does not carry out automated decision-making or profiling that produces legal effects on the data subject or significantly affects them, pursuant to art. 22 GDPR. Any analytics tools (e.g. Google Analytics, Meta Pixel) are used for aggregated measurement and not for individual automated decisions.
The Controller takes appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of Personal Data. Processing is carried out using computers and/or IT enabled tools, with organizational methods and logic strictly related to the purposes indicated.
The Data is processed at the Controller's operating offices and in any other places where the parties involved in the processing are located. Unless otherwise stated, Personal Data is processed and stored for the time required by the purpose for which it was collected.
How to exercise rights
Requests should be addressed to the Controller's contact details indicated in this document. The request is free of charge and we will respond as soon as possible.
Pursuant to art. 13.2.d and 77 GDPR, the data subject has the right to lodge a complaint with the competent supervisory authority where they consider that the processing of their personal data infringes applicable law.
Italian Data Protection Authority (Garante per la Protezione dei Dati Personali)
Any information that, directly or indirectly, makes a natural person identified or identifiable.
Information collected automatically through this Application (e.g. IP addresses, time of request, browser used).
The natural or legal person who determines the purposes and means of the processing of personal data.
Small portions of data stored within the User's browser.