Privacy Policy
How we collect, use, and protect your personal data
Privacy Policy
Leonardo Biondi - https://biondi.lovable.app/privacy-policy
Last updated: April 2026
This Privacy Policy explains how personal data is collected, used, and protected when visiting biondi.pro or using the consulting services offered by Leonardo Biondi. All processing complies with the GDPR (EU 2016/679) and applicable Italian privacy laws.
1. Purpose of this notice
This Privacy Policy explains how personal data is collected, used, and protected when visiting biondi.pro or using the consulting services offered by Leonardo Biondi. All processing complies with the GDPR (EU 2016/679) and applicable Italian privacy laws.
Data Controller:
Leonardo Biondi – P.IVA 01097130148
Piazza Marinoni 18, 23037 Tirano (SO), Italy
2. Types of data processed
- Navigation data: IP address, browser type, logs (for security and site performance).
- Contact data: name, email, and information provided via forms or email.
- Newsletter data: email address provided through the newsletter subscription form.
- Analytics data: anonymised, aggregate page views and referrer information collected without cookies or personal identifiers (via Plausible Analytics).
- Communication content: messages, notes, and call information.
Providing data is voluntary but required to receive the Service.
3. Purposes and legal bases
| Purpose | Legal basis |
|---|---|
| Website operation and security | Legitimate interest – Art. 6(1)(f) GDPR |
| Managing requests and scheduling calls | Pre-contractual steps – Art. 6(1)(b) |
| Follow-up communications | Legitimate interest – Art. 6(1)(f) |
| Sending the newsletter | Consent – Art. 6(1)(a) GDPR |
| Legal or administrative obligations | Legal obligation – Art. 6(1)(c) |
| Website analytics (aggregate, anonymous) | Legitimate interest – Art. 6(1)(f) GDPR |
4. Data processors and third-party services
| Service | Data processed | Provider | Role |
|---|---|---|---|
| Hosting | technical logs, IPs | Lovable Inc. (EU data centers) | Processor |
| Google Workspace (Gmail, Drive, Gemini, Forms, Calendar) | emails, uploaded files, communications | Google Ireland Ltd. | Processor |
| Newsletter | email address, subscription preferences, open/click statistics | Brevo (Sendinblue) – Sendinblue SAS (France, EU) | Processor |
| Analytics | aggregate page views, referrers (no cookies, no personal data) | Plausible Analytics – Plausible Insights OÜ (Estonia, EU) | Processor |
All providers act under GDPR-compliant Data Processing Agreements (DPAs) and Standard Contractual Clauses (SCCs).
5. Data retention
- Contact forms / emails: retained as long as needed to manage communications (max 12 months).
- Newsletter data: retained until you unsubscribe. You can unsubscribe at any time via the link in every email or by contacting privacy@biondi.pro.
- Technical logs: kept briefly for security and diagnostics.
- Analytics data: retained in aggregate form only; no personal data is stored.
6. International data transfers
Data is stored and processed within the EU.
Any limited access for support outside the EEA is safeguarded by SCCs and supplementary protections under Art. 46 GDPR.
7. Data subject rights
Under GDPR, you may request: access, correction, deletion, restriction, portability, and objection; withdrawal of consent at any time.
Requests: privacy@biondi.pro
Complaints: Garante per la protezione dei dati personali (Italy).
8. Security
Technical and organizational measures include:
- encrypted HTTPS/TLS connections;
- secure access controls within Google Workspace;
- automated file deletion;
- access limited to authorized personnel only.
9. Updates
This policy may be revised to reflect legal or operational changes. The latest version will always appear on this page.
Data Controller:
Leonardo Biondi – Piazza Marinoni 18, 23037 Tirano (SO), Italy
📧 privacy@biondi.pro© 2025 Leonardo Biondi – All rights reserved