Privacy Policy
Summary: This website collects personal data only when you contact us via the contact form, book a call, or subscribe to updates. We do not sell your data. We do not use it for advertising. You can request deletion at any time by emailing info@andreamolinaro.com.
01 Data Controller
The Data Controller responsible for this website and the personal data collected through it is:
| Field | Details |
|---|---|
| Name | Andrea Molinaro |
| Business name | andreamolinaro.com |
| Location | Italy (EU) |
| info@andreamolinaro.com | |
| Website | andreamolinaro.com |
02 What data we collect
We collect personal data only when you voluntarily provide it. The following table summarises what we collect and why:
| Source | Data collected | Purpose |
|---|---|---|
| Contact form | Name, email, service selected, message | To respond to your enquiry |
| Booking system (Setmore) | Name, email, phone (optional), booking date | To schedule and manage your consultation |
| Payment (Stripe) | Payment details (processed by Stripe, not stored by us) | To process subscription payments |
| Website analytics | Anonymised browsing data (pages visited, time on site) | To improve the website |
We do not collect: sensitive data (health, race, political opinions), data from minors, or data without your explicit action.
03 Purpose and legal basis
Under the GDPR (EU Regulation 2016/679), we process your data based on the following legal grounds:
- Consent (Art. 6(1)(a)): When you submit the contact form and tick the privacy checkbox, you give explicit consent to process your data for the purpose of responding to your request.
- Contract performance (Art. 6(1)(b)): When you purchase a plan or book a paid session, processing is necessary to fulfil the contract.
- Legitimate interest (Art. 6(1)(f)): For website analytics to improve the user experience, using anonymised data only.
We never use your data for automated profiling, advertising, or re-selling to third parties.
04 Data retention
We retain your personal data only for as long as necessary for the purposes for which it was collected:
| Data type | Retention period |
|---|---|
| Contact form submissions | 12 months from last contact |
| Booking records | 24 months (for service continuity) |
| Payment records | 10 years (legal/fiscal obligation) |
| Analytics data | 26 months (anonymised) |
After these periods, data is securely deleted or anonymised. You may request early deletion at any time (see Section 7).
05 Data sharing
We do not sell, rent or share your personal data with third parties for their own marketing purposes. We share data only with trusted service providers who help us operate this website, strictly limited to what is necessary:
- Setmore — Appointment scheduling. Privacy policy: setmore.com/privacy
- Stripe — Payment processing. Privacy policy: stripe.com/privacy
- Google reCAPTCHA — Spam protection on the contact form. Privacy policy: policies.google.com/privacy
- Google Analytics / Search Console — Website analytics (anonymised). Privacy policy: policies.google.com/privacy
All providers are GDPR compliant and have signed data processing agreements where required. No data is transferred outside the EU/EEA without appropriate safeguards.
06 Cookie
This website uses a minimal set of cookies:
| Cookie | Type | Purpose | Duration |
|---|---|---|---|
| am_lang | Functional | Remembers your language preference (EN/IT) | 1 year |
| _ga, _gid | Analytics | Google Analytics — anonymised usage statistics | 2 years / 24 hours |
| g-recaptcha-* | Security | Google reCAPTCHA — spam detection on forms | Session |
We do not use tracking cookies, advertising cookies, or social media pixels. You can disable non-essential cookies in your browser settings at any time.
07 Your rights
Under the GDPR, you have the following rights regarding your personal data:
🔍 Right of access
Request a copy of the personal data we hold about you.
✏️ Right to rectification
Request correction of inaccurate or incomplete data.
🗑️ Right to erasure
Request deletion of your data ('right to be forgotten').
⏸️ Right to restrict processing
Request that we limit how we use your data.
📦 Right to portability
Receive your data in a structured, machine-readable format.
🚫 Right to object
Object to processing based on legitimate interest.
To exercise any of these rights, email us at info@andreamolinaro.com with the subject 'GDPR Request'. We will respond within 30 days. You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali — www.garanteprivacy.it).
08 Data security
We take data security seriously and implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss or misuse:
- HTTPS encryption on all pages of the website
- Spam protection via Google reCAPTCHA v3 on the contact form
- Wordfence security plugin for WordPress firewall and malware detection
- Regular backups of website data
- Payment data handled exclusively by Stripe (PCI DSS compliant)
- Access to personal data restricted to the Data Controller only
In the unlikely event of a data breach affecting your rights, we will notify you and the relevant supervisory authority within 72 hours as required by GDPR.
09 Minors
This website is intended for adults and business users. We do not knowingly collect personal data from individuals under the age of 18. If you believe a minor has submitted data through this website, please contact us immediately at info@andreamolinaro.com and we will delete the data promptly.
10 Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services or legal requirements. When we make changes, we will update the 'Last updated' date at the top of this page.
We encourage you to review this page periodically. Continued use of the website after changes constitutes acceptance of the updated policy.
11 Contact us
For any questions about this Privacy Policy, or to exercise your GDPR rights, please contact us:
Privacy enquiries
We respond to all GDPR requests within 30 days.
📧 Email us — info@andreamolinaro.com