Studio Consulenza Italia - Privacy Policy

Privacy Policy

This privacy policy explains how Studio Consulenza Italia collects, uses, protects, and processes personal data in connection with your use of our site and services. We are committed to protecting your privacy and handling your data transparently and in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

Data Controller

For the purposes of applicable data protection law, including the GDPR, the data controller responsible for your personal data is:

Studio Consulenza Italia
18 Via Montenapoleone, Suite 502,
Milan, Lombardy, 20121
Italy

Personal Data We Collect

We may collect various types of personal data, including:

Contact Information: Such as your name, company name, professional title, postal address.
Professional Information: Information related to your business and our consulting engagement, including details about your organization, challenges, projects, and internal structure.
Technical Information: Data collected automatically when you visit our site, such as your IP address, browser type, operating system, referring URLs, pages viewed, and dates/times of site visits.
Information you provide: Any other information you voluntarily provide to us through forms, correspondence, or interactions related to our consulting services.

We do not knowingly collect sensitive personal data (such as data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, sexual life, or genetic/biometric data) unless it is strictly necessary for the provision of our consulting services and you have explicitly consented, or another lawful basis applies.

How We Collect Your Data

We collect personal data in the following ways:

Directly from you: When you contact us, inquire about our services, engage us for consulting work, or provide information during a project.
Automatically: As you interact with our site, through technologies like cookies and server logs.
From other sources: With your consent or where legally permissible, from third parties, such as business partners or publicly available sources.

Purposes and Lawful Basis for Processing

We process your personal data for the following purposes and rely on specific lawful bases under the GDPR:

To provide our services: To deliver management consulting, strategy development, operations improvement, organizational design, financial advisory, IT consulting, change management, human resources consulting, and related services. This processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract (Article 6(1)(b) GDPR).

To communicate with you: To respond to inquiries, provide information about our services, send updates, and manage our relationship. This processing is based on our legitimate interests in conducting our business and communicating effectively (Article 6(1)(f) GDPR) or for pre-contractual steps (Article 6(1)(b) GDPR).

To improve our site and services: To understand how our online platform is used, analyze trends, and enhance user experience and the quality of our offerings. This is based on our legitimate interests in improving and managing our business (Article 6(1)(f) GDPR).

For internal business operations: Including administration, accounting, risk management, and other necessary business processes. This is based on our legitimate interests in running our business efficiently and compliantly (Article 6(1)(f) GDPR) and for fulfilling legal obligations (Article 6(1)(c) GDPR).

To comply with legal obligations: When required by law, court order, or governmental authority. This is based on our legal obligation (Article 6(1)(c) GDPR).

With your consent: For specific purposes where we obtain your explicit consent (Article 6(1)(a) GDPR). You have the right to withdraw consent at any time.

Data Sharing and Disclosure

We do not sell your personal data. We may share your personal data with third parties only in the following limited circumstances:

Service Providers: We may share data with trusted third-party service providers who perform services on our behalf, such as IT support, hosting, analytics, or professional advisors (e.g., accountants, lawyers). These providers are contractually bound to protect your data and process it only according to our instructions and applicable law.
Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction.
Legal Requirements: We may disclose your data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
With Your Consent: When you have given us explicit consent to share your data for a specific purpose.

Where personal data is transferred to countries outside the European Economic Area (EEA) that do not provide an equivalent level of data protection, we will ensure that appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.

Data Security

We implement appropriate technical and organizational measures designed to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for satisfying any legal, accounting, or reporting requirements. The retention period for different types of personal data varies depending on the purpose of processing, our legal obligations, and our business needs.

Your Data Protection Rights

Under GDPR and other applicable data protection laws, you have the following rights regarding your personal data:

Right to access: You have the right to request a copy of the personal data we hold about you.
Right to rectification: You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
Right to erasure (Right to be Forgotten): You have the right to request the deletion of your personal data in certain circumstances.
Right to restriction of processing: You have the right to request that we restrict the processing of your personal data in certain situations.
Right to object to processing: You have the right to object to the processing of your personal data based on our legitimate interests or for direct marketing purposes.
Right to data portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format and to transmit it to another controller, where technically feasible.
Right to withdraw consent: If we process your data based on your consent, you have the right to withdraw that consent at any time.

Exercising Your Rights

To exercise any of these rights, please send a written request to us at the following address:

Studio Consulenza Italia
18 Via Montenapoleone, Suite 502,
Milan, Lombardy, 20121
Italy

Please clearly state which right you wish to exercise and provide sufficient information to allow us to verify your identity and locate your data.

Right to Lodge a Complaint

If you are an individual in the EEA or UK and believe that our processing of your personal data infringes data protection laws, you have the right to lodge a complaint with a competent supervisory authority. The supervisory authority in Italy is the Garante per la Protezione dei Dati Personali (Italian Data Protection Authority).

Cookies and Similar Technologies

Our site may use cookies and similar tracking technologies to enhance your browsing experience, analyze site traffic, and understand how our site is used. Cookies are small text files stored on your device. You can manage your cookie preferences through your browser settings.

Links to Other Websites

Our online platform may contain links to third-party websites that are not operated by us. We are not responsible for the content or privacy practices of these third-party sites. We encourage you to review the privacy policies of any third-party site you visit.

Changes to This Privacy Policy

We may update this privacy policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated policy on this page. We encourage you to review this policy periodically.