top of page

< HOME

Privacy Policy

PRIVACY NOTICE FOR THE PROCESSING OF PERSONAL DATA PURSUANT TO REGULATION (EU) 2016/679

Pursuant to Article 13 of Regulation (EU) 2016/679 (hereinafter "GDPR"), we inform users about how the Data Controller will process their personal data, in compliance with the principles of fairness, lawfulness, transparency, and confidentiality, as well as the user’s rights.

  1. Data Controller: The Data Controller is Image Revel of Longhi Matteo, e-mail: imagerevel@gmail.com (hereinafter "Controller").

  2. Personal Data: Processed and Processing Location a) Data voluntarily provided by the user Data provided directly by website users, such as name, surname, and email address, may be collected and processed. If the user provides personal data of third parties, they assume full responsibility and must ensure that the disclosure of such data to the Controller and subsequent processing complies with the GDPR. For example, before providing third-party personal data, the user must inform them and obtain their consent where required. The voluntary submission of messages via email to the addresses provided on the website entails the acquisition of the sender’s address, necessary to respond to received requests, as well as any other personal data included in the message.

b) Browsing data The IT systems and software procedures used to operate this website acquire, during normal operation and only for the duration of the connection, certain data that is implicitly transmitted in the use of Internet communication protocols (such as the IP address and timestamp). These data are used solely to obtain anonymous statistical information on website usage and to check its correct operation, and they are deleted after processing. Data may be used to ascertain responsibility in case of potential cybercrimes against the website.

c) Cookies For more details on the use of cookies, please refer to the website's Cookie Policy.

  1. Purpose and Legal Basis of Processing The user’s personal data are collected and processed to allow the Controller:

  • To provide the services available on the website and/or respond to user requests. The legal basis for this processing is the need to fulfill the user’s request, execute a contract, and/or take pre-contractual measures upon the request of the data subject. For this purpose, providing personal data is necessary; therefore, failure to provide them will prevent the user from obtaining the requested services from the Controller.

  • To comply with any legal obligations or authorities’ orders, including accounting and tax obligations. The legal basis for this processing is compliance with legal obligations.

  • To internally manage and monitor activities, ensure that the website is updated and meets users' needs, analyze, review, and improve website services, and, if necessary, exercise legal rights and defense in court. The legal basis for this is the Controller’s legitimate interest in protecting its assets, business, and rights.

  1. Processing Methods and Data Retention Period Personal data may be voluntarily provided by the user or automatically collected while browsing the website. Failure to provide certain personal data may prevent this website from providing its services. Data is retained only for the time strictly necessary to achieve the purposes indicated in this notice and will be deleted at the end of this period, unless retention is required for legal obligations or to assert a right in court.

  2. Entities Involved in Processing Besides the Controller, in some cases, certain categories of authorized personnel involved in developing and managing the services provided through this website may have access to the data. External parties (such as third-party technical service providers, IT companies, and consultants) may also process data.

  3. Data Transfers Abroad The user’s personal data will not be transferred outside the EU. If the Controller transfers personal data outside the EU, it will do so in compliance with applicable legal provisions and upon signing the Standard Contractual Clauses established by the European Commission.

  4. Data Subject Rights As a data subject, you may exercise the rights set out in Articles 15-22 of the GDPR at any time. Specifically, you have the right to request:

  • (i) Access to your personal data,

  • (ii) Rectification if the data is inaccurate,

  • (iii) Deletion of your data, and

  • (iv) Restriction of its processing.

You also have the right:

  • (i) To object to processing if carried out for the pursuit of the Controller’s legitimate interest, where you believe it violates your fundamental rights and freedoms,

  • (ii) To withdraw your consent at any time for purposes where it is required,

  • (iii) To data portability, i.e., the right to receive your personal data in a structured, commonly used, and machine-readable format, and

  • (iv) To lodge a complaint with the competent supervisory authority (Privacy Authority).

You may exercise your rights at any time by sending a communication to the Controller at the following email address: imagerevel@gmail.com.

bottom of page