Privacy Policy

Last updated: 12/05/2025

This Privacy Policy, drafted in accordance with Regulation (EU) 2016/679 (“GDPR”) and current Italian legislation on personal data protection, describes how the website www.robyrossi.com (hereinafter “Website”) collects, manages, and processes personal data of users interacting with its content and services.

1. Data Controller

The Data Controller is ROBY ROSSI. For any request regarding the exercise of rights or information on the processing of personal data, you can contact the Data Controller via email at info@robyrossi.com. The Data Controller ensures that data will be processed in compliance with the principles of lawfulness, fairness, transparency, data minimization, and confidentiality.

2. Types of Data Processed

The data collected by the Website include information voluntarily provided by the user through the contact form, such as name, email address, and message content. Additionally, browsing data necessary for the functioning of the Website are collected, including IP address, browser type, device parameters, access times, pages visited, and session duration. Such data are automatically acquired by IT systems and are not associated with identified individuals, except for technical or security needs.

3. Purpose of Processing

Personal data are processed to allow the Data Controller to respond to requests submitted via the contact form, ensure the proper technical functioning of the Website, guarantee cybersecurity of the infrastructure, and prevent fraudulent or unlawful activities. No profiling is carried out, nor are unsolicited commercial activities performed.

4. Legal Basis of Processing

The processing of personal data is based on the user’s explicit consent when submitting the contact form and on the legitimate interest of the Data Controller to ensure the security, functionality, and technical monitoring of the Website.

5. Methods of Processing

Personal data are processed using electronic and telematic tools, with the adoption of appropriate technical and organizational measures to prevent unauthorized access, accidental disclosure, alteration, or loss of the information processed.

6. Recipients of Data

Data may only be shared with entities providing technical support services to the Website, such as hosting providers, infrastructure maintenance personnel, and collaborators appointed by the Data Controller. These entities are required to comply with current legislation and operate based on specific contractual instructions. Data are not disclosed to the public or transferred to third parties.

7. Retention Period

Data submitted through the contact form are retained for the time strictly necessary to manage the communication, and in any case no longer than twelve months from the end of the relevant interaction. Browsing data and technical logs are retained for periods established by the IT service provider.

8. Rights of the Data Subject

Users may exercise at any time the rights provided by Articles 15 to 22 of the GDPR, including the right of access, rectification, deletion, restriction of processing, objection, data portability, and revocation of previously given consent. Requests should be sent to info@robyrossi.com.

9. Transfer of Data to Third Countries

If processing involves transferring data to countries outside the European Economic Area, this will be done with appropriate safeguards, including standard contractual clauses or other instruments recognized as GDPR-compliant.

10. Cookies

The Website only uses technical cookies necessary to ensure the proper functioning of pages and basic services. No profiling cookies, analytical cookies, or user-tracking systems are used.

11. Changes to This Privacy Policy

This Privacy Policy may be subject to revisions or updates in the event of regulatory or technical changes. Any changes will be published on this same page.