Privacy Policy
1. Introduction
Welcome to micheleardu.com (“Website”). This Privacy Policy explains how we collect, use, store, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and the ePrivacy Directive (2002/58/EC, as amended). Our Website, built on a content management platform, uses various tools to provide functionality, accessibility, analytics, and marketing services. If you have questions, please contact us at support@micheleardu.com.
2. Data Controller
The data controller for personal data collected through this Website is micheleardu.com. You can reach us at support@micheleardu.com or via our contact form.
3. Types of Data Collected
We collect the following types of personal data, depending on your interaction with the Website:
- Contact Information: Name, email address, and other details you provide through forms (e.g., newsletter subscriptions or contact inquiries).
- E-Commerce Data (if applicable): Billing and shipping information, payment details, and order history for purchases made through our e-commerce platform.
- Usage Data: Information about how you interact with the Website, such as IP address, browser type, pages visited, and time spent, collected via analytics tools.
- Cookies and Similar Technologies: Data collected to enhance functionality, performance, accessibility, and marketing, as detailed in our Cookie Policy.
Data collection occurs primarily through our email marketing service for newsletters and campaigns, forms for inquiries, and, if applicable, our e-commerce platform for purchases.
4. Purpose and Legal Basis for Processing
We process personal data for the following purposes and legal bases under GDPR:
| Purpose | Data Processed | Legal Basis |
|---|---|---|
| Newsletter and Marketing Communications | Contact information (e.g., email) | Consent (Article 6(1)(a) GDPR) |
| E-Commerce Transactions (if applicable) | Billing, shipping, and payment details | Contract performance (Article 6(1)(b) GDPR) |
| Website Functionality and Accessibility | Usage data, cookies | Legitimate interests (Article 6(1)(f) GDPR) or consent |
| Analytics and Performance Optimization | Anonymized usage data, cookies | Legitimate interests (Article 6(1)(f) GDPR) or consent |
| Responding to Inquiries | Contact information | Legitimate interests (Article 6(1)(f) GDPR) or consent |
5. Data Sharing and Third-Party Tools
We may share your personal data with third-party services to provide Website functionality, including:
- Email marketing platform for newsletters and campaigns.
- E-commerce platform for processing orders and payments (if applicable).
- Analytics services to monitor Website performance.
- Accessibility tools to enhance user experience (e.g., text resizing, contrast adjustments).
- Transactional email services for communication.
- Hosting and caching services for site performance.
These third parties are GDPR-compliant data processors, and we ensure appropriate safeguards are in place. We do not share data beyond what is necessary for these purposes, and we are not responsible for third-party privacy policies.
6. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance Website functionality, performance, and marketing. For details, please refer to our Cookie Policy. You can manage cookie preferences through our consent tool or browser settings.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy:
- Contact information for newsletters is kept until you unsubscribe or withdraw consent.
- E-commerce data is retained for the duration required by EU consumer and tax laws (e.g., up to 7 years for accounting purposes).
- Usage and analytics data is kept for up to 12 months, unless anonymized.
- Cookies are retained as described in our Cookie Policy.
Data is securely deleted or anonymized when no longer needed, in accordance with GDPR.
8. Your Data Protection Rights
Under GDPR, EU residents have the following rights regarding their personal data:
- Access: Request a copy of your data.
- Rectification: Correct inaccurate or incomplete data.
- Erasure: Request deletion of your data, subject to legal obligations.
- Restriction: Limit how we process your data.
- Portability: Receive your data in a structured, machine-readable format.
- Objection: Object to processing based on legitimate interests or for direct marketing.
- Withdraw Consent: Revoke consent for data processing at any time.
To exercise these rights, contact us at support@micheleardu.com. We will respond within one month, as required by GDPR. You may also lodge a complaint with a supervisory authority, such as the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali).
9. International Data Transfers
Some third-party tools (e.g., email marketing or analytics services) may process data outside the EU. We ensure such transfers comply with GDPR through Standard Contractual Clauses or other safeguards approved by the European Commission.
10. Data Security
We implement technical and organizational measures (e.g., encryption, secure hosting) to protect your data from unauthorized access, loss, or alteration. However, no online system is entirely secure, and we cannot guarantee absolute security.
11. Dispute Resolution
If you have concerns about our data practices, please contact us at support@micheleardu.com. EU residents may use the European Online Dispute Resolution (ODR) platform at https://ec.europa.eu/consumers/odr. This policy is governed by the laws of Italy, in line with EU regulations.
12. Changes to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices or legal requirements. Updates will be posted on this page, and significant changes will be communicated as required by GDPR. We encourage you to review this policy periodically.
13. Contact Us
For questions about this Privacy Policy or our data practices, please contact us at support@micheleardu.com or via our Website’s contact form.
Last Updated: June 7, 2025