The Data Controller is:
Evolvis Media LLC - [email protected]
The following table provides a detailed overview of the categories of personal data subject to processing, the corresponding purposes, the legal basis legitimizing the processing, and the retention period:
| Data Category | Purpose of Processing | Legal Basis | Retention Period |
|---|---|---|---|
| Browsing data (IP address, browser type and version, operating system, pages visited, access time) | Ensure website cybersecurity, prevent and detect fraudulent activities, cyberattacks, or abuses | Legitimate interest of the Controller (Art. 6, para. 1, let. f) GDPR) consisting of protecting IT systems and website security | 7 days, unless extended for investigative or litigation purposes |
| Contact data and communication content (first name, last name, email address, message content) | Handle general information requests, provide support, and respond to any complaints | Legitimate interest of the Controller (Art. 6, para. 1, let. f) GDPR) to provide effective responses to user communications and manage its reputation | 12 months from the conclusion of the communication exchange, unless otherwise required by law |
| Contact data and communication content (first name, last name, email address, message content) | Evaluate and manage commercial inquiries or collaboration proposals (e.g., advertising requests) | Execution of pre-contractual measures taken at the data subject's request (Art. 6, para. 1, let. b) GDPR) | For the time necessary to evaluate the proposal and, in the event of a negative outcome, for a maximum of 24 months from the request. In case of contract signing, data will be retained according to the terms provided by civil and tax laws. |
Personal data is processed using IT tools, with logic strictly related to the purposes indicated, and in any case in a manner that ensures data security and confidentiality, in accordance with Art. 32 of the GDPR.
In particular, the following security measures are adopted:
Data is stored on servers located within the European Union.
This website does not use cookies or other tracking technologies. Browsing data is collected exclusively through server logs for the security purposes indicated above.
The provision of browsing data is necessary for technical reasons related to the Internet communication protocol. Failure to provide it would make it impossible to use the website.
The provision of data via contact forms or email communications is optional. However, failure to provide it will prevent the Controller from responding to the data subject's requests.
Personal data may be disclosed to:
Personal data is not disseminated or shared with third parties for commercial or marketing purposes.
Personal data is processed and stored within the European Economic Area. The Controller undertakes not to transfer personal data to third countries or international organizations.
The Controller does not carry out processing that involves automated decision-making processes, including profiling as referred to in Art. 22 of the GDPR.
In accordance with Chapter III of the GDPR, the data subject may exercise the following rights at any time:
To exercise these rights, the data subject may send a written request to the Controller's email address. The Controller will respond within 30 days of receiving the request, a deadline that may be extended by an additional 60 days in cases of particular complexity.
The data subject who believes that the processing of their data violates GDPR provisions has the right to file a complaint with the competent Supervisory Authority.
The Data Controller has not appointed a Data Protection Officer (DPO) as the conditions set forth in Art. 37 of the GDPR do not apply.
The services offered through this website are not intended for individuals under the age of 18. The Controller does not knowingly collect personal data relating to minors.
The Controller reserves the right to make changes to this privacy notice at any time, informing data subjects by publishing the updated version on this website.