Privacy Policy

Purpose of this Notice

This page describes the methods used to manage this website with regard to the processing of personal data of users who visit it.

This information notice is also provided, pursuant to Article 13 of EU Regulation 2016/679 – General Data Protection Regulation (GDPR) – to those who interact with the web services accessible electronically at: https://lucasasdelli.com, corresponding to the home page of the site.

This notice applies exclusively to this website and not to other websites that users may access via links.

The policy follows the principles and measures introduced by the European Data Protection Package, effective since 4 May 2016, which defines adequate technical and organizational security measures for data processing, including online processing, as well as the purposes, methods, timeframes, and nature of the information that data controllers must provide to data subjects, together with their rights.

This notice also draws inspiration from Recommendation No. 2/2001, adopted on 17 May 2001 by the European Data Protection Authorities within the Article 29 Working Party, which identifies certain minimum requirements for the collection of personal data online and, in particular, the manner, timing, and nature of the information that controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.


Data Controller

Following the consultation of this website, data relating to identified or identifiable persons may be processed.
 The Data Controller is Luca Sasdelli, based in Girona (Spain).


Place of Data Processing

The processing connected to the web services of this site takes place at the aforementioned headquarters of the Controller and is carried out exclusively by personnel authorized to process data on behalf of the Controller.


Types of Data Processed

Browsing Data

The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified individuals but, by its very nature, could allow user identification through processing and association with data held by third parties.

This category of data includes IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the server response status (success, error, etc.), and other parameters relating to the user’s operating system and IT environment.

These data are used solely for the purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning, and are deleted immediately after processing. The data may be used to ascertain responsibility in the event of hypothetical computer crimes against the site; except for this circumstance, web contact data do not persist for more than seven days.


Data Provided Voluntarily by the User

The voluntary, explicit, and optional sending of e-mails to the addresses indicated on this website entails the subsequent acquisition of the sender’s address, necessary to reply to requests, as well as any other personal data included in the communication.

Specific summary information notices will be displayed or provided progressively on the pages of the site set up for particular services on request.


Security of Data Provided

This website processes users’ data lawfully and correctly, adopting appropriate security measures to prevent unauthorized access, disclosure, alteration, or destruction of data.
 Processing is carried out using electronic and/or telematic tools, with organizational methods and logic strictly related to the stated purposes.

In addition to the Controller, in certain cases the following parties may have access to the data:

  • authorized staff within our organization;
  • external parties who manage the IT systems and website on behalf of the Controller;
  • entities entitled to access the data under law or regulations;
  • other parties as provided by law.


Optional Nature of Data Provision

Apart from what has been specified for browsing data, the user is free to provide personal data indicated in the request forms for information, quotations, or inquiries about services offered.

Failure to provide such data may make it impossible to obtain the requested service.


Details on Data Processing

Personal data are collected for the following purposes and through the following services:

Interaction with Social Networks

These services allow interaction with social networks or other external platforms directly from the pages of this website.
 Interactions and data collected are subject to the user’s privacy settings for each social network. Even if users do not use the service, it may still collect traffic data related to the pages where it is installed.

  • LinkedIn Button and Social Widgets (LinkedIn Corporation) – Interaction service with the LinkedIn network. Privacy Policy
  • Facebook “Like” Button and Social Widgets (Meta Platforms, Inc.) – Interaction service with the Facebook social network. Privacy Policy
  • Twitter Tweet Button and Social Widgets (X Corp.) – Interaction service with the Twitter/X social network. Privacy Policy

Content from External Platforms

These services allow users to view content hosted on external platforms directly from the pages of this website and to interact with them. Even if users do not use these services, they may still collect traffic data related to the pages in which they are installed.

  • Google Fonts (Google Ireland Limited) – Font display service managed by Google that enables this site to incorporate style fonts within its pages. Privacy Policy


Data Processing Methods and Retention Period

Personal data are processed both through automated systems and manually (including paper-based formats) for the time strictly necessary to achieve the purposes for which they were collected.

Specific security measures are observed to prevent data loss, unlawful or incorrect use, and unauthorized access.

Data collected via email will be retained in accordance with legal obligations or, under Article 13(2)(a) of the GDPR, for a variable period determined by legitimate business interests (related to tax audits, special correspondence, disputes, non-payments, legal matters, or statistical purposes).


Data Subjects’ Rights

Pursuant to Articles 15–21 and 77 of EU Regulation 2016/679, data subjects may, at any time, exercise the following rights by contacting the Data Controller:

  • Right of access (Art. 15)
  • Right to rectification (Art. 16)
  • Right to erasure (“right to be forgotten”, Art. 17)
  • Right to restriction of processing (Art. 18)
  • Right to data portability (Art. 20)
  • Right to object (Art. 21)
  • Right to lodge a complaint with a Supervisory Authority (Art. 77)
  • Right to withdraw consent, where applicable (Art. 6(1)(a) or Art. 9(2)(a))

Requests may be submitted:

  • by e-mail to: info@sasdelli.consulting
  • by telephone: +971 585647268

This privacy policy may be updated due to new legal provisions; users are therefore invited to review this page periodically.