Privacy Policy – Article 13 EU Regulation 2016/679 (GDPR)
Last updated: April 9, 2025
Our Commitment to Data Protection
At PortaleItaly, LLC, protecting personal data isn’t just a compliance issue — it’s foundational to how we operate. We see data privacy as essential to digital trust and long-term customer relationships.
We have adopted the General Data Protection Regulation (GDPR) — the most advanced legal framework for data protection — and we apply its principles rigorously: transparency, accountability, and user control.
Given the nature of our services, we often handle sensitive or valuable information. That responsibility is taken seriously.
Data Controller
PortaleItaly, LLC
260 Kings Mall Court, Box 208
Kingston, NY 12401, US
Email: [email protected]
Types of Data Collected
Personal Data
Any information that identifies or can identify a natural person, including name, email address, IP address, device identifiers, and location data.
Browsing Data
We collect standard technical data (IP address, browser type, operating system, timestamps) during site usage for system administration, security, and analytics.
Voluntarily Provided Data
Any data provided through contact forms, registrations, or newsletter sign-ups will be processed only for the purpose clearly indicated.
Cookies and Tracking Technologies
We use cookies and similar technologies to enhance user experience, analyze traffic, and support marketing activities. This includes the use of third-party tools such as HubSpot, which sets cookies to track user behavior, measure engagement, and personalize content.
For more information, see our [Cookie Policy].
Purposes, Legal Bases, and Retention
| Purpose | Legal Basis | Retention | Data Provision |
|---|---|---|---|
| Website navigation | Legitimate interest (Art. 6(1)(f) GDPR) | Duration of session | Required |
| Contact form | Pre-contractual steps (Art. 6(1)(b) GDPR) | Until request is processed (≤ 1 year) | Optional, but required for a response |
| Newsletter subscription | Consent (Art. 6(1)(a) GDPR) | Until withdrawal of consent | Optional |
| Account registration / login | Pre-contractual steps (Art. 6(1)(b) GDPR) | Until account deletion or expiry | Optional, but required for access |
| Marketing automation via HubSpot | Consent (Art. 6(1)(a) GDPR) | Until withdrawal of consent | Optional |
Data Recipients
Your data may be shared with carefully selected service providers (e.g. hosting, email, CRM, analytics) who process data on our behalf under strict contractual obligations.
This includes HubSpot, which acts as a Data Processor for marketing automation and communication management.
International Data Transfers
Although we serve users in Europe, some systems (including servers) are located in the United States. To ensure full legal compliance and safety:
-
We rely solely on providers certified under the EU-U.S. Data Privacy Framework (DPF).
-
All transfers follow the European Commission’s adequacy decision (July 10, 2023).
-
No data is used or processed beyond the necessary scope of services you’ve requested.
Your Rights
Under Articles 15–22 of the GDPR, you may:
-
Access your personal data
-
Request correction or deletion
-
Restrict or object to data processing
-
Request data portability
-
Withdraw consent at any time (with no effect on prior processing)
-
Lodge a complaint with the data protection authority (www.garanteprivacy.it)
Changes to This Policy
We may update this privacy notice to reflect changes in our systems, legal obligations, or third-party services like HubSpot. The most current version is always available on this page.