Privacy Policy
Introduction
Pursuant to Article 13 of Regulation (EU) 2016/679 (hereinafter “GDPR”) and Legislative Decree 196/2003 as amended by Legislative Decree 101/2018, this document provides information to users who interact with the website www.laurapieretti.com and its related subdomain https://corsi.laurapieretti.com, operated by Laura Pieretti as the Data Controller.
This Privacy Policy is drafted in accordance with the principles of transparency, fairness, and accountability. It reflects the guidelines and recommendations of the European and Italian data protection authorities and aims to inform users of the methods, purposes, and legal bases of data processing, the parties involved, and their rights under applicable law.
This website and the services provided through it are managed from the European Union and are primarily intended for individuals located within the EU.
In compliance with Regulation (EU) 2016/679 (“GDPR”), we apply the same data protection standards to all users, regardless of their location. This means that users located outside the European Union also benefit from the privacy rights and guarantees established by the GDPR, unless otherwise required by local laws.
1. Data Controller
The Data Controller is:
Laura Pieretti
Email: info@laurapieretti.com
Location: Rome, Italy
The Controller may be contacted for any information or to exercise the rights set out in Articles 15–22 of the GDPR.
2. Categories of Personal Data Processed
The Data Controller processes the following categories of personal data:
Voluntarily provided data: data provided by the user through form submissions (e.g., newsletter subscriptions, course registrations).
Identification data: full name, email address, telephone number.
Browsing data: technical information such as IP address, browser type, operating system, pages visited, duration of visits (collected via tools such as Google Analytics, Search Console, and related plugins).
3. Purposes and Legal Basis for Processing
Personal data are processed for the following purposes and legal bases:
| Purpose | Legal Basis |
| Sending newsletters | Data subject’s consent (Art. 6.1.a GDPR) |
| Handling customer inquiries and support | Pre-contractual/contractual necessity (Art. 6.1.b GDPR) |
| Providing access to reserved course area | Contractual necessity (Art. 6.1.b GDPR) |
| Website traffic analysis and improvement | Legitimate interest of the Controller (Art. 6.1.f GDPR) |
| Marketing and promotional communications | Data subject’s consent (Art. 6.1.a GDPR) |
4. Processing Methods
Personal data are processed using electronic and/or telematic tools, in a manner strictly related to the purposes stated and in compliance with principles of data minimization and security.
The Controller does not carry out automated decision-making or profiling activities, except for profiling potentially carried out by third-party platforms (e.g., social media services).
5. Nature of Data Provision
Providing personal data is voluntary, but necessary to access certain services offered through the website (e.g., newsletter, course content). Failure to provide the required data may make it impossible to fulfill user requests.
6. Data Sharing and Disclosure
Personal data are not sold or disclosed to third parties. They may be shared with:
- Authorized collaborators of the Controller;
- Technical or service providers supporting the website’s operation (e.g., hosting, email marketing, analytics tools).
All such parties are bound by confidentiality obligations and are compliant with GDPR requirements.
7. Data Transfer Outside the EU
Some data may be processed by third parties located outside the European Union (e.g., United States), including platforms such as MailerLite, Substack, Google, Meta, Vimeo, YouTube, Zoom, and BuyMeACoffee. In such cases, data processing is carried out in accordance with Articles 44 and following of the GDPR, based on appropriate safeguards such as Standard Contractual Clauses (SCCs).
8. Data Retention Period
Personal data are retained for the time strictly necessary to fulfill the purposes for which they were collected, and in any case until the user requests deletion, unless legal obligations require longer retention.
9. Rights of the Data Subject
Users may, at any time, exercise their rights under Articles 15–22 of the GDPR, including:
- Right of access to personal data
- Right to rectification or erasure (“right to be forgotten”)
- Right to restriction of processing
- Right to data portability
- Right to object to processing
- Right to withdraw consent
- Right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it)
To exercise these rights, please write to: info@laurapieretti.com
10. Cookies and Tracking Technologies
For detailed information on cookies and tracking technologies used by this website, please refer to our Cookie Policy, which forms an integral part of this Privacy Policy.