Privacy Policy
Last updated: June 7, 2026
This policy describes how the personal data of users who browse the website www.digital-enterprise.it and interact with its services is processed, pursuant to Article 13 of Regulation (EU) 2016/679 (“GDPR”) and applicable Italian law (Legislative Decree 196/2003 as amended by Legislative Decree 101/2018).
1. Data Controller
The Data Controller is Digital Enterprise di Lorusso Vincenzo (“Digital-Enterprise”), with registered office at Località Pietra Grossa 2, 84030 Caggiano (SA) — VAT no. 06222630656.
- General email: info@digital-enterprise.it
- Privacy email: privacy@digital-enterprise.it
The Controller has not appointed a Data Protection Officer (DPO). For any request concerning personal data, you can write to the addresses above.
2. What data we process
2.1 Browsing data
The IT systems and software procedures responsible for the operation of this website acquire, during their normal operation, certain data whose transmission is implicit in the use of internet communication protocols: for example IP addresses, browser and device type, operating system, pages visited, date and time of the request. This data is used to obtain anonymous statistical information on the use of the site and to ensure its security and correct operation.
2.2 Data provided voluntarily
When you contact us via the form on the site or by email, we process the data you provide voluntarily: typically first and last name, email address, phone number (optional), area of interest and the content of your message. Please do not enter special category data (Art. 9 GDPR) in free-text fields.
2.3 Cookies and similar technologies
The site uses cookies and similar technologies as described in detail in the Cookie Policy.
3. Purposes and legal bases
| Purpose | Legal basis |
|---|---|
| Respond to contact requests and provide quotes/consulting | Performance of pre-contractual measures at the data subject’s request (Art. 6.1.b) and/or legitimate interest (Art. 6.1.f) |
| Operation, security and abuse prevention of the site | Legitimate interest of the Controller (Art. 6.1.f) |
| Compliance with legal obligations (accounting, tax, legal defence) | Legal obligation (Art. 6.1.c) and legitimate interest (Art. 6.1.f) |
| Analytics and marketing cookies | Consent of the data subject (Art. 6.1.a), revocable at any time |
Providing data for contact purposes is optional, but refusing to provide the data marked as mandatory makes it impossible to act on your request.
4. How we process data
Data is processed using electronic and organisational tools, adopting technical and organisational measures adequate to ensure its security, confidentiality, integrity and availability, and to prevent unauthorised access, loss or misuse. Access to the data is limited to authorised personnel and to suppliers appointed as data processors.
5. Recipients and data processors
Data may be processed, on our behalf and on our instructions, by service providers appointed as Data Processors pursuant to Art. 28 GDPR, including:
- Vercel Inc. — hosting and content delivery (CDN) of the site;
- Resend, Inc. — sending the emails generated by the contact form;
- any statistical/marketing service providers, activated only with your prior consent.
Data is not disclosed or transferred to third parties for their own promotional purposes. It may be communicated to the competent authorities where required by law.
6. Transfer of data outside the EU
Some of the providers listed above are based in the United States. Any transfers of data outside the European Economic Area take place with adequate safeguards pursuant to Chapter V of the GDPR, such as the European Commission’s Standard Contractual Clauses and/or the provider’s adherence to the EU-US Data Privacy Framework.
7. Retention period
- Contact data: for as long as necessary to handle the request and, if a relationship begins, for its duration; in the absence of a relationship, as a rule up to 24 months.
- Data for legal obligations (e.g. tax/accounting): for the periods required by law (generally 10 years).
- Browsing data and technical logs: for a limited period unless needed to investigate offences.
- Cookies: according to the durations indicated in the Cookie Policy.
8. Your rights
As a data subject, you can exercise at any time the rights set out in Articles 15-22 GDPR:
- access to your data and information about the processing;
- rectification of inaccurate data and completion of incomplete data;
- erasure (“right to be forgotten”) in the cases provided for;
- restriction of processing;
- data portability;
- objection to processing based on legitimate interest;
- withdrawal of consent at any time, without affecting the lawfulness of processing based on consent given before withdrawal.
To exercise your rights, write to privacy@digital-enterprise.it. You also have the right to lodge a complaint with the supervisory authority: the Garante per la protezione dei dati personali (Italian Data Protection Authority).
9. Minors
The site and services are not directed at children under 14. We do not knowingly collect data from minors without the consent of those holding parental responsibility.
10. Changes to this policy
The Controller reserves the right to update this policy to align it with regulatory changes or the services offered. The current version is always published on this page with the date of last update.
To manage cookie consent, see the Cookie Policy or use the “Cookie preferences” icon on the site.