This Privacy Policy describes how GuardaMe collects, uses, retains and protects the personal data of users of the SalentoMe.com site (also accessible via the PugliaMe.com domain). The Policy is provided in compliance with Regulation (EU) 2016/679 (GDPR), Italian Legislative Decree 196/2003 as amended (Italian Privacy Code) and Directive 2002/58/EC (ePrivacy).
The data controller of personal data collected via the Site is GuardaMe. The controller's full identification details (registered name, VAT number, registered office, reference email address) are shown in the Contact section of the Site.
GuardaMe is not currently required to appoint a Data Protection Officer (DPO) under Article 37 GDPR; an internal contact point for privacy matters is however always available via the Contact page.
GuardaMe processes the following categories of personal data:
GuardaMe does not knowingly collect data falling within the special categories under Article 9 GDPR (racial or ethnic origin, political or religious beliefs, health, sexual life, biometric or genetic data).
Personal data are processed for the following purposes, each grounded in a specific lawful basis under Article 6 GDPR:
Providing registration and contact data is optional; refusal results in the inability to access features that require an account (favourites, profile) or to receive a response from the support team.
GuardaMe may share personal data with the following parties, each appointed as a processor under Article 28 GDPR or acting as an independent controller for its own purposes:
GuardaMe does not sell personal data to third parties and does not use them for automated profiling producing legal effects on the data subject.
Some of the providers listed above are based in the United States. The transfer of data outside the European Economic Area takes place only with appropriate legal safeguards, under the mechanisms provided by Chapter V GDPR:
You may obtain a copy of the safeguards applied by contacting GuardaMe via the Contact page.
GuardaMe retains personal data only for as long as is strictly necessary to achieve the purposes for which they were collected. In particular:
At the expiry of the indicated periods, data are deleted or irreversibly anonymised.
The Site uses technical and preference cookies and - subject to consent under Article 122 of the Italian Privacy Code - analytics and third-party cookies. Detailed information on categories, individual cookies, providers and retention periods is available in the Cookie Policy, which forms an integral part of this Privacy Policy. You can change your preferences at any time via the cookie-management banner available at the foot of every page of the Site.
Under Articles 15-22 GDPR you have the right, at any time, to:
Requests may be submitted via the Contact page. GuardaMe responds within 30 days, extendable by a further 60 days for complex requests.
You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali) (website: garanteprivacy.it) or with any other competent supervisory authority.
The Site is not intended for minors under 14. Under Article 2-quinquies of the Italian Privacy Code (introduced by Legislative Decree 101/2018), a minor aged 14 or over may independently consent to the processing of their data for information-society services; below that age the consent or authorisation of the holder of parental responsibility is required.
GuardaMe does not knowingly collect data from minors under 14. Should a parent or guardian become aware that a minor has provided personal data without authorisation, deletion may be requested via the Contact page.
GuardaMe applies appropriate technical and organisational measures to protect personal data against destruction, loss, alteration, unauthorised disclosure or access. These measures include, among others: encrypted HTTPS transmission with HSTS, passwords stored via bcrypt hashing, two-factor authentication for administrator accounts, database access segregation, security logs and regular backups.
However, no system can guarantee absolute security. In the event of a personal-data breach posing a risk to the rights and freedoms of data subjects, GuardaMe will make the notifications required by Articles 33 and 34 GDPR within the prescribed timeframes.
GuardaMe reserves the right to update this Privacy Policy at any time, including to adapt to regulatory changes, new Site features or new providers. Material changes will be communicated by notice on the Site and, for registered users, by email, with reasonable advance notice before they take effect. The date of the most recent update is shown at the bottom of this page.
For any request concerning this Policy or the exercise of GDPR rights, you can contact GuardaMe via the Contact page. Responses are typically provided within 30 days of receipt.