top of page

Privacy Policy 2025

This Application collects some Personal Data from its Users.
Summary of the Policy

Personal data collected for the following purposes and using the following services:

  Access to accounts on third-party services
       Access to Facebook account
           Permissions: Access to private data; Access to activities; Access to friends lists; Access to requests
       Access to Twitter account
           Personal Data: Various types of data as specified by the service’s privacy policy

  Content commenting
       Facebook Comments
           Personal Data: Cookies; Usage data

  Contacting the User
       Contact via phone
           Personal Data: phone number
       Contact form
           Personal Data: Postal code; city; Tax Code; last name; email; first name; phone number; VAT number

  Social features
       Public profile
           Personal Data: city; last name; date of birth; email; image; address; country; first name; phone number; province

  Payment management
       2Checkout
           Personal Data: Various types of data as specified by the service’s privacy policy

  Interaction with social networks and external platforms
       Facebook Like button and social widgets, Twitter Tweet button and social widgets, VK Like button and social widgets, AngelList Follow button and social widgets, Tumblr button and social widgets, PayPal button and widgets, Google+ +1 button and social widgets, and Google Friend Connect
           Personal Data: Cookies; Usage data

Contact Information

Data Controller
Paolo Bonfiglio
Email address of the Data Controller: pbonfi@gmail.com
Full Policy

Data Controller
Paolo Bonfiglio
Email address of the Data Controller: pbonfi@gmail.com
Types of Data Collected

Among the Personal Data collected by this Application, either independently or through third parties, are: Cookies; Usage data; phone number; first name; last name; VAT number; email; postal code; city; Tax Code; address; date of birth; country; province; image.

Detailed information on each type of data collected is provided in the relevant sections of this privacy policy or through specific informational texts displayed before data collection.
Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically when using this Application.
Unless otherwise specified, all Data requested by this Application is mandatory. If the User refuses to provide it, the Application may be unable to provide the Service. In cases where this Application explicitly states that some Data is optional, Users are free not to provide such Data without any consequences on the availability or functionality of the Service.

Users who have doubts about which Data is mandatory are encouraged to contact the Data Controller.
The use of Cookies—or other tracking tools—by this Application or by the owners of third-party services used by this Application is intended to provide the Service requested by the User, in addition to any other purposes described in this document and in the Cookie Policy, if available.

The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through this Application and guarantees that they have the right to communicate or disclose it, releasing the Data Controller from any liability towards third parties.

Methods and Location of Data Processing
Processing Methods

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data.


Processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated.
In addition to the Data Controller, in some cases, other parties involved in the operation of this Application (such as administrative, commercial, marketing, legal staff, and system administrators) or external entities (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the Data. These entities may also be appointed, if necessary, as Data Processors by the Data Controller.
An updated list of Data Processors can always be requested from the Data Controller.
Legal Basis for Processing

The Data Controller processes Personal Data relating to the User if one of the following conditions applies:

  The User has given consent for one or more specific purposes. Note: In some jurisdictions, the Data Controller may be allowed to process Personal Data without the User’s consent or any other legal basis specified below until the User objects (“opt-out”) to such processing. However, this does not apply if the processing of Personal Data is regulated by European data protection law.
  Processing is necessary for the performance of a contract with the User and/or for pre-contractual measures.
  Processing is necessary for compliance with a legal obligation to which the Data Controller is subject.
  Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller.
  Processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.

The User may always request clarification from the Data Controller regarding the legal basis of each processing activity and whether processing is required by law, part of a contract, or necessary to enter into a contract.
Location

Data is processed at the operational offices of the Data Controller and at any other location where the parties involved in processing are located. For more information, contact the Data Controller.

The User’s Personal Data may be transferred to a country other than the one where the User is located. To obtain further details about the location of processing, the User can refer to the section providing details on the processing of Personal Data.

The User has the right to obtain information regarding the legal basis for the transfer of Data outside the European Union or to an international organization governed by public international law or established by two or more countries, such as the United Nations, as well as regarding the security measures adopted by the Data Controller to protect the Data.

The User can verify whether any such transfer occurs by reviewing the relevant section of this document on the processing of Personal Data or by contacting the Data Controller at the contact details provided at the beginning.
Data Retention Period

Data is processed and stored for as long as required for the purposes for which it was collected.

Therefore:

  Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the contract has been fully performed.
  Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is satisfied. The User can obtain further information regarding the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.

When processing is based on the User’s consent, the Data Controller may retain Personal Data for a longer period until such consent is revoked. Additionally, the Data Controller may be required to retain Personal Data for a longer period in compliance with a legal obligation or an order from an authority.

Once the retention period expires, Personal Data will be deleted. Therefore, after this period, the rights of access, deletion, rectification, and data portability can no longer be exercised.
Purposes of Data Processing

The User’s Data is collected to allow the Data Controller to provide its Services, as well as for the following purposes: Access to third-party service accounts, Payment processing, Content commenting, Contacting the User, Social features, and Interaction with social networks and external platforms.

For further detailed information on the purposes of processing and the Personal Data specifically relevant to each purpose, the User can refer to the respective sections of this document.
Facebook Permissions Requested by This Application

This Application may request certain Facebook permissions, allowing it to perform actions with the User’s Facebook account and collect information, including Personal Data, from it. This service allows this Application to connect with the User’s account on the Facebook social network, provided by Facebook Inc.

For more details on the following permissions, refer to the Facebook permissions documentation and Facebook’s privacy policy.

The requested permissions include:
Basic Information

The basic information of the User registered on Facebook, which normally includes the following Data: ID, name, image, gender, and localization language. In some cases, it also includes the User’s Facebook “Friends.” If the User has made additional Data publicly available, such Data will also be accessible.
Access to Private Data

Allows access to the User’s private data and that of their friends.
Access to Activities

Provides access to the User’s activity list.
Access to Friends Lists

Provides access to the lists of friends that the User has created.
Access to Requests

Provides read access to the User’s friend requests.
Details on the Processing of Personal Data

Personal Data is collected for the following purposes and using the following services:
Access to Accounts on Third-Party Services

This type of service allows this Application to retrieve Data from the User’s accounts on third-party services and perform actions with them.
These services are not activated automatically but require explicit authorization from the User.

  Access to Facebook Account (This Application)
  This service allows this Application to connect with the User’s account on the Facebook social network, provided by Facebook Inc.

  • Requested Permissions:

      Access to private data
      Access to activities
      Access to friends lists
      Access to requests

    Data Processing Location: USA – Privacy Policy. Subject adhering to the Privacy Shield.
    Access to Twitter Account (Twitter, Inc.)

    This service allows this Application to connect with the User’s Twitter account, provided by Twitter, Inc.

    Collected Personal Data: Various types of data as specified in the service's privacy policy.

    Data Processing Location: USA – Privacy Policy.
    Content Commenting

    Commenting services allow Users to create and publish their own comments regarding the content of this Application.

    Depending on the settings chosen by the Owner, Users may also leave comments anonymously. If the User provides their email address, it may be used to send notifications about replies to the same content. Users are responsible for the content of their comments.

    If a third-party commenting service is installed, it may still collect traffic data from the pages where the commenting service is present, even if Users do not actively use it.
    Facebook Comments (Facebook, Inc.)

    Facebook Comments is a service managed by Facebook, Inc. that allows the User to post and share their comments within the Facebook platform.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    Contacting the User
    Phone Contact (This Application)

    Users who have provided their phone number may be contacted for commercial or promotional purposes related to this Application, as well as for support requests.

    Collected Personal Data: Phone number.
    Contact Form (This Application)

    By filling out the contact form with their data, the User consents to their use for responding to requests for information, quotes, or any other inquiries specified in the form.

    Collected Personal Data: ZIP code; city; Tax Code; last name; email; first name; phone number; VAT number.
    Social Features
    Public Profile (This Application)

    Users may have a public profile visible to other Users. In addition to the provided Personal Data, this profile may include User interactions with this Application.

    Collected Personal Data: City; last name; date of birth; email; profile picture; address; country; first name; phone number; province.
    Payment Processing

    Payment processing services enable this Application to process payments via credit card, bank transfer, or other methods. The data used for payment is collected directly by the payment service provider without being processed in any way by this Application.

    Some of these services may also allow for scheduled messages to be sent to the User, such as email invoices or payment-related notifications.
    2Checkout (2Checkout.com, Inc.)

    2Checkout is a payment service provided by 2Checkout.com, Inc.

    Collected Personal Data: Various types of data as specified in the service's privacy policy.

    Data Processing Location: USA – Privacy Policy.
    Interaction with Social Networks and External Platforms

    These services allow interactions with social networks or other external platforms directly from this Application’s pages.

    Interactions and information obtained are subject to the User's privacy settings for each social network. Even if Users do not use the service, it may still collect traffic data related to the pages where it is installed.

    It is recommended to log out from these services to ensure that processed data is not linked to the User’s profile.
    Facebook Like Button and Social Widgets (Facebook, Inc.)

    The Facebook “Like” button and social widgets are services allowing interaction with the Facebook social network, provided by Facebook, Inc.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    Twitter Tweet Button and Social Widgets (Twitter, Inc.)

    The Twitter Tweet button and social widgets are services allowing interaction with the Twitter social network, provided by Twitter, Inc.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    VK Like Button and Social Widgets (VKontakte Ltd.)

    The VK Like button and social widgets are services allowing interaction with the VK social network, provided by VKontakte Ltd.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: Russia – Privacy Policy.
    AngelList Follow Button and Social Widgets (AngelList, LLC.)

    The AngelList Follow button and social widgets are services allowing interaction with the AngelList network, provided by AngelList, LLC.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    Tumblr Button and Social Widgets (Tumblr, Inc.)

    The Tumblr button and social widgets are services allowing interaction with the Tumblr social network, provided by Tumblr Inc.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    PayPal Button and Widgets (PayPal, Inc.)

    The PayPal button and widgets are services allowing interaction with the PayPal platform, provided by PayPal Inc.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: See PayPal’s Privacy Policy.
    Google+ +1 Button and Social Widgets (Google Inc.)

    The Google+ +1 button and social widgets are services allowing interaction with the Google+ social network, provided by Google Inc.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    Google Friend Connect (Google Inc.)

    Google Friend Connect is a social interaction service provided by Google Inc.

    Collected Personal Data: Cookies; Usage Data.

    Data Processing Location: USA – Privacy Policy.
    User Rights

    Users may exercise certain rights regarding their processed data.

    In particular, Users have the right to:

      Withdraw consent at any time – Users can revoke their previously given consent to the processing of their Personal Data.
      Object to data processing – Users can object to their data processing when it occurs on a legal basis other than consent.
      Access their data – Users have the right to obtain information about their processed data and receive a copy.
      Verify and request correction – Users can check the accuracy of their data and request updates or corrections.
      Restrict processing – Under certain conditions, Users can request the restriction of data processing, in which case the data will only be stored and not processed further.
      Request data deletion or removal – When certain conditions are met, Users can request the deletion of their data.
      Receive their data or have it transferred to another controller – Users have the right to receive their data in a structured, commonly used, and machine-readable format and, if technically feasible, to have it transmitted to another controller without hindrance.
      File a complaint – Users may lodge a complaint with the relevant data protection authority.

    To exercise these rights, Users can contact the Data Controller using the details provided in this document. Requests are processed free of charge and within one month.
    Legal References

    This privacy policy is based on multiple legislative frameworks, including Articles 13 and 14 of the EU Regulation 2016/679 (GDPR).

    Unless otherwise stated, this privacy policy exclusively concerns this Application.

bottom of page