top of page

Privacy Policy

Privacy Policy

Last updated: 22-5-26

This Privacy Policy describes how the website www.martinag.photography collects and processes the personal data of users who visit the website or use the online services available, in accordance with Regulation (EU) 2016/679, known as the GDPR.

1. Data Controller

The Data Controller is:

Martina Gelli Photography
Website: www.martinag.photography
Email: martinagelli@hotmail.com​

For any request regarding the processing of personal data, users may contact the Data Controller at the email address indicated above.

2. Types of data collected

The website may collect the following categories of personal data:

  • browsing data, such as IP address, browser type, operating system, pages visited and access time;

  • data voluntarily provided by the user through contact forms, information requests or email communications;

  • data necessary to manage any orders, purchases or requests related to the online shop, such as name, surname, email address, shipping address and order details;

  • data related to the creation or management of a user account, where available;

  • data collected through cookies or similar technologies, as described in the website’s Cookie Policy.

3. Purposes of processing

Personal data is processed for the following purposes:

  • to allow the correct browsing and functioning of the website;

  • to respond to information requests sent through the contact form or by email;

  • to manage any orders, purchases, payments, shipments and communications relating to purchased products;

  • to comply with tax, accounting and legal obligations;

  • to improve the browsing experience and monitor the functioning of the website;

  • to prevent fraud, abuse or improper use of the website;

  • to send promotional communications or newsletters, only where the user has given specific consent.

4. Legal basis for processing

The processing of personal data is based on one or more of the following legal bases:

  • performance of a contract or pre-contractual measures, for example to manage orders, purchases or user requests;

  • compliance with a legal obligation, for tax, accounting or administrative purposes;

  • legitimate interest of the Data Controller, to ensure the security, maintenance and proper functioning of the website;

  • user consent, where required, for example for newsletters, marketing activities or non-technical cookies.

5. Processing methods

Data is processed using electronic and digital tools, adopting appropriate technical and organisational measures to protect it from unauthorised access, loss, alteration, disclosure or misuse.

Processing is carried out in compliance with the principles of fairness, lawfulness, transparency, minimisation and security required by applicable legislation.

6. Data retention

Personal data is stored for the time necessary to achieve the purposes for which it was collected.

In particular:

  • data sent through contact forms or by email is stored for the time necessary to handle the request;

  • data related to orders and purchases is stored for the period required by tax and accounting regulations;

  • data processed on the basis of consent is stored until such consent is withdrawn;

  • technical browsing data is stored for the time necessary for the functioning and security of the website.

7. Disclosure of data to third parties

Personal data may be disclosed to third parties only when necessary for the functioning of the website or for the provision of the services requested.

By way of example, data may be processed by:

  • hosting and technical maintenance service providers;

  • platforms used to manage the website;

  • online payment services;

  • couriers or shipping services, where necessary;

  • tax, administrative or legal consultants;

  • analytics or marketing tools, if present and authorised.

These parties will process the data according to the instructions of the Data Controller or as independent data controllers, within the limits provided by applicable legislation.

8. Transfer of data outside the European Union

Some services used by the website may involve the transfer of data to countries outside the European Union.

In such cases, the transfer will take place in compliance with the safeguards provided by the GDPR, such as adequacy decisions, standard contractual clauses or other instruments recognised by applicable legislation.

9. Cookies

The website may use technical cookies, which are necessary for the proper functioning of the pages, and third-party or profiling cookies only with the user’s prior consent, where required.

For more information on the types of cookies used, their purposes and how consent is managed, users are invited to consult the website’s Cookie Policy.

10. User rights

Users may exercise, at any time, the rights provided for under Articles 15-22 of the GDPR, including:

  • right of access to personal data;

  • right to rectification;

  • right to erasure;

  • right to restriction of processing;

  • right to object;

  • right to data portability;

  • right to withdraw consent, where processing is based on consent.

Requests may be sent to the Data Controller at: [insert email address].

Users also have the right to lodge a complaint with the competent supervisory authority.

11. Changes to this Privacy Policy

This Privacy Policy may be updated over time in order to comply with regulatory, technical or organisational changes.

Users are invited to consult this page periodically to check for any updates.

bottom of page