Privacy-policy

Last updated: 13 July 2026

Last updated: 13 July 2026

Data Controller and Scope

This Privacy Policy explains how personal data may be processed when you visit marcofalappa.com, a personal portfolio website owned and managed by Marco Falappa. The Data Controller is Marco Falappa, based in Italy. For any privacy-related request, you may contact marco.falappa@icloud.com. This policy applies only to this website and does not cover external websites or services linked from its pages.

Information We Process

When you visit the website, its hosting and security infrastructure may automatically process technical information such as your IP address, browser and device type, operating system, requested pages, date and time of access, referring page and server logs. If you contact me by email, I may process your name, email address, message and any other information you voluntarily provide. Please avoid sending sensitive personal information unless it is strictly necessary for your request.

To provide and improve our services.
To personalize your experience on our website.
For marketing and promotional communications (if you have opted in). To analyze site traffic and trends.

Purposes and Legal Bases

Technical information is processed to display and operate the website, maintain its security, prevent misuse and identify technical problems. This processing is based on the legitimate interest in providing a secure and functional website. Information provided by email is processed to respond to enquiries, manage professional communications and, where applicable, take steps requested before entering into a professional agreement. Data may also be processed where necessary to comply with legal obligations or establish, exercise or defend legal claims. No automated decision-making or profiling is carried out.

Cookies and Tracking Technologies

At present, this website uses only technical cookies or similar technologies that may be necessary for its operation, security and correct display. It does not use advertising, profiling or cross-site tracking cookies. You can manage or delete cookies through your browser settings, although disabling strictly necessary technologies may affect certain website functions. If analytics, embedded media or other non-essential tracking technologies are introduced in the future, this policy and the relevant consent settings will be updated before they are activated.

Service Providers and External Links

Personal data may be processed by service providers supporting website hosting, domain management, security, email delivery, maintenance or content distribution. These providers process information only as necessary to perform their services and according to their respective contractual and legal obligations. Personal data are not sold or rented. Information may be disclosed to public authorities, professional advisers or other parties only where required by law or necessary to protect legal rights. The website may contain links to third-party websites whose privacy practices are outside my control.

Data Retention and Security

Personal data are retained only for as long as necessary for the purposes for which they were collected. Technical logs are retained according to the website provider’s security and maintenance settings, unless longer retention is necessary to investigate misuse or comply with legal obligations. Email correspondence is retained for the time required to respond to the request and manage any resulting professional relationship, and may be kept longer where necessary for contractual, administrative or legal purposes. Reasonable technical and organisational measures are used to protect personal data, although no online system can guarantee absolute security.

Your Rights, Complaints and Policy Updated

Under the GDPR, you may request access to your personal data, correction of inaccurate information, deletion, restriction of processing and, where applicable, data portability. You may also object to processing based on legitimate interests and withdraw consent at any time where consent is the applicable legal basis. Requests may be sent to marco.falappa@icloud.com. You also have the right to lodge a complaint with the Italian Data Protection Authority, the Garante per la protezione dei dati personali. This Privacy Policy may be updated to reflect changes to the website, its services or applicable legal requirements. The latest revision date will always appear at the top of this page.