Cedrik Ciurca Consulting

Privacy

Privacy Policy

Information on the processing of personal data under Regulation (EU) 2016/679.

Privacy Policy

This Privacy Policy describes how personal data collected through cedrikciurca.com is processed under Regulation (EU) 2016/679 ("GDPR").

1. Data controller

The data controller is Cedrik Ciurca, P.IVA 01310280076, Saint-Vincent, 11027 AO, Italy. Email: consulting@cedrikciurca.com.

2. Categories of data processed

The website may process the following categories of personal data:

  • identification data: name and surname;
  • contact data: email address, phone number;
  • professional data: company, activity or context of the request;
  • content of the message sent through the contact form;
  • technical navigation data necessary for the functioning of the website.

Providing data through the contact form is voluntary. Failure to provide the necessary data may prevent a response to the submitted request.

3. Purposes of processing

Personal data is processed to:

  • respond to requests sent through the contact form;
  • manage communications by email, phone or WhatsApp;
  • assess possible pre-contractual or professional contacts;
  • ensure the proper technical functioning of the website;
  • comply with any legal obligations.

4. Legal basis

Processing is based, depending on the case, on:

  • the consent of the data subject when voluntarily submitting a request through the contact form;
  • the performance of pre-contractual measures requested by the data subject;
  • the legitimate interest of the controller in ensuring the security and proper functioning of the website;
  • compliance with legal obligations, where applicable.

5. Processing methods

Data is processed using IT and telematic tools, with appropriate technical and organizational measures to protect it against unauthorized access, loss, alteration or unauthorized disclosure.

6. Data retention

Data submitted through the contact form is retained for the time necessary to respond to the request and manage any subsequent professional relationship.

If no further relationship follows, data may be retained for a maximum period of 24 months from receipt of the request, unless legal obligations or the need to protect the controller's rights require otherwise.

7. Disclosure of data to third parties

Personal data is not sold or transferred to third parties.

Data may be processed by technical providers necessary for the functioning of the website and related services, such as hosting providers, email services, security tools or technical maintenance providers.

Where an email sending service such as Resend is used for the contact form, the data entered in the form may be processed by the relevant provider exclusively to allow the request to be transmitted to the controller.

8. Transfers outside the EU

Some technical providers may process data outside the European Economic Area. In such cases, the transfer is carried out on the basis of appropriate safeguards provided by the GDPR, where applicable.

9. External links

The website may contain links to external services such as WhatsApp and LinkedIn. By clicking on these links, the user accesses third-party platforms subject to their own privacy policies.

10. Rights of the data subject

The data subject may exercise the rights provided by Articles 15-22 of the GDPR, including:

  • access to personal data;
  • rectification of inaccurate data;
  • erasure of data;
  • restriction of processing;
  • objection to processing;
  • portability, where applicable;
  • withdrawal of consent, where applicable.

To exercise these rights, it is possible to write to: consulting@cedrikciurca.com.

11. Complaint to the supervisory authority

The data subject has the right to lodge a complaint with the competent supervisory authority, according to the procedures provided by the applicable law.

12. Updates

This Privacy Policy may be updated over time. The version published on the website is the one currently in force.

Last update: June 2026.