Privacy Policy

Last updated: 14 March 2026

1. Data Controller

The data controller for personal data processing is:

Italfrance S.r.l.
Registered office: Via M.R. Imbriani 428, 76011 Bisceglie (BT), Italy
VAT number: IT07153820720
REA: BA-536387
Share capital: €10,500.00 fully paid up
Email: italfrancesocial@gmail.com
Phone: +39 348 331 4224

2. Types of data collected

Through this website, the Data Controller collects the following categories of personal data:

2.1 Data voluntarily provided by the user

By filling out the quote request form, the user voluntarily provides the following data:

  • Company name
  • Email address
  • Phone number
  • Type of services requested
  • Descriptive message of the request

2.2 Browsing data

The computer systems and software procedures used to operate this website acquire, during their normal operation, certain data whose transmission is implicit in the use of Internet communication protocols. This data includes IP addresses, browser type, operating system, domain name and addresses of the websites from which access or exit was made, information on the pages visited, access time, time spent on individual pages and other parameters related to the user's operating system and computing environment.

3. Legal basis for processing

The processing of personal data is based on the following legal bases under Article 6 of Regulation (EU) 2016/679 (GDPR):

  • To respond to your request — the data you enter in the quote form is processed because it is necessary to provide you with a response (legal basis: performance of pre-contractual measures, Art. 6(1)(b) GDPR).
  • To protect the website — certain technical data is used to prevent abuse, spam and cyberattacks (legal basis: legitimate interest of the Data Controller, Art. 6(1)(f) GDPR).

4. Purposes of processing

Personal data is processed for the following purposes:

  • Managing quote requests: responding to requests submitted through the contact form, preparing personalised quotes and providing information about the services offered.
  • Sending confirmations: sending confirmation emails acknowledging receipt of the request to the email address provided.
  • Website operation: ensuring the correct technical functioning of the website, IT security and abuse prevention (e.g. anti-spam protection with rate limiting).
  • Legal obligations: complying with obligations under applicable laws, regulations and EU legislation.

5. Data recipients

Personal data may be communicated to the following categories of recipients, acting as data processors or sub-processors:

  • Resend, Inc. — an external service we use to send confirmation and notification emails when you fill out the quote form. It is based in the United States and is contractually committed to protecting your data in compliance with European laws.
  • Vercel, Inc. — the platform that hosts and distributes this website on the internet. It may log technical access data (such as IP addresses) to ensure service operation. It is based in the United States and adopts the protection measures required by the GDPR.
  • Cloudflare, Inc. — a service that protects the website from cyberattacks and improves its loading speed. It processes technical browsing data (such as IP addresses) to perform this service. It is based in the United States and adopts the protection measures required by the GDPR.

Personal data will not be disclosed or communicated to third parties other than those indicated above, except where required by law.

6. Transfer of data outside the EU

Some of the above-mentioned providers are based in the United States. The transfer of your data to these countries takes place in full compliance with European privacy laws: contracts with these providers include the safeguards required by the European Union to protect data transferred outside European borders (so-called Standard Contractual Clauses, approved by the European Commission).

7. Data retention period

Personal data provided through the quote request form will be retained for the time strictly necessary to fulfil the purposes for which it was collected and, in any case, no longer than 24 months from collection, unless legal obligations require longer retention.

Browsing data is retained for a maximum period of 90 days, unless required for the investigation of offences.

8. Data subject rights

Under Articles 15-22 of the GDPR, the data subject has the right to:

  • Access (Art. 15): obtain confirmation of whether personal data concerning them exists and, if so, obtain a copy.
  • Rectification (Art. 16): obtain the rectification of inaccurate personal data or the completion of incomplete data.
  • Erasure (Art. 17): obtain the erasure of personal data, in the cases provided for by law.
  • Restriction of processing (Art. 18): obtain the restriction of processing in the cases provided for by law.
  • Portability (Art. 20): receive personal data in a structured, commonly used and machine-readable format, and transmit it to another controller.
  • Objection (Art. 21): object to the processing of personal data.
  • Withdrawal of consent: withdraw consent at any time, without affecting the lawfulness of processing based on consent given before withdrawal.

To exercise their rights, the data subject may send a written request to: italfrancesocial@gmail.com.

The data subject also has the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali — www.garanteprivacy.it).

9. Cookies

This website uses only technical cookies, strictly necessary for the correct functioning of the site. No profiling, analytics or marketing cookies are used. No user tracking is performed.

For detailed information on the cookies used, their purposes, duration and how to manage them, please refer to our Cookie Policy.

10. Changes to this privacy notice

The Data Controller reserves the right to make changes to this privacy notice at any time, notifying users through publication on this page. Please check this page regularly for any updates.