Transparency

Privacy Policy

Last updated: May 2026 · Under EU Reg. 2016/679 (GDPR)

1. Data controller

The data controller is the portal Casale di Carinola — Village & Associations (the "Portal"), a project run by the village associations and based in Casale di Carinola (CE), Italy.

For any request please write to upd.aps25@gmail.com or call +39 320 1311643.

2. What data we collect

We collect only the data you voluntarily provide through:

  • Contact form: name, email, phone (optional), subject and message content.
  • Interest sign-up form: name, email, selected interest categories, processing consent, and optional consent to the newsletter.
  • Minimal technical data: IP address at the time of sign-up, for security and abuse prevention.

We do not use profiling cookies or advertising tracking tools.

3. Purposes and legal basis

Your data is processed for the following purposes:

  • Replying to your requests sent via the contact form — legal basis: performance of a request by the data subject (Art. 6.1.b GDPR).
  • Sending you updates on events and initiatives in the categories you have chosen — legal basis: your explicit consent (Art. 6.1.a GDPR).
  • Sending you the Portal newsletter — legal basis: your separate, explicit consent (Art. 6.1.a GDPR), which you may withdraw at any time.

4. Data retention

We retain your data as long as you keep your sign-up active or until you explicitly ask us to delete it. Messages sent via the contact form are kept for as long as needed to handle the request and for up to 24 months afterwards for archive purposes.

When you unsubscribe (via the unsubscribe link in every email, or by written request), your data is removed from our active records within 30 days.

5. Who we share data with

Your data is processed internally by authorised members of the Portal and the partner associations. To run the site we rely on technical providers (hosting, database, email delivery) that act as data processors under GDPR-compliant agreements.

We do not sell your data. We do not share it with third parties for marketing purposes.

6. Your rights

At any time you may exercise the rights granted by Arts. 15–22 GDPR:

  • access your data and obtain a copy;
  • request correction or update;
  • request deletion ("right to be forgotten");
  • restrict or object to processing;
  • withdraw your consent at any time (withdrawal does not affect processing already carried out);
  • lodge a complaint with the Italian Data Protection Authority (garanteprivacy.it).

To exercise your rights please write to upd.aps25@gmail.com. We reply within 30 days.

7. Security

We take suitable technical and organisational measures to protect your data from unauthorised access, loss or disclosure: encrypted connections (HTTPS), database access by credentials, row-level security rules (RLS), and secret tokens for confirmation and unsubscribe operations.

Got a question or want to exercise a right? Write to us from the contact page or directly at upd.aps25@gmail.com.