MB.
/ Privacy Policy

Privacy Policy

Last updated: 2026-05-28

1. Data controller

The data controller is Matteo Bernardini, natural person, reachable at matteobern92@yahoo.it. No VAT number is associated.

2. Types of data collected

  • Data you provide via the contact form: name, email, subject, reason and message.
  • Navigation data: IP address, user-agent, technical logs, request timestamps, collected for security and diagnostics.
  • Anti-bot token generated by Cloudflare Turnstile when the form is submitted, to prevent automated spam.
  • Anonymous usage statistics (only if you opt-in via the "Analytics" toggle in the cookie banner). No analytics tool is active at this time.

3. Purposes and legal bases

  • Replying to form submissions — legal basis: art. 6(1)(b) GDPR (pre-contractual measures requested by the data subject).
  • Site security and abuse prevention (technical logs, Turnstile) — legal basis: art. 6(1)(f) GDPR (legitimate interest in providing a secure service).
  • Usage statistics — legal basis: art. 6(1)(a) GDPR (consent), revocable at any time from the cookie banner.

4. Recipients of the data

Data may be processed by the following processors:

  • Supabase (database hosting and authentication)
  • Cloudflare (Turnstile anti-bot and infrastructure)
  • Email providers used to deliver and read messages

Some providers may process data outside the European Economic Area; in that case transfers rely on Standard Contractual Clauses approved by the EU Commission.

5. Retention period

  • Contact form messages: up to 24 months from last exchange.
  • Technical/security logs: up to 12 months.
  • Cookie preferences: 12 months (then consent is requested again).

6. Your rights

Under art. 15–22 GDPR you have the right to:

  • access your data,
  • request rectification or erasure,
  • restrict or object to processing,
  • data portability,
  • withdraw consent at any time,
  • lodge a complaint with the Italian Data Protection Authority (garanteprivacy.it) or your local supervisory authority.

To exercise your rights, email matteobern92@yahoo.it.

7. Changes to this policy

This policy may be updated. The last revision date is shown at the top of the page.

This notice is a summary compliant with art. 13 GDPR for a personal portfolio site and is not legal advice.

Cookie Policy