Privacy Policy – Digitaac.it

(in accordance with EU Regulation 2016/679 – GDPR)

1. Data Controller

Pursuant to Regulation (EU) 2016/679 (“GDPR”), the Data Controller is:

Digitaac.it Email: digitaac.it@gmail.com

The Data Controller is responsible for the processing of personal data collected through this website.

2. Types of Data Processed

The Data Controller processes the following categories of personal data:

2.1 Data voluntarily provided by the user

  • Email address submitted by the user via the waitlist signup form

2.2 Technical browsing data

The IT systems and software procedures responsible for the operation of the website acquire, during their normal operation, some data whose transmission is implicit in the use of Internet communication protocols, including:

  • IP address
  • browser type
  • operating system
  • technical information about the device

Such data are not collected to be associated with identified data subjects; however, by their nature, they could allow user identification through processing and association with data held by third parties.

3. Purpose of Processing

Personal data are processed for the following purposes:

3.1 Waitlist management

  • Registration of the user in the Digitaac.it project waitlist
  • Internal notification to the Data Controller of the successful registration

3.2 Possible future communications (only if activated)

  • Sending updates about the Digitaac.it project, subject to an appropriate legal basis (e.g., separate consent)

3.3 Website security and functionality

  • Ensuring the correct technical functioning of the website
  • Preventing abuse or fraudulent activities

4. Legal Basis for Processing

The processing of personal data is based on the following legal grounds under Article 6 GDPR:

  • Art. 6(1)(a) – consent of the data subject, expressed by voluntarily filling in the waitlist form
  • Art. 6(1)(f) – legitimate interest of the Data Controller, limited to technical data necessary for website security and operation

5. Processing Methods

Data processing is carried out using electronic and telematic tools, in accordance with the principles of:

  • lawfulness, fairness, and transparency
  • data minimization
  • purpose limitation
  • integrity and confidentiality

Technical note on the current architecture

The website does not use a structured database to store email addresses.

Form submission:

  • generates an automated email notification to the Data Controller
  • does not involve the creation of a persistent email archive in application databases

However, emails may be temporarily stored within the Data Controller’s email systems.

6. Data Retention

Personal data are retained:

  • for the time strictly necessary to achieve the purposes for which they were collected
  • until a possible deletion request by the data subject
  • in the case of emails, within the Data Controller’s email systems, according to the policies of the provider used

7. Data Disclosure and Transfer

Personal data are not sold or transferred to third parties for commercial purposes.

Data may be accessed only by:

  • persons authorized by the Data Controller
  • technical service providers (e.g., hosting, email providers), appointed where necessary as Data Processors pursuant to Article 28 GDPR

Data are not transferred outside the European Economic Area, unless adequate safeguards provided by the GDPR are in place.

8. Data Subject Rights

The user, as a data subject, may exercise at any time the rights provided under Articles 15–22 GDPR, including:

  • right of access
  • right to rectification
  • right to erasure (“right to be forgotten”)
  • right to restriction of processing
  • right to object
  • right to data portability
  • right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before withdrawal

Requests may be sent to: digitaac.it@gmail.com

9. Data Security

The Data Controller adopts appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including:

  • protection of access to email systems
  • data minimization
  • restriction of access to authorized persons only

10. Cookies

The website uses only technical cookies necessary for the operation of the platform.

No profiling or third-party tracking cookies are used.

Any future analytics or marketing tools will be activated only in compliance with GDPR and after updating this notice.

11. Changes to this Policy

The Data Controller reserves the right to modify this Privacy Policy at any time.

Changes will be published on this page and will take effect immediately upon publication.

12. Contact

For any information regarding the processing of personal data:

Email: digitaac.it@gmail.com

Be among the first to use it

We are building Digitaac. Leave your email and we will notify you as soon as we open access.