Protecting personal data is a fundamental part of any professional consulting relationship. This Privacy Policy explains how personal information is collected, processed, and safeguarded when you visit this website, subscribe to content, or engage in consulting and advisory services provided by Andrea Stanese.

This page is intended not only to meet legal transparency requirements, but also to clarify how trust, confidentiality, and data responsibility are handled throughout every professional interaction.

1. Who This Policy Applies To

This Privacy Policy applies to all visitors, subscribers, and potential or active clients who interact with:

  • consultation request forms

  • newsletter and insights subscriptions

  • direct professional communications initiated via this site

By using this website or submitting your information, you acknowledge and accept the principles described below.

2. Data Controller

The data controller responsible for the processing of personal data is:

Andrea Stanese
Independent consultant and advisor
Email contact available through the website contact forms

All data is handled directly and is never sold, rented, or traded.

3. What Data Is Collected

Depending on how you interact with the site, the following data may be collected:

  • Name and surname

  • Email address

  • Company name (if provided)

  • Professional role or context (if provided)

  • Messages or inquiries submitted through forms

  • Newsletter subscription preferences

  • Technical data (IP address, browser type, device type) collected anonymously for analytics and security purposes

No sensitive personal data is intentionally collected.

4. Why Data Is Collected

Personal data is processed exclusively for legitimate professional purposes, including:

  • responding to consultation or advisory requests

  • evaluating potential collaborations or service fit

  • sending newsletters, insights, and professional content (only with consent)

  • improving website content, structure, and relevance

  • complying with legal and regulatory obligations

Data is never used for automated profiling or decision-making.

5. Legal Basis for Processing (GDPR)

Data processing is carried out in accordance with Regulation (EU) 2016/679 (GDPR) based on one or more of the following legal grounds:

  • explicit user consent

  • pre-contractual or contractual necessity

  • legitimate professional interest

  • legal compliance obligations

Consent may be withdrawn at any time.

6. Newsletter and Insights Subscription

If you subscribe to the newsletter or insights section:

  • your email address is used solely to send professional content

  • communications are non-aggressive, non-promotional spam-free messages

  • each email contains a clear unsubscribe option

Unsubscribing immediately removes your data from the mailing list.

7. Data Storage and Security

Appropriate technical and organizational measures are in place to protect personal data from:

  • unauthorized access

  • disclosure or alteration

  • accidental loss or destruction

Data is stored only for as long as necessary to fulfill its intended purpose.

8. Third-Party Services

This website may rely on trusted third-party tools (e.g. hosting, email delivery, analytics) that are GDPR-compliant. These providers process data only on documented instructions and never for independent purposes.

9. Your Rights

Under GDPR, you have the right to:

  • access your personal data

  • request correction or deletion

  • restrict or object to processing

  • withdraw consent

  • lodge a complaint with a supervisory authority

Requests can be submitted via the contact channels on this website.

10. Policy Updates

This Privacy Policy may be updated to reflect legal, technical, or operational changes. The latest version is always published on this page.

In Summary

Professional consulting requires discretion, respect, and transparency. Personal data shared through this website is treated with the same care and responsibility applied to client engagements and advisory work.