Privacy policy

The address of our website is:

Who we are

This document is GDPR compliant.

A website privacy policy (or data protection policy) outlines the procedures you have created to protect your visitors’ personal data. Use this General Data Protection Regulation (GDPR) compliant privacy policy template for any e-commerce, blog, chatroom or other website that asks users to disclose personal information. As well as reassuring online customers and users, it can also ensure that you have their permission to store cookies on their computer. The website privacy policy aims to make your internet business compliant with UK and EU data privacy laws and covers key issues such as use of personal data, links to other websites, passwords and security.

When should I use a privacy policy?

Use this website privacy policy:

  • when you collect personal information on the website
  • to make sure you comply with data privacy legislation

What’s included in a privacy policy?

This website privacy policy covers:

  • the nature of data collected by the site
  • the use of data
  • linked websites
  • data security and access
  • cookies
  • transfers of data outside Europe

What’s a privacy policy?

A website privacy policy outlines your business’ practices in relation to the collection, storage and use of personal data gathered on your website. Examples of data include names, dates of birth, contact details or credit card details. It sets out the purpose of data collection on your website, the types of information collected and the scope and limitation of data processing on your website.

Do I need a privacy policy?

The collection and use of personal data by online businesses in the UK must comply with the UK data protection laws and the GDPR. This policy is designed to allow the website operator to comply with the fair processing obligation and to obtain the user’s consent to that processing as required by law.

Who is a Data Protection Officer (DPO)?

A Data Protection Officer assists your business with internal compliance and can inform or advise you of your data protection obligations, provide recommendations regarding any Data Protection Impact Assessments and act as a contact point for data subjects and the Information Commissioner’s Office (ICO).

What types of information will be collected from users?

It depends on the purpose for which the data is gathered. If you are selling and trading on your website, you may wish to collect your customers’ personal data such as names and credit card details. However, data protection law defines personal data as broad as to include information about personal opinions and IP addresses.

What are cookies?

Cookies are small text files placed on a user’s computer, which are commonly used to collect personal data. Most website operators place cookies on the browser or hard drive of their user’s computer. Cookies can gather information about the user’s use of the website or enable the website to recognise the user as an existing customer when he returns to the website at a later date. The law protects users of your website and lets them opt out from the use of cookies on their website browser.

This document allows you to specify the types of cookies, their purpose and the method that will be used to gain consent of the user for the use of these cookies.

Do I need to display my personal details?

If you are a UK registered business you will need to disclose certain information about your company on your website or website privacy policy. You must display registered information such as:

  • Company name
  • Registered number
  • Place of registration
  • Registered office address
  • Contact details, including an email address
  • Details of how to contact the business

For sole traders and individuals, you must display the address of the principle place of business.

What’s an Information Management Security System (IMSS)?

An IMSS is a set of principles and procedures for systematically managing an organisation’s data. The goal of an IMSS is to minimise the risk for the business and ensure business continuity by proactively limiting the impact of a security breach. These practices relate to the protection of information, and are developed in accordance with the business’ position.

What is the General Data Protection Regulation (EU) 2016/679 ?

This is the GDPR which is a European piece of legislation. This regulation applies to all EU Member States since 2018.

Further advice

Ask a lawyer for:

  • websites collecting sensitive personal data

This privacy policy is governed by the law of England and Wales or the law of Scotland and complies with UK and EU data privacy legislation.

Other names for Privacy policy

Privacy policy for a website, Data protection policy or Online privacy policy.

Chi siamo

Who are we

The address of our website is:
What personal data we collect and why we collect it

When visitors leave comments on the site, we collect the data shown in the comments form in addition to the visitor’s IP address and the browser user agent string to facilitate spam detection.

An anonymized string created from your email address (otherwise called a hash) can be provided to the Gravatar service to see if you are using it. The privacy policy of the Gravatar service is available here: After your comment is approved, your profile picture is visible to the public in the context of your comment.

If you upload images to the website, you should avoid uploading images that include embedded position data (EXIF GPS). Website visitors can download and extract any location data from the images on the website.
Contact form

If you leave a comment on our site, you can choose to save your name, email address and website in cookies. They are used for your convenience so that you don’t have to re-enter your details when you leave another comment. These cookies will last for one year.

If you visit the login page, a temporary cookie will be set to determine if your browser accepts cookies. This cookie does not contain personal data and is deleted when you close the browser.

When you log in, several cookies will be set to save your login information and your screen display options. Access cookies last two days while cookies for screen options last one year. If you select “Remember me”, your access will persist for two weeks. If you log out of your account, the access cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie does not include personal data, but simply indicates the ID of the article just modified. Expires after 1 day.
Embedded content from other websites

The articles on this site may include embedded content (e.g. videos, images, articles, etc.). Content embedded from other websites behaves in exactly the same way as if the visitor had visited the other website.

These websites can collect data about you, use cookies, integrate additional third-party tracking and monitor interaction with them, including tracking your interaction with embedded content if you have an account and are connected to those websites.
Who we share your data with
How long do we keep your data

If you leave a comment, the comment and its metadata are kept indefinitely. This is how we can automatically recognize and approve any subsequent comments instead of keeping them in a moderation queue.

For users who register on our website (if any), we also store the personal information they provide in their user profile. All users can view, edit or delete their personal information at any time (except their username which they cannot change). Website administrators can also view and edit this information.
What rights do you have on your data

If you have an account on this site, or have left comments, you can request to receive an exported file from the site with the personal data we have about you, including the data you have provided to us. You can also request that we delete all personal data concerning you. This does not include data that we are obliged to keep for administrative, legal or security purposes.
Where we send your data

Visitor comments can be checked through an automatic spam detection service.
Your contact information
Additional information
How we protect your data
What procedures we have set up to prevent data breaches
From which third parties do we receive data
What automated decision making and / or profiling we do with user data
Industry regulatory disclosure requirements