Privacy Policy updated as of 16/07/2025

In compliance with Legislative Decree No. 196 of June 30, 2003 (Code on the Protection of Personal Data) and EU Regulation 2016/679 (GDPR), this site protects the privacy of visitors and users by taking proportionate measures not to infringe on their rights.

1. Scope of application.

This policy applies only to the online activities of this site and applies to visitors/users. It does not apply to information collected through different channels.

2. Data controller

Pracal by Irosh Srl
P. VAT: 05128780656
Email: contatti@pracal.com

3. Purpose of processing and legal basis

Purpose Legal Basis
Site navigation and operation Legitimate interest (Art. 6.1.f GDPR)
Security, abuse prevention Legitimate interest (Art. 6.1.f GDPR)
Responding to form requests Execution of a contract (Art. 6.1.b GDPR)
Newsletter subscription / promotional communications Explicit Consent (Art. 6.1.a GDPR)

4. Data collected

The site automatically collects the following data through logs and analytical tools:

  • IP address (anonymized)
  • Browser type and device
  • Date and time of access
  • Visited pages and referrals

Data collected through forms or voluntary interaction:

  • First and Last Name
  • Email
  • Phone number
  • VAT number and company name (in case of business contacts)

5. Methods of processing

Processing is carried out by means of electronic and telematic instruments, with organizational logics related to the indicated purposes. Technical and organizational security measures are taken to prevent unauthorized access or illicit use.

6. Data Retention.

Data are kept for the time strictly necessary to achieve the above purposes and in any case not beyond the terms of the law.

7. Cookie

The site uses:

  • Technical (session, functional) cookies: do not require consent.
  • Analytical cookies (e.g., Google Analytics): anonymized, used only in aggregate.
  • Third-party cookies (YouTube, social plugins): active only with consent.

Users can manage cookies through their browser settings.

8. Third-party services

Google Analytics

Analytics tool that uses cookies to collect aggregated and anonymized data on site visits. Google is appointed as the data controller.

YouTube

Embedded videos with "Advanced Privacy" mode: cookies are activated only if the user plays the video.

Social Plugin

Sharing buttons for social networks: cookies are enabled only if the user is logged in and interacts with the plugin.

9. Brevo (formerly Sendinblue)

The site uses Brevo for:

  • Contact form and enrollment management
  • Sending newsletters and promotional communications

The data are stored on EU servers. Brevo acts as a data controller under Art. 28 GDPR.
Cookies from Brevo may be activated upon consent to track opens/clicks in emails.

Privacy policy Brevo: https://www.brevo.com/it/legal/privacypolicy/

10. Extra-EU data transfer

Some services (Google, Facebook, Microsoft) may involve transfers to countries outside the EU. The transfer is authorized according to the new Data Privacy Framework (DPF) or standard contractual clauses.

11. User Rights.

Users can exercise their rights under Articles 15-22 of the GDPR:

  • Data access
  • Rectification or deletion
  • Limitation of treatment
  • Opposition
  • Portability (if applicable)
  • Withdrawal of consent (without affecting the lawfulness of previous processing)
  • Complaint to the Privacy Guarantor(www.garanteprivacy.it)

Requests should be addressed to the Data Controller.

12. Data processing of minors

The site does not intentionally collect personal data relating to children under the age of 14. In case of an unintentional violation, the data will be deleted promptly upon request.

13. Amendments to this policy

This policy may be subject to change or update. Users are encouraged to consult it periodically.