Privacy Policy

1. Introduction

This Privacy Policy explains how EnStudio (“we”, “our”, “us”) collects, uses, and protects personal data through the website en-studio.eu.
We are committed to ensuring compliance with the EU General Data Protection Regulation (GDPR) and to protecting the privacy of all visitors.

By using this website, you consent to the practices described in this policy.

2. Data Controller

EnStudio
Administrative Headquarters:
Via Redi 1, 42124 Reggio Emilia, Italy

Commercial Office:
Via Josip Broz Tito 11/C, 42124 Reggio Emilia, Italy

Email: [email protected]

3. Types of Data We Collect

3.1 Data you provide voluntarily

When you fill out the contact form or send us an email, you may provide:

• Name

• Email address

• Company name

• Phone number

• Message content

• Any other information you choose to share

This information is used exclusively to respond to your inquiry or provide requested information.

3.2 Automatically collected data (technical data)

While browsing the website, we may collect technical data such as:

• IP address (anonymized if analytics tools are used)

• Browser type and version

• Device type

• Pages visited

• Duration of sessions

• General geographic location (city/country)

This data is collected through cookies and analytics tools and is not used for identification.

See our Cookie Policy for more details.

3.3 No sensitive data

We do not collect sensitive personal data (e.g., health data, religious views, biometrics, etc.).

4. Purpose of Data Processing

We process personal data solely for the following purposes:

• Responding to inquiries received through the contact form or email

• Providing customer or partner support

• Improving website functionality and performance

• Ensuring security and preventing misuse

• Fulfilling legal obligations if required

We do not use personal data for marketing or profiling.

5. Legal Basis for Processing (GDPR)

The processing of your data is based on:

• Art. 6(1)(b) – responding to your request or performing pre-contractual measures

• Art. 6(1)(f) – legitimate interests such as improving website performance and security

• Art. 6(1)(c) – compliance with legal obligations

Where applicable (e.g., for optional analytics), consent is obtained in accordance with Art. 6(1)(a).

6. Data Storage and Retention

We retain your personal data only for the time necessary to:

• respond to your inquiry

• fulfill administrative or legal obligations

Technical and analytics data is retained only in aggregated, anonymous form.

All data is stored securely and access is restricted.

7. Data Sharing

We do not sell, rent, or trade personal data.

We may share limited data only with:

• IT service providers (hosting, email servers, cloud services)

• Analytics providers (e.g., Google Analytics or Cloudflare Web Analytics)

• Legal authorities when required by law

All third parties operate in compliance with GDPR.

8. Your Rights (GDPR)

As an EU data subject, you have the right to:

• Access your personal data

• Rectify incorrect or incomplete data

• Delete your data (“Right to be Forgotten”)

• Restrict or object to processing

• Withdraw consent at any time

• Receive a copy of your data (data portability)

To exercise your rights, contact us at: [email protected]

9. Security Measures

We implement appropriate technical and organizational measures to protect data, including:

• Encrypted communication (HTTPS/SSL)

• Access restriction

• Secure storage solutions

• Monitoring for unauthorized access attempts

10. International Transfers

We do not intentionally transfer personal data outside the European Union.
If third-party services are located outside the EU (e.g., Google Analytics), transfers are made in compliance with GDPR using adequate safeguards.

11. Updates to This Policy

We may update this Privacy Policy to reflect legal or technical changes.
The latest version will always be available on this page.

Last update: 02.12.2025