Privacy Policy

pursuant to Art. 13 of Regulation (EU) 679/2016 (the “GDPR”)

Here are described the characteristics of the processing of personal data of users (the “Users”) of the website

This information is also provided pursuant to art. 13 of Regulation 2016/679/EU to those who interact with the web services of Cristina Leone accessible electronically from the address, corresponding to the home page of the official site of Cristina Leone.

The information must be considered as issued, exclusively, for the contents of the pages of this website and not also in relation to the sites that the user may find to consult through any links on the pages of the site.

1. Who processes personal data?

Following consultation of this site, data relating to identified or identifiable persons may be processed. The owner of their treatment is Cristina Leone, contactable via the email address or

Data processing place

The treatments connected to the web services of this site take place in Messina, Italy and are only handled by personnel in charge of the treatment. No data deriving from the web service is communicated to anyone other than those listed in this statement or disseminated. The information you find on this page does not apply to sites, apps and third-party content of any kind, even if accessible from the Site by clicking on links in it. In these cases, the provisions on data protection of such third parties may be applicable, which may be different from these and which we advise you to consult prior to the communication of any data.

2. What data are collected, and how?

Browsing data

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes IP addresses or domain names of computers used by users who connect to the site, URI (Uniform Resource Identifier) addresses of the requested resources, the browser, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server and other parameters related to the operating system and the computer environment of the user.

These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could also be used to ascertain responsibility in case of computer crimes against the site, except in this case, at present the data on web contacts do not persist beyond the time necessary to process the requests submitted.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of e-mail to the addresses indicated on this site, or the compilation of forms on the same present, involves the subsequent acquisition of the sender’s address and any other personal data entered and the subsequent processing for the purposes indicated therein and in any case to respond to requests from data subjects. It is ensured, however, that such processing will be based on the principles of fairness, lawfulness and transparency and protection of confidentiality as set out in Regulation 2016/679/EU.

Personal data are not disclosed to third parties. If requested, they must be made available to the Postal and Communications Police, the Judicial Authority and the Judicial Police.

3. Why are the Data collected, and according to what are they used for?

The Browsing Data will be used: to monitor the proper functioning of the Site, in anonymous and aggregate form, for statistical purposes related to the understanding of how the Site is used by users, to improve ease of access and increase its attractiveness, as well as to detect any technical problems as soon as possible.

These treatments are necessary to improve navigation on the Site and facilitate the use of the digital services offered. These treatments find their legal basis in the legitimate interest to the improvement of their products and is compatible with the position of Users as: (a) the monitoring of the operation of the Website and the statistical data related to its use does not involve direct identification; and (b) the interest of the Owner appears reasonably to be proper to the Users, which will thus be able to benefit from an increasingly performing and optimized Site.

These treatments find their legal basis in the need to respond to a specific request of the interested party and to execute a contract.

Any contact data collected on the various pages of the Site, if (and only if) the Users provide their consent by clicking in the appropriate box, will also be used to provide commercial information on new products and offers.

This information can be transmitted by e-mail, SMS, with instant messaging systems (such as Whatsapp or Telegram), or by telephone with operator. This processing finds its legal basis in the consent of the data subject.

(For convenience, when we refer together to Browsing Data and Personal Data, including Users’ contact details, we will simply call them “Data”).

4. And if the user is under 14 years of age?

The privacy policy provides that the consent given is valid only if the person who gives it is over 14 years old. Otherwise it is not possible to use the services of the site.

5. To whom are the Data communicated?

The Data will be communicated and may be known by employees and collaborators of the Data Controllers, who have been specifically designated for processing.

The complete list of data processors can be consulted by writing to or

6. Where are the Data processed?

The processing of data will be carried out at the headquarters of the Data Controller and the data will be stored in servers and/ or archives located within the European Union or in countries that give adequate guarantees of protection of personal data.

For example: some IT service providers for the management of contact and e-mail databases used by the Companies process the data in the USA, but fall under the so-called Privacy Shield: a system that protects European citizens when their data are transferred to the United States of America.

7. How are Data processed, protected and stored? And for how long?

The Data will be processed both in paper form and with electronic, IT or automated tools, through systems that ensure their protection, security and confidentiality.

In addition, the Data Controllers have adopted specific and appropriate logical, legal, organizational and technical security measures to prevent the loss of data, illicit or unauthorized use of the same and unauthorized access.

The Data will not be kept for more than necessary. In particular:

  • The Navigation Data – which do not allow the identification of Users – do not persist for more than 1 week and are deleted immediately after their aggregation (except for any need to ascertain crimes by the competent Judicial Authority);
  • The Personal Data, including the contact details used to respond to Users’ requests, the data of those who have consented to the processing of data for commercial purposes and the data to allow the registration of Users and thus to allow them to access without having to register each time, are stored for 10 years (i.e., the ordinary limitation period);

The Data will be kept for longer if this is necessary to comply with obligations established by law or to ensure the judicial protection of the rights of the Owners, in compliance in any case with the maximum terms allowed by law

8. What are your rights?

Users, as data subjects (i.e., subjects to whom the Data refer), are holders of rights conferred by the GDPR. In particular, pursuant to art. 12-23 of the GDPR, data subjects have the right to request and obtain, at any time, access to their personal data, information on the processing carried out, rectification and/or update of personal data, cancellation and restriction of processing. In addition, they also have the right to object to the processing and to request data portability (that is, to receive personal data in a structured format of common use, readable by automatic devices).

Finally, data subjects always have the right to withdraw their consent at any time (this, in any case, will not affect the lawfulness of the processing carried out on the basis of the consent given before the revocation) and to lodge a complaint with a supervisory authority (in Italy: the Guarantor for the Protection of Personal Data)

The above rights can be exercised at any time, by simple request to the Owners, to be sent to the e-mail address or


The Owners may modify this information to adapt it to future extensions or changes to the Site

COOKIE usa i cookies, per saperne di più Consulta la cookies policy.


Apart from what is specified, the optional nature of the possibility for the user to provide their personal data remains unaffected. Failure to provide, however, may affect the access, use and provision of online services, as well as the quality of the expected service.