Privacy Policy


This information is provided to individuals who access and consult the website, pursuant to art. 13 Italian Legislative Decree 30 June 2003 No. 196 – “Code regarding the protection of personal data” and Article. 13 GDPR 679/16 – “European regulation on the protection of personal data”.

Identity of the Holder

This WEB site is managed by Studio Santoro with office in Via Appia, 286 72100 BRINDISI.. The Data Controller guarantees the security, confidentiality and protection of the personal data in their possession, at any stage of their processing. The personal data collected are used in compliance with Legislative Decree 196/2003 and GDPR 679/16.

The DPO has not been designated.


This information is provided to the individuals who fill out the “Contact” form (form) proposed by the website with office in BRINDISI at Via Appia, 286 and in  MILAN at Via Mauro Macchi, 8.

Data source

The data is given spontaneously by the interested party through the form (form) proposed by the website

Purpose of the processing

The personal data of individuals who fill out the “Contacts” form are processed to process their requests for information and / or a quote.

Legal basis of the processing

The personal data of the natural persons who fill in the “Contacts” form are lawfully processed for the execution of a contract of which the interested party is a party or execution of pre-contractual measures adopted at the request of the same (the request forwarded);

Data recipients

The personal data processed by the Data Controller will not be disclosed, or will not be disclosed to undetermined subjects, in any possible form, including that of making them available or simple consultation. They may also be communicated to Studio Santoro’s employees and, within the strictly necessary limits, to subjects who for the purpose of fulfilling your request must provide goods and / or perform services or services on our behalf. Finally, they can be communicated to the subjects entitled to access it under the provisions of the law, regulations, community regulations.

Data transfer

The data controller does not transfer personal data to third countries or international organizations.However, it reserves the right to use cloud services; in which case, the service providers will be selected from those who provide adequate guarantees, as required by art. 46 GDPR 679/16.

Data retention

The Data Controller maintains and processes personal data for the time necessary to fulfill the indicated purposes.

Rights of the interested party

With reference to art. 7 of Legislative Decree 196/2003 and Articles 15 – right of access, 16 – right of rectification, 17 – right to cancellation, 18 – right to limitation of treatment, 20 – right to portability, 21 – right of opposition, 22 right to object to the automated decision-making process of GDPR 679 / 16, the interested party exercises his rights by writing to the Data Controller at the address above, or by email, specifying the subject of his request, the right he intends to exercise and attaching a photocopy of an identity document certifying the legitimacy of the request.

Withdrawal of consent

With reference to art. 23 of Legislative Decree 196/2003 and art. 6 of the GDPR 679/16, the interested party can revoke the consent at any time.

Proposition of a complaint

The interested party has the right to complain to the supervisory authority of the state of residence.

Refusal to provide data

The interested party may refuse to provide the owner with his personal data since the provision is optional. However, filling in the indicated fields is essential to be able to process the requests received.

Automated decision making processes

The Data Controller does not carry out processing consisting of automated decision-making processes.