Data Controller
The data controller is Alisa Chebotarenko, VAT No. 01820290086.
For privacy-related requests, you can write to alisa.1chebotarenko@gmail.com.
This policy describes how personal data is processed through alisac.it, including contact forms and quote request forms.
Personal Data Processed
The website may process the following data only when it is voluntarily provided by the user or technically generated during browsing:
- identification data, such as first name and last name;
- contact details, such as email address, WhatsApp number, or Telegram username;
- message content, reason for the request, notes, and services selected in the quote request form;
- consent to the processing of personal data for the purpose of being contacted about the request;
- technical browsing data, such as IP address, user agent, technical logs, and information required for the security and operation of the website.
Purposes and Legal Bases
| Purpose | Legal basis |
|---|---|
| Responding to requests submitted through the contact form or quote request form. | Pre-contractual measures requested by the user and consent expressed through the checkbox. |
| Managing follow-up communications through the method selected by the user: email, WhatsApp, or Telegram. | Consent and pre-contractual measures. |
| Ensuring security, preventing abuse, and maintaining the correct technical operation of the website. | Legitimate interest of the controller and technical security requirements. |
| Complying with any tax, accounting, or legal obligations. | Legal obligation. |
Recipients and External Services
Personal data may be processed by technical providers that support website operation and communication management:
- Vercel, for hosting, website deployment, technical logs, and serverless functions;
- Resend, for sending emails generated by the forms to the controller's email address;
- Google Fonts, for loading the fonts used on the website;
- Telegram, WhatsApp, LinkedIn, and WeChat, only when the user voluntarily opens or uses those external channels.
These providers may process data outside the European Economic Area according to their respective terms and applicable safeguards.
Retention Periods
Data submitted through the forms is retained for the time necessary to respond to the request and manage any subsequent professional relationship.
If no professional relationship is established, requests may be retained for up to 24 months, unless further retention is required to protect the controller's rights or comply with legal obligations.
Technical logs are retained by hosting providers according to their technical policies and for the time required for security, diagnostics, and service operation.
User Rights
Users may request access, rectification, erasure, restriction of processing, objection to processing, and data portability, within the limits set by the GDPR.
Where processing is based on consent, users may withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal.
Users may also lodge a complaint with the Italian Data Protection Authority.
Privacy Contact
To exercise your rights or request clarification: alisa.1chebotarenko@gmail.com.
Last updated: June 4, 2026.