Logo Relaia

Privacy Policy

1. Introduction

This Privacy Policy explains how we collect, use, and protect the personal information of visitors to the Site.

2. Data Controller

The data controller is: Andrea Cattabriga, C.F. CTTNDR81A30B819M, Modena (MO), Italy, Email: info @ relaia.org

3. Hosting and Data Localization

The Site is hosted on a virtual machine on the servers of Hetzner Online GmbH, located within the European Union. All collected data is stored in this location, ensuring compliance with European data protection regulations.

4. Data Collected

We collect the following types of information:

  • Data provided for newsletter subscription: Your email address. This collection occurs via the subscription form on the Site, integrated with our platform, hosted as described in point 3.
  • Data provided via other forms on the Site: For example, name, email, and the content of the message if you contact us via a contact form or for other specific requests.
  • Anonymous Site usage data: Collected via Umami Analytics, as described in point 6. This data is anonymized and does not allow personal identification.
  • Cookies: We do not use cookies to track users for profiling or advertising purposes. Our site and content platform may use technical cookies strictly necessary for their operation (e.g., to manage the newsletter subscription session or for security).

Personal data voluntarily provided is processed for the following purposes and on the following legal bases:

  • For newsletter subscription and sending (Legal basis: consent of the data subject, Art. 6, par. 1, lett. a) GDPR): Your email address is used to send you periodic communications, updates, and news from Relaia, via our self-hosted Ghost platform. Providing your email address for this purpose is optional, and you can withdraw your consent at any time via the unsubscribe link present in every newsletter, without prejudice to the lawfulness of processing based on consent before its withdrawal.
  • To respond to requests for information or contact (Legal basis: execution of pre-contractual measures taken at the request of the data subject, Art. 6, par. 1, lett. b) GDPR, or legitimate interest of the Controller to respond to requests received, Art. 6, par. 1, lett. f) GDPR): We use the data provided (e.g., name, email, message) to follow up on your specific requests.
  • To collect requests for reservations of material or content not yet published (Legal basis: execution of pre-contractual measures taken at the request of the data subject, Art. 6, par. 1, lett. b) GDPR): To manage your requests for early access or reservation of content.

6. Site Analytics

We use Umami Analytics to collect anonymous statistics on Site visits. Umami does not collect personally identifiable information and anonymizes all data collected. Users cannot be identified and are never tracked across different websites.

7. Data Retention and Security

Personal data is stored, in electronic format, for the time strictly necessary to achieve the purposes for which it was collected, in compliance with the principles of minimization and storage limitation (Art. 5 GDPR).

  • Data for the newsletter: Your email address will be stored in the database of our self-hosted Ghost platform (located as per point 3) until you withdraw your consent (unsubscribe via the dedicated link in each email) or until the newsletter service is active. Periodically, we may carry out checks to remove email addresses that are clearly inactive or no longer valid.
  • Other data provided via forms: Will be kept for the time necessary to fully manage your request and subsequently deleted, unless otherwise required by law or the need to assert or defend a right in court.

We adopt appropriate technical and organizational security measures to protect personal data from loss, misuse, unauthorized access, disclosure, alteration, or destruction. These measures include, but are not limited to:

  • Hosting of data and the Ghost platform on secure servers within the European Union (Hetzner Online GmbH), as specified in point 3.
  • Protection of the server infrastructure (e.g., firewalls, security monitoring systems).
  • Regular software updates for the Ghost platform, server operating system, and other applications involved.
  • Procedures for access management and credential protection (e.g., complex passwords, multi-factor authentication where applicable).
  • Periodic data backups to prevent data loss.

Despite our constant commitment to protecting personal data, it is important to remember that no system of transmission or electronic storage of data is inherently 100% secure. Therefore, while adopting high standards of protection, we cannot guarantee the absolute security of personal data.

8. User Rights

Users have the right to:

  • Access their personal data
  • Request the correction or deletion of data
  • Limit or object to processing
  • Request data portability To exercise these rights or request a copy of your data, contact info@relaia.org.

9. Data Sharing

We do not sell, rent, or share users’ personal data with third parties, except as necessary to provide requested services or as required by law.

10. Changes to the Privacy Policy

We reserve the right to modify this policy. Changes will be published on this page with the last update date.

11. Contacts

For questions or clarifications about this Privacy Policy, contact: Andrea Cattabriga at info@relaia.org