Privacy Policy
This notice explains how personal data is processed for client support, appointment booking, contact requests, and document handling.
Data Controller
CAF BIXIO DI SUBBARAO
Registered office: Via Bixio 5, Roma, 00185
Email: info@smdoniya.com
P.IVA: 15415991007
Categories of Data
Identification and contact data, service request details, uploaded documents, technical logs, and anti-abuse security metadata (including reCAPTCHA verification data).
Purposes and Legal Bases (GDPR Art. 6)
Service delivery and appointment management (Art. 6(1)(b)); legal obligations (Art. 6(1)(c)); security and fraud prevention (Art. 6(1)(f)); optional communications only when consent is provided (Art. 6(1)(a)).
Data Retention
Contact and appointment records are retained for operational follow-up and legal obligations. Attachments are retained only for case handling and compliance periods, then securely removed under internal deletion schedules.
Recipients and Processors
Hosting, email, CAPTCHA, and technical service providers process data under contractual instructions (DPA/processor terms) where applicable. Data is not sold.
Data Subject Rights
You may request access, rectification, erasure, restriction, portability, or objection, and withdraw consent where applicable, by writing to info@smdoniya.com. You may also lodge a complaint with the Italian supervisory authority (Garante per la protezione dei dati personali).
International Transfers
Where third-party services involve transfers outside the EEA, appropriate safeguards are used according to GDPR (for example contractual safeguards provided by the service provider).
Security Measures
The website applies access controls, server-side validation, anti-abuse checks, and controlled document storage to reduce unauthorized access risks.
Policy Updates
This policy may be updated to reflect legal, operational, or technical changes. The latest version is published on this page.