Privacy Policy

This information notice is provided pursuant to Article 13 of EU Regulation 2016/679 (“GDPR”) and describes how personal data collected through the website of BC Business Consulting S.r.l. is managed.

1. Data Controller

The Data Controller is BC Business Consulting S.r.l., with registered office at Via Dalmine 10/A, 24035 Curno (BG) and operational office at Viale Locatelli 5, 24044 Dalmine (BG).

• VAT Number: 04086520162

• PEC: bcbusinessconsultingsrl@pec.it

• Administrative email: cinzia@bcbusinessconsulting.it

• Tel: +39 348 6928740

2. Categories of Data Collected

The website may collect the following categories of data:

• Browsing data: IP addresses, access logs, information about the device and browser used, automatically collected by IT systems.

• Data voluntarily provided by users through contact forms (name, surname, email, phone number, and any additional information included in the message).

• Cookies and similar technologies, as described in the Cookie Policy.

3. Purposes of Processing

Personal data is processed for the following purposes:

• to respond to information requests submitted via contact forms;

• to ensure the correct technical functioning of the website and improve user experience;

• to comply with legal obligations.

4. Legal Basis of Processing

Processing is carried out on the following legal bases:

• Consent of the data subject (Art. 6, par. 1, lett. a GDPR), for requests voluntarily submitted through contact forms;

• Performance of pre-contractual or contractual measures (Art. 6, par. 1, lett. b GDPR), when data is processed to respond to commercial or consultancy inquiries;

• Legal obligations (Art. 6, par. 1, lett. c GDPR), where applicable;

• Legitimate interest of the Controller (Art. 6, par. 1, lett. f GDPR), for IT security and abuse prevention.

5. Processing Methods

Data is processed using electronic and telematic tools, with adequate security measures to prevent unauthorized access, disclosure, alteration, or destruction of personal data.

Processing is carried out by authorized personnel and by third-party service providers (e.g., hosting provider) appointed as Data Processors pursuant to Article 28 GDPR.

6. Data Retention

• Data collected via contact forms will be retained for the time strictly necessary to manage the request and, where applicable, to establish contractual relationships.

• Technical data (logs and cookies) will be retained in accordance with the terms specified in the Cookie Policy or as required for security purposes.

7. Data Communication and Disclosure

Data will not be disseminated. It may be communicated only to:

• entities providing technical services (e.g., hosting provider);

• competent authorities, where required by law.

8. Data Transfer Outside the EU

The website uses only hosting services located within the European Union. Therefore, data is not transferred outside the European Economic Area.

9. Data Subject Rights

Users have the right to:

• access their personal data (Art. 15 GDPR);

• request rectification or updating of their data (Art. 16 GDPR);

• request erasure of their data (Art. 17 GDPR);

• restrict processing (Art. 18 GDPR);

• object to processing (Art. 21 GDPR);

• request data portability (Art. 20 GDPR);

• lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it).

Requests may be addressed to the Controller using the contact details indicated in Section 1.

10. Cookie Policy

This website uses technical cookies and, subject to consent, third-party cookies for statistical and functional purposes.
For further details, please refer to the Cookie Policy.