Privacy Policy

    How your data is collected, used, and protected on this website.

    1. Data Controller

    The data controller responsible for this website is:

    Fabio Andreatta
    Friesland, the Netherlands

    For any privacy-related inquiries, please use the contact form on this website.

    2. What Data We Collect

    This website collects minimal personal data:

    • Contact form submissions: Your name, email address, and message content are stored to process your inquiry.
    • Newsletter signups: Your email address is stored if you voluntarily join the email list.
    • Hosting data: Our hosting provider may automatically collect technical data such as your IP address, browser type, operating system, and pages visited.
    • Privacy-friendly analytics: If enabled, aggregated usage information may be processed to understand how the website is used.

    3. Purpose of Data Processing

    • To respond to your inquiries submitted through the contact form
    • To manage newsletter signups and communicate when relevant
    • To ensure the security and proper functioning of the website
    • To improve the website experience through aggregate insights

    4. Legal Basis for Processing

    Under the General Data Protection Regulation (GDPR):

    • Consent (Art. 6(1)(a) GDPR): When you voluntarily submit the contact form or join the email list.
    • Legitimate interest (Art. 6(1)(f) GDPR): Technical data processed for website security, reliability, and aggregate website improvement.

    5. Third-Party Services

    • Netlify (hosting): May process technical data for security and performance. Privacy policy →
    • Supabase (database): Stores contact form submissions. Privacy policy →
    • Plausible (analytics, if enabled): Processes privacy-friendly aggregate usage data. Data policy →

    Where data is transferred to the United States, appropriate safeguards including Standard Contractual Clauses (SCCs) are in place.

    6. Cookies

    This website uses only essential cookies required for basic functionality, such as theme preference and remembering dismissal of the cookie notice. No third-party advertising cookies are used. If privacy-friendly analytics are enabled, they are configured without advertising cookies.

    7. Data Retention

    Contact form submissions are retained for as long as necessary to process your inquiry. Newsletter signups are retained until you unsubscribe or request deletion. Technical hosting logs are retained according to Netlify's data retention policies.

    8. Your Rights

    Under GDPR, you have the right to:

    • Access your personal data
    • Rectify inaccurate data
    • Erase your personal data
    • Restrict processing
    • Port your data in a machine-readable format
    • Object to processing based on legitimate interest
    • Withdraw consent at any time

    To exercise any of these rights, please use the contact form. We will respond within 30 days.

    9. Data Security

    We take appropriate technical and organizational measures to protect your data. All transmission is encrypted using HTTPS/TLS.

    10. Children's Privacy

    This website is not intended for children under 16. We do not knowingly collect personal data from children.

    11. Supervisory Authority

    If you believe your data protection rights have been violated, you may lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or with the supervisory authority in your EU country of residence.

    12. Changes to This Policy

    This privacy policy may be updated from time to time. Changes will be posted on this page with an updated date.

    Last updated: April 12, 2026