Logo Dott.ssa Portuesi
Dott.ssa Portuesi

Privacy Policy

Last updated: 18 January 2026

Pursuant to Art. 13 of Regulation (EU) 2016/679 (hereinafter "GDPR"), this policy describes the methods of processing personal data collected through the website https://rosalbaportuesi.it (hereinafter the "Website").

Data Controller

The Data Controller is:

Dr. Rosa Alba Valentina Portuesi

Email: mail@rosalbaportuesi.it

Website: https://rosalbaportuesi.it

Types of Data Collected

The website collects exclusively personal data voluntarily provided by the user through the contact form available at https://rosalbaportuesi.it/contatti.

The data requested may include:

  • Full name
  • Email address
  • Phone number
  • Subject and content of the message

The website does not use profiling cookies or other tracking tools.

Purposes of Processing

Personal data is processed exclusively to:

  • manage and respond to requests submitted through the contact form;
  • any subsequent communications related to the initial request.

With the explicit consent of the data subject, personal data (name, surname, email address, phone number) may also be processed for the sending of informational, editorial and promotional communications, via email and instant messaging tools (e.g. WhatsApp, Telegram), relating to:

  • Educational activities on women's health and gynaecological prevention;
  • Editorial publications (books, ebooks, articles, infographics);
  • Events, webinars and educational meetings;
  • Updates on services offered by the practice.

Legal Basis for Processing

The processing of data is based on Art. 6(1)(b) GDPR: the performance of pre-contractual measures taken at the request of the data subject.

For informational, editorial and promotional communication purposes, the legal basis for processing is the consent of the data subject pursuant to Art. 6(1)(a) GDPR.

The provision of consent is optional and failure to provide it does not in any way prejudice access to healthcare services.

Methods of Processing

Data is processed lawfully, fairly and transparently, using IT and/or paper-based tools, adopting adequate security measures to ensure the protection and confidentiality of the data.

Data Retention

Personal data will be retained for the time necessary to manage the request and, subsequently, for a maximum period of 12 months, unless different legal obligations apply.

Data processed for informational, editorial and promotional communication purposes will be retained until the data subject withdraws consent or, in any case, for a maximum period of 24 months from the last interaction. In the case of communications sent via instant messaging tools, consent may also be withdrawn by replying directly to the message received.

Data Sharing and Disclosure

Data will not be shared with or disclosed to third parties. It may be processed, where necessary, by parties acting on behalf of the Controller (e.g. IT consultants), always in accordance with the principle of data minimisation and with adequate confidentiality guarantees.

Data Subject Rights

Pursuant to Articles 15 to 22 of the GDPR, the user has the right to:

  • Access their personal data;
  • Request its rectification or erasure;
  • Restrict or object to processing;
  • Lodge a complaint with the Data Protection Authority.

With regard to informational, editorial and promotional communications, the data subject also has the right to withdraw consent at any time.

Requests may be sent to the Data Controller via email at the address indicated above.

Changes to the Privacy Policy

The Controller reserves the right to modify this Privacy Policy at any time.