Privacy Policy

Lega Web is committed to protecting the privacy and personal data of all users, clients, and visitors. This Privacy Policy explains how we collect, process, store, and safeguard personal data in accordance with the General Data Protection Regulation (GDPR) and applicable European data protection laws.

By accessing our website or using our services, you acknowledge that you have read and understood this Privacy Policy.

1. Introduction

Commitment to Privacy

At Lega Web, we respect your right to privacy and are committed to handling personal data responsibly, transparently, and securely. We process personal information only when it is necessary, lawful, and proportionate to our services.

GDPR Compliance

All data processing activities carried out by Lega Web comply with Regulation (EU) 2016/679 (General Data Protection Regulation). We implement appropriate technical and organisational measures to ensure data protection by design and by default.

2. Data We Collect

We may collect and process the following categories of data:

Personal Data

  • Full name
  • Company name
  • Email address
  • Telephone number
  • Billing and invoicing information
  • Any personal details voluntarily submitted via forms or correspondence

Technical Data

  • IP address
  • Browser type and version
  • Device information
  • Operating system
  • Website usage data and analytics

Communication Data

  • Emails, messages, and enquiries sent to us
  • Consultation requests
  • Support communications

3. How We Use Data

Personal data is processed strictly for legitimate and defined purposes, including:

Service Delivery

  • Providing requested services
  • Managing client relationships
  • Fulfilling contractual obligations

Communication

  • Responding to enquiries
  • Providing service-related updates
  • Sending essential administrative information

Legal Obligations

  • Compliance with legal and regulatory requirements
  • Accounting and taxation purposes
  • Dispute resolution and enforcement of agreements

4. Legal Basis for Processing

We process personal data only when one or more lawful bases apply:

Consent

Where you have explicitly given consent for specific data processing activities, such as submitting contact forms or subscribing to communications.

Contractual Necessity

Where processing is required to perform or prepare a contract with you.

Legitimate Interest

Where processing is necessary for legitimate business interests, provided such interests do not override your fundamental rights and freedoms.

5. Data Storage & Security

Storage Methods

Personal data is stored securely on protected servers located within the European Union or in jurisdictions offering adequate data protection safeguards.

Security Measures

We implement industry-standard security measures, including:

  • Encrypted data transmission
  • Restricted access controls
  • Secure authentication systems
  • Regular security assessments

Despite these measures, no data transmission over the internet can be guaranteed as completely secure.

6. Data Sharing

Third-Party Services

We may share limited personal data with trusted third-party service providers who support our operations, such as hosting providers, analytics services, and payment processors. These parties are contractually bound to process data securely and lawfully.

Legal Disclosures

We may disclose personal data where required to do so by law, regulation, court order, or competent authority.

7. User Rights Under GDPR

You have the following rights under GDPR:

  • Right of Access: You may request confirmation of whether we process your personal data and obtain a copy of such data.
  • Right to Rectification: You may request correction of inaccurate or incomplete personal data.
  • Right to Erasure: You may request deletion of your personal data where lawful grounds apply.
  • Right to Data Portability: You may request your data in a structured, commonly used, and machine-readable format.

To exercise any of these rights, please contact us using the details provided below.

8. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or contractual requirements. Once data is no longer required, it is securely deleted or anonymised.

9. Contact & Complaints

Data Protection Contact

For any questions, requests, or concerns regarding this Privacy Policy or your personal data, please contact:

Lega Web – Data Protection Officer
Email:
Website:

Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with your local data protection supervisory authority within the European Union.

Last Updated: January 26, 2026

If you have any questions about this Privacy Policy, please contact us through our contact page.