You in > Privacy

Definition and legal references

‘Personal data (or data)’

“Personal data” shall be defined as any information relating to a natural person, identified or identifiable even indirectly, through reference to any other information, including personal identification numbers.

Usage data

Usage data are the information that this website collects by itself (or through third parties’ applications used by this website), among which the are: the URI (Uniform Resource Identifier), the time at which the request is made, the method used to forward the request to the server, the size of the file obtained as an answer, the numeric code indicating the state of the answer given by the server (successful conclusion, error, etc.), the country of origin, the characteristics of the browser and operating system used by the visitor, the various temporal connotations of the visit (for example the time spent on each webpage) and the details of the itinerary followed within the website, with particular reference to parameters concerning the sequence of the pages consulted, the operating system and the IT environment of the user.


User is the person who uses this website, coinciding with the Data Subject or by this

authorized and whose personal data are subject of data processing.

Data subject

The natural or legal person which the personal data are referred to.

Processor of the data processing (or data processor)

It is a natural or legal person, a public authority, any other entity, association or body which processes personal data on behalf of the data controller, as described in this privacy policy.

Controller of the data processing (or data controller)

It is the natural or legal person, a public authority, any other entity, association or body which, even jointly with others, provides the decisions relating to the purpose and modality of personal data processing, including the security profile, in relation to the functioning and use of this website. The data controller, unless otherwise specified, is the owner of this website.


Small portion of data stored in the form of a text within the user’s cache.


 Privacy Policy of Satta Romano & Associati

This website use Cookies to collect certain personal data of its users for aggregate statistics’

purpose. Personal data, entered voluntarily by the user or collected automatically during the use of this site, are saved and processed anonymously, are processed by taking the appropriate security measures to prevent access, disclosure, modification or the unauthorized destruction of them, in compliance with the principles of lawfulness, fairness, transparency, data minimization, accuracy and storage limitation, as established by the provisions of Regulation (EU) n. 2016/679 (“GDPR” or “Regulation”) and by the legislation pursuant to Legislative Decree 196/2003 and amendments.

Further information concerning the processing of personal data may be requested at any time to the data controller using the contact information.


Cookie Policy

Among the personal data collected by this website, itself or through third parties, there are Cookies and Usage data. The Cookies – or other tracking tools – used by this website or by third-party holders of services used by this website, unless otherwise specified, are intended to record the related preferences for purposes strictly connected to the supply of the requested service by the user, always in compliance with the regulations in force.

For more details, see the “Cookies” section.


Privacy Policy Newsletter

By subscribing to the newsletter, the data controller is authorized to process the data communicated, in the terms established by the GDPR.

The data collected are processed using IT tools and will be stored, in accordance with the provisions of the GDPR and the applicable legislation in force.

The data subject has the right, at any time, to request the access to the data and to verify its accuracy and / or to request its integration, updating, rectification, erasure, limitation, including the right to oppose processing of personal data for the purposes of marketing and for sending commercial communications. Furthermore, the data subject has the right to withdraw the consent to the processing of his / her personal data, at any time, without affecting the lawfulness of the data processing under the consent given before the revocation.

Without prejudice to any other administrative or judicial appeal, the data subject has the right to lodge a complaint with the Guarantor for the Protection of Personal Data, if he / she considers that the processing violates the GDPR.


 Web surfing data

The IT systems and the software procedures used to operate this web site acquire, during the normal course of the operation, some personal data whose transmission is implicit in the communication protocols of the Internet. The aim of collecting said information is not their association to identifying data subjects but, for their own nature, through elaborations and associations with data owned by third parties, they could allow the identification of the users

The aforesaid category of personal data includes IP addresses or the domain names of users who connect to the site, the URI / URL (Uniform Resource Identifier / Locator) addresses of the resource required, the timetable of the request, the method used to submit the request to the server, the size of the file obtained as answer, the numeric code indicating the state of the response given by the server (successful conclusion, error, etc.) and other parameters concerning operating system and the IT environment of the user.

These data are used only to obtain anonymous statistical information on the use of the Site and to control its correct functioning and are deleted immediately after the processing.


Data freely provided by the user

The Firm may collect some personal data (such as name, surname, e-mail address, telephone number, e-mail address etc.) that the user would communicate through e-mail or the special section on the Site.


Controller of the data processing

Controller and Processor of the data processing is Satta Romano & Associati Studio Legale

00186 ROMA – VIA ARENULA, 29

Tel: +39 06 6990561

Fax: +39 06 69191011

Web site:



Purposes of the processing and legal basis

Personal data will be used for purposes related to the activity of the Firm. Personal data may be used by the data controller as a defence in a legal action or in the preparatory stages of the legal action against claims of misuse of the information or of connected services by the user. The user declares to be aware that the data controller may be required to disclose his / her data upon request of public authorities.

Personal data will also be used for instrumental purposes (such as receipt of curricula, transmission of newsletters, transmission of e-mails through the specific section “Contacts”).

Anonymous data can also be processed in order to perform a statistical analysis of computer data without the possibility of identifying the user, in order to monitor the site traffic and to allow the user to experience optimal use of the site.

The processing of personal data will be based on principles of lawfulness, fairness and transparency, protecting the privacy of the user.

For the appropriate consultation and operation of the website, personal data may be known by companies carrying out auxiliary activities on behalf of the Firm such as: providers of development services, management and maintenance of the web platform and the technological services used, which are appointed by the Firm’s as controllers of data processing, in compliance with Article 28 of the Regulation. The personal data collected through the receipt of curricula will be accessible to employees and collaborators of the Firm duly authorized, while the personal data collected through the specific section “Contacts” may be processed by the Firm’s appointed staff duly authorized, in accordance with Article 28 of the Regulation.


Method of processing

The data controller processes the users’ personal data by taking the appropriate security measures to prevent unauthorized access, disclosure, modification or erasure of personal data. Processing is carried out using IT and / or telematic tools, with organizational methods and logic strictly related to the purposes indicated. In addition to the data controller, in some other cases, categories of appointees involved in the organization of the site (administrative staff, lawyers, system administrators) or external parties (like third party technical service providers, hosting providers, IT companies, agencies of communication) may have access to the data that, if necessary, will be appointed as data processors by the data controller. The updated list of the data processors can always be requested to the data controller.


Places and times of the processing

The data are processed at the data controller’s operating offices and in any other place where the parties involved in the processing are located. For further information, contact the data controller. The data are processed for the time necessary to perform the service requested by the user, or required by the purposes described in this document.


User’s Rights

The user, in compliance with Article 13 of the Regulation, has the right to request from the controller access to his / her personal data as well as to know the origin, logic and purpose of their treatment, to obtain the updating and the rectification or (in the cases foreseen by the Regulation) removal of personal data, to obtain the restriction as well as the block of processing the data of the user. The user also has the right to know the origin of the data and the logic and method of the processing.

The user, as data subject, has the right to receive the personal data concerning him or her, in a structured, commonly used and machine-readable format and has the right to transmit those data to another controller without hindrance from the controller to which the personal data has been provided.

The aforementioned rights may be exercised by submitting a request to the following e-mail address:

Ultimately, the user has the right to lodge a complaint with the Guarantor for the Protection of Personal Data, in compliance with the law. For more information, check the website: