Privacy & Cookie Policy

Privacy & Cookie Policy of Starfunghi Srl

1. Data Controller

Starfunghi Srl
Registered Office: Zălau, str. Gheorghe Doja 138, ap.4
Jud. Salaj - ROMANIA
Email: info@starfunghi.com

As Data Controller, Starfunghi Srl determines the purposes and means of processing your personal data.

2. Data Protection Officer (DPO)

Starfunghi Srl has not appointed a DPO, as it is not required by regulation. For any data protection inquiries, please contact info@starfunghi.com.

3. Types of Data Collected and Contact Channels

• Internal contact form (implementable): name, email, message — used exclusively to respond to inquiries submitted through the website.

• Email contact: by clicking mailto:starfunghi@gmail.com, your email client will open. Data you send is processed on Google LLC servers (external processor).

• WhatsApp contact: clicking the number +40 743129146 opens the WhatsApp app. Your messages and phone number are processed by Meta Platforms, Inc. (external processor).

• Browsing data: IP address, access date and time, requested URLs; processed in aggregate and anonymized form for security and performance purposes; stored only for the strictly necessary period.
  

4. Purposes and Legal Basis for Processing

Purpose Legal Basis Responding to contact inquiries Performance of pre-contractual measures (Art. 6(1)(b) GDPR) or legitimate interest (Art. 6(1)(f) GDPR) Managing communications via email / WhatsApp Explicit consent (Art. 6(1)(a) GDPR) Security, logging, and monitoring Necessity to protect network and data (Art. 6(1)(f) GDPR)

5. Recipients and Transfers (Third Parties)

Your personal data will not be publicly disclosed. They may be communicated to the following third-party processors:

• Google LLC — email services and Maps (servers in EU/USA; safeguards via Standard Contractual Clauses).

• Meta Platforms, Inc. (WhatsApp) — message handling (servers in USA; standard safeguards).

• Hostinger — hosting provider used for website delivery and file storage (servers in EU and other jurisdictions; contractual safeguards in place).

• Cloudflare — CDN, DNS and protection services (WAF / DDoS mitigation): operates as a processor providing caching, attack mitigation and content acceleration; may process network metadata (e.g. IP addresses) to deliver its services.

• CDNs and related providers (e.g. assets.zyrosite.com) — for efficient content distribution.

If transfers occur to third countries (e.g. the United States), Starfunghi implements adequate safeguards (e.g. Standard Contractual Clauses where applicable) and technical/organizational measures to protect data subject rights.

6. Retention Period

• User communication data: retained until the request is fulfilled and thereafter for a maximum of 6 months for any audits.

• System and browsing logs: 30 days for security/anomaly analysis, then anonymized or deleted.
  

7. Data Subject Rights

You can exercise the following rights at any time by sending a request to info@starfunghi.com:

• Access to your data (Art. 15 GDPR)

• Rectification of inaccurate data (Art. 16 GDPR)

• Erasure (“right to be forgotten”) (Art. 17 GDPR)

• Restriction of processing (Art. 18 GDPR)

• Objection to processing (Art. 21 GDPR)

• Data portability (Art. 20 GDPR)

• Withdrawal of consent at any time without affecting the lawfulness of processing based on consent before its withdrawal (Art. 7(3) GDPR)

• Lodging a complaint with the Supervisory Authority (www.garanteprivacy.it).
  

8. Cookies and Tracking Technologies

• The site uses only technical cookies necessary for operation (session, language).

• Google Maps Embed: this integration may set cookies from Google LLC. Details: https://policies.google.com/technologies/cookies.

• No analytical, profiling, or third-party marketing cookies are used.

• To disable technical cookies, modify your browser settings: https://www.allaboutcookies.org.
  

9. Data Security

Data is processed with appropriate technical and organizational measures (firewalls, HTTPS, 2FA for email account, encrypted backups) to ensure integrity, confidentiality, and availability.

10. Updates and Accessibility

• This policy is available in Italian, English, and Romanian, and can be accessed from any page via the “Privacy & Cookie Policy” link in the footer.

• Last updated: 01/08/2025.

• The policy will be reviewed annually or upon any changes to services/processes.

For further information or to exercise your rights, please contact info@starfunghi.com.