Privacy & Cookie Policy

Privacy & Cookie Policy of Starfunghi Srl

1. Data Controller

Starfunghi Srl
Registered Office: Zălau, str. Gheorghe Doja 138, ap.4
Jud. Salaj - ROMANIA
Email: info@starfunghi.com

As Data Controller, Starfunghi Srl determines the purposes and means of processing your personal data.

2. Data Protection Officer (DPO)

Starfunghi Srl has not appointed a DPO, as it is not required by regulation. For any data protection inquiries, please contact info@starfunghi.com.

3. Types of Data Collected and Contact Channels

• Internal contact form (implementable): name, email, message — used exclusively to respond to inquiries submitted through the website.

• Email contact: by clicking mailto:starfunghi@gmail.com, your email client will open. Data you send is processed on Google LLC servers (external processor).

• WhatsApp contact: clicking the number +40 743129146 opens the WhatsApp app. Your messages and phone number are processed by Meta Platforms, Inc. (external processor).

• Browsing data: IP address, access date and time, requested URLs; processed in aggregate and anonymized form for security and performance purposes; stored only for the strictly necessary period.
  

4. Purposes and Legal Basis for Processing

Purpose Legal Basis Responding to contact inquiries Performance of pre-contractual measures (Art. 6(1)(b) GDPR) or legitimate interest (Art. 6(1)(f) GDPR) Managing communications via email / WhatsApp Explicit consent (Art. 6(1)(a) GDPR) Security, logging, and monitoring Necessity to protect network and data (Art. 6(1)(f) GDPR)

5. Recipients and Data Transfers

Your personal data will not be disclosed publicly. It may be communicated to:

• Google LLC (email and hosting) — Servers in the EU and USA under Standard Contractual Clauses.

• Meta Platforms, Inc. (WhatsApp) — Servers in the USA under standard safeguards.

• Hosting provider (Zyro/Hostinger) and CDN (assets.zyrosite.com) — For web service delivery.
  

6. Retention Period

• User communication data: retained until the request is fulfilled and thereafter for a maximum of 6 months for any audits.

• System and browsing logs: 30 days for security/anomaly analysis, then anonymized or deleted.
  

7. Data Subject Rights

You can exercise the following rights at any time by sending a request to info@starfunghi.com:

• Access to your data (Art. 15 GDPR)

• Rectification of inaccurate data (Art. 16 GDPR)

• Erasure (“right to be forgotten”) (Art. 17 GDPR)

• Restriction of processing (Art. 18 GDPR)

• Objection to processing (Art. 21 GDPR)

• Data portability (Art. 20 GDPR)

• Withdrawal of consent at any time without affecting the lawfulness of processing based on consent before its withdrawal (Art. 7(3) GDPR)

• Lodging a complaint with the Supervisory Authority (www.garanteprivacy.it).
  

8. Cookies and Tracking Technologies

• The site uses only technical cookies necessary for operation (session, language).

• Google Maps Embed: this integration may set cookies from Google LLC. Details: https://policies.google.com/technologies/cookies.

• No analytical, profiling, or third-party marketing cookies are used.

• To disable technical cookies, modify your browser settings: https://www.allaboutcookies.org.
  

9. Data Security

Data is processed with appropriate technical and organizational measures (firewalls, HTTPS, 2FA for email account, encrypted backups) to ensure integrity, confidentiality, and availability.

10. Updates and Accessibility

• This policy is available in Italian, English, and Romanian, and can be accessed from any page via the “Privacy & Cookie Policy” link in the footer.

• Last updated: 01/08/2025.

• The policy will be reviewed annually or upon any changes to services/processes.

For further information or to exercise your rights, please contact info@starfunghi.com.