Notice on the processing of personal data

1. Data controller

The data controller is Seen Studio, headquartered at Via Perris, 17, 84012 Angri (SA), email: [email protected]. You can contact the controller for any requests concerning the processing of personal data.

2. Types of data processed

The website processes:

• Browsing data (access logs, IP address, device and browser information) collected automatically to keep the site running, ensure security, and prevent misuse.
• Data provided by the user through the contact form (name, surname, email address, company, phone number, service of interest, indicative budget, and message content).
• Cookies, local storage, and other online identifiers, managed in line with the Cookie Policy. In particular, the site uses technical cookies to remember the selected language (seen_site_language) and to store the preferences expressed in the banner (seen_cookie_preferences), together with a local storage item with the same name to synchronise user choices across visits. The portfolio section embeds Behance content, which is loaded only after enabling marketing cookies and may set cookies managed by Adobe/Behance (see the Cookie Policy).

3. Purposes and legal bases of processing

Personal data are processed for the following purposes and legal bases:

• Providing site services, including page display, management of the selected language, and handling requests sent via the contact form (Art. 6.1.b GDPR).
• Compliance with legal obligations and management of any requests from competent authorities (Art. 6.1.c GDPR).
• Legitimate interest of the controller in safeguarding its rights, preventing fraud or misuse, and ensuring the proper administration of the site, including the storage of strictly necessary cookie preferences (Art. 6.1.f GDPR).
• Installation of optional cookies (e.g., analytics or marketing) based solely on the consent provided through the banner (Art. 6.1.a GDPR). This includes marketing cookies associated with Behance embeds, which are activated only after consent.

4. Processing methods

Processing is carried out mainly using electronic tools and in compliance with the principles of lawfulness, fairness, transparency, minimisation, accuracy, integrity, and confidentiality. Appropriate technical and organisational measures are adopted to ensure data security.

5. Data recipients

Data may be disclosed to parties acting as processors (e.g., hosting, maintenance and IT support providers, email transmission and reception providers, and professional consultants) or to third parties entitled to receive them under legal obligations. An up-to-date list of processors is available by contacting the controller.

6. Transfers to third countries

If data need to be transferred to countries outside the European Economic Area, the transfer will comply with Articles 44 et seq. GDPR and rely on appropriate safeguards. In particular, the email service used to answer contact form messages relies on providers that may operate outside the EU (e.g., Google Workspace/Gmail); in such cases, the Standard Contractual Clauses approved by the European Commission and additional security measures are adopted.

7. Retention period

Personal data are kept for the time strictly necessary to achieve the purposes for which they were collected, in accordance with applicable law. In particular:

• Data from requests sent through the contact form are kept for the time required to reply and, in any case, no longer than 24 months, unless retention is needed to comply with legal duties or manage disputes.
• Browsing and security data are deleted within 30 days, unless longer retention is required in the event of incidents or requests from the authorities.
• Preferences expressed through the cookie banner are stored for 12 months in the technical cookie seen_cookie_preferences and in a corresponding local storage item, after which new consent is requested.

8. Data subject rights

Data subjects may exercise at any time the rights provided for in Articles 15–22 GDPR, including rights of access, rectification, erasure, restriction of processing, portability, and objection. Consent may also be withdrawn without affecting the lawfulness of processing based on consent before its withdrawal. Requests can be sent to [email protected].

9. Right to lodge a complaint

Data subjects have the right to lodge a complaint with the Italian Data Protection Authority (www.garanteprivacy.it) or with the supervisory authority of their habitual residence, place of work, or place of the alleged infringement.

10. Notice updates

This notice may be amended to reflect regulatory updates or changes in the processing carried out. Any substantial changes will be published on this page together with the date of the last update.

Last updated: 28 January 2026.