Boris Arcidiacono Ltd

Effective date: 01.01.2026

1. General Information

This Privacy Policy defines the rules for processing personal data and using cookies by:

Boris Arcidiacono Ltd
233 Tower Road, Sliema SLM 1601, Malta
TIN (VAT Number): MT13159731
Email: info@arcidiacono.com
Phone: +356 79493831

The Data Controller processes personal data in accordance with:

• Regulation (EU) 2016/679 (GDPR),

• Maltese data protection laws,

• other applicable EU regulations.

2. Scope of Application

This Policy applies to users of the website:

👉 borisarcidiacono.com

The website is informational in nature and serves to present the company’s services and products and enable contact with the company.

3. Categories of Personal Data

The Controller may process the following data:

3.1 Data provided by the user

• name and surname,

• email address,

• phone number,

• delivery address (if required),

• content of messages sent via the contact form.

3.2 Technical and automatically collected data

• IP address,

• device and browser information,

• website activity data,

• cookies,

• server logs.

3.3 Marketing data

• advertising interaction data,

• statistical and analytical data.

The Controller does not process special categories of personal data.

4. Purposes of Data Processing

Personal data is processed for:

• service provision and handling enquiries,

• customer communication and support,

• marketing activities,

• analytics and website improvement,

• security purposes,

• compliance with legal obligations.

5. Legal Bases for Processing (Article 6 GDPR)

Personal data is processed based on:

• user consent,

• performance of a contract or pre-contractual actions,

• legal obligations,

• legitimate interests of the Controller.

User consent is given via a checkbox in the contact form.

6. Recipients of Personal Data

Data may be shared with:

• hosting providers (OVH),

• domain providers (GoDaddy),

• analytics providers (Google Analytics),

• marketing platforms (Meta/Facebook, Google Ads, LinkedIn),

• accounting service providers,

• public authorities where required by law.

Personal data is not transferred outside the EU, except where necessary in connection with global service providers, with appropriate safeguards in place.

7. Data Retention Period

Personal data is stored:

• until consent is withdrawn,

• for the duration of the business relationship,

• for periods required by law,

• until the limitation period for claims expires.

8. Data Subject Rights

Users have the right to:

• access their data,

• rectify data,

• erase data (“right to be forgotten”),

• restrict processing,

• data portability,

• object to processing,

• withdraw consent at any time,

• lodge a complaint with a supervisory authority.

The supervisory authority in Malta is:

Office of the Information and Data Protection Commissioner (IDPC)
https://idpc.org.mt

9. Data Security

The Controller applies appropriate technical and organisational measures, including:

• SSL encryption,

• server security measures,

• restricted access to data,

• security systems,

• anti-spam mechanisms (reCAPTCHA).

10. Children’s Data

The website is not directed at children under 16 years of age.
The Controller does not knowingly collect children’s personal data.

11. Cookies Policy

11.1 What are cookies?

Cookies are small text files stored on the user’s device.

11.2 Types of cookies used

a) Necessary cookies

Ensure proper functioning of the website.

b) Analytical cookies

• Google Analytics

c) Marketing cookies

• Facebook Pixel (Meta),

• Google Ads,

• LinkedIn.

d) Functional cookies

Remember user preferences.

11.3 Cookie management

Users can manage cookies via:

• browser settings,

• the cookie banner available on the website.

12. Changes to the Privacy Policy

The Controller reserves the right to amend this Privacy Policy.
The current version will always be published on the website.