PRIVACY POLICY

Last updated: March 2, 2026

Introduction

This Privacy Policy explains how personal data are collected, used, stored, and protected when you access or interact with the website www.sicily-lawyer.it

(the “Website”).

The Website is operated by:

Avv. Alessandro P. Leonardi

VAT No. 05738960870

Via Aldebaran 9

95127 Catania (CT) – Italy

Email: alessandro.leonardi@sicilylawyer.it

For the purposes of Regulation (EU) 2016/679 (General Data Protection Regulation – “GDPR”) and applicable Italian data protection legislation, Avv. Alessandro P. Leonardi acts as the Data Controller.

Although the Website is accessible worldwide and intended for an international audience, all personal data are processed in accordance with European Union data protection standards, which are among the most stringent globally.

Nature and Scope of the Website

This Website provides general information regarding professional legal activities and publishes blog content addressing legal and regulatory topics.

It also allows users to submit inquiries through a contact form.

The Website does not provide automated legal advice, does not offer online legal representation, and does not create an attorney-client relationship merely through access or communication.

Personal Data You May Provide

If you choose to contact the Data Controller through the contact form, you may voluntarily provide personal information, including:

Your name

Your email address

The content of your message

Any documents or attachments you elect to upload

Because this Website relates to legal services, attachments may contain information concerning legal disputes, claims, investigations, contractual matters, or judicial proceedings. Such materials may include personal data of third parties or special categories of personal data under Article 9 GDPR.

Users are strongly encouraged to exercise caution before transmitting confidential, privileged, or highly sensitive information. Information should be shared only to the extent strictly necessary for an initial evaluation.

By submitting materials, you represent that you are lawfully entitled to share any personal data contained therein.

Automatically Collected Technical Data and Analytics

The Website is hosted on the Squarespace platform. In the ordinary course of operation, certain technical information is automatically processed.

This may include:

IP address;

browser and device characteristics;

pages visited;

time spent on pages;

referring sources;

general geographic location at country or regional level.

Squarespace provides integrated, first-party analytics tools that generate aggregated statistical information about website traffic and user interaction. These analytics allow the Data Controller to understand general audience trends and improve the structure, clarity, and performance of the Website.

Analytics data are used exclusively for:

evaluating overall website performance;

improving informational content and usability;

ensuring technical stability and security.

No profiling, behavioral advertising, marketing automation, or automated decision-making is conducted through the Website.

Cookies and Similar Technologies

The Website uses essential cookies necessary for its proper functioning and security.

In addition, Squarespace may use first-party analytics cookies or similar technologies to generate aggregated traffic statistics and usage insights.

These analytics tools:

are not used for advertising or marketing profiling;

do not enable cross-site behavioral tracking for commercial purposes;

are limited to internal performance analysis.

Users may adjust browser settings to refuse cookies. However, disabling essential cookies may affect website functionality.

Purposes of Processing and Legal Basis

Personal data are processed only for legitimate, defined purposes and only where a valid legal basis exists.

When you submit a contact request, your data are processed in order to respond to your inquiry and, where appropriate, assess whether a professional engagement may follow. The legal basis for this processing is Article 6(1)(b) GDPR (pre-contractual measures at the data subject’s request) and, where applicable, Article 6(1)(f) GDPR (legitimate interest in responding to communications).

If a formal professional mandate is subsequently established, personal data may be processed for the performance of legal services, compliance with professional obligations, record-keeping requirements, and the establishment, exercise, or defense of legal claims. In such cases, processing may rely on Articles 6(1)(b), 6(1)(c), and 9(2)(f) GDPR.

At no time are personal data processed for commercial advertising, behavioral analytics, profiling, or automated decision-making.

Data Minimization and Responsible Transmission

The Data Controller applies principles of data minimization, purpose limitation, and proportionality.

Only information reasonably necessary for responding to inquiries or fulfilling professional obligations is processed.

However, communications transmitted via the internet cannot be guaranteed to be entirely secure. Users acknowledge that submission of information through the contact form occurs at their own initiative. No absolute guarantee of confidentiality can be provided prior to the execution of a formal written engagement agreement.

Data Retention

Personal data are retained only for the time necessary to fulfill the purposes for which they were collected and to protect legitimate legal interests.

Contact inquiries that do not result in a professional engagement are retained only for the time reasonably necessary to respond and to manage any related follow-up, after which they are securely deleted or archived in accordance with legal obligations.

Where a professional mandate is established, data are retained in accordance with Italian professional retention rules and statutory requirements.

Technical log data are retained according to Squarespace’s operational policies.

No personal data are retained indefinitely without legal justification.

International Data Transfers

Squarespace operates globally and may process certain data outside the European Union, including in the United States.

Where such transfers occur, they are carried out in compliance with Chapter V of the GDPR through appropriate safeguards, such as Standard Contractual Clauses or other legally recognized mechanisms.

The Data Controller does not independently transfer personal data outside the EU beyond what is technically necessary for hosting infrastructure.

Data Security

Appropriate technical and organizational safeguards are implemented to protect personal data against unauthorized access, alteration, disclosure, or destruction.

Access to data is limited to what is necessary for legitimate professional purposes.

Nevertheless, no method of transmission over the internet can be guaranteed as completely secure. Users should exercise discretion when transmitting sensitive materials electronically.

Your Rights

Under the GDPR, you have the right to request access to your personal data, to request rectification of inaccurate information, to request erasure where legally permissible, to request restriction of processing, to object to processing based on legitimate interest, and, where applicable, to request data portability.

Requests may be directed to:

alessandro.leonardi@sicilylawyer.it

You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali).

No Attorney-Client Relationship

Accessing this Website, reading blog content, or submitting a contact request does not create an attorney-client relationship.

Such relationship arises exclusively upon formal written agreement following appropriate conflict checks and professional evaluation.

Until that time, no fiduciary obligation is assumed, and confidentiality cannot be guaranteed beyond what is required by applicable law.

Users are advised not to transmit time-sensitive, strategic, or privileged information prior to formal engagement.

Governing Law

This Privacy Policy and any matters relating to data protection within the scope of the Website shall be governed by the laws of Italy and applicable European Union legislation.

Changes to This Policy

This Privacy Policy may be updated periodically to reflect legal, technical, or organizational developments.

The most current version will always be available on this page with the updated revision date.