Privacy Policy Last Updated:
June 1, 2026
At iuliani.com, we take your privacy seriously. This Privacy Policy explains how iuliani.com (hereinafter "we," "us," or "our") collects, uses, discloses, and protects your personal data when you visit our website or use our services.
By using our website or services, you acknowledge that you have read and understood this Policy. We comply with the EU General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), the Telecommunications-Digital Services Data Protection Act (TDDDG), and other applicable laws.
1. Data Controller The data controller is: iuliani.com
iuliani Pro
Email: office@iuliani.com
You can contact us regarding data protection at: privacy@iuliani.com
2. Data Protection Officer (if applicable) We have not appointed a dedicated Data Protection Officer as we are not required to do so under Article 37 GDPR. All data protection inquiries are handled by the controller above.
3. Information We Collect
3.1 Data You Provide Voluntarily
- Contact details (name, email address, phone number)
- Company information
- Billing and payment data (processed by third-party providers)
- Messages via contact forms, support tickets, or project inquiries
- Account registration data (if applicable)
- Any other information you submit to us
3.2 Data Collected Automatically When you visit our website, we automatically collect:
- IP address
- Browser type/version, operating system, device type
- Referring URL, pages visited, session duration
- Technical log files
This data helps us ensure security, functionality, and service improvement.
4. Purposes and Legal Basis for Processing (Art. 6 GDPR)
We process personal data only when we have a valid legal basis:
Purpose | Legal Basis | Examples |
|---|---|---|
Providing services & contracts | Art. 6(1)(b) – Contract performance | Delivering web/AI solutions, project management |
Customer support & communication | Art. 6(1)(b) or (f) – Legitimate interest | Responding to inquiries |
Newsletter & marketing | Art. 6(1)(a) – Consent | Promotional emails (double opt-in) |
Website analytics | Art. 6(1)(a) – Consent (where required) | Usage statistics |
Security, fraud prevention, IT maintenance | Art. 6(1)(f) – Legitimate interest | Protecting our systems |
Legal compliance | Art. 6(1)(c) – Legal obligation | Tax, accounting, authority requests |
5. Cookies and Similar Technologies (TDDDG + GDPR)
We use cookies and similar technologies. You will see a consent banner upon your first visit (for users in the EEA).
- Strictly Necessary Cookies: Required for website operation and security. No consent needed (TDDDG §25(2)).
- Analytics Cookies: For understanding traffic and improving our site (e.g., Matomo or Plausible). Require consent.
- Marketing/Tracking Cookies: For advertising and remarketing. Require explicit consent.
You can manage or withdraw consent at any time via the cookie settings or by contacting us. We do not use invasive tracking without consent.
6. Contact Forms & Inquiries Data submitted through contact forms is processed to handle your request (legal bases: consent, contract, or legitimate interest). We delete inquiry data after 6–12 months unless a contractual relationship develops.
7. Newsletter We use a double opt-in process. You can unsubscribe anytime via the link in every email. We track open/click rates for optimization (you can object to this).
8. Data Sharing & Processors
We use the following categories of processors (under GDPR-compliant Data Processing Agreements):
- Hosting providers (e.g., [specify if known])
- Analytics tools (Matomo, Plausible, or privacy-friendly alternatives)
- Payment processors
- Email service providers
- Cloud storage / project management tools
- Professional service providers (accountants, lawyers)
We do not sell your personal data. Data is only shared when necessary for the purposes above or required by law.
9. International Data Transfers Some processors are located outside the EEA. We ensure protection through:
- European Commission Standard Contractual Clauses (SCCs)
- Adequacy decisions (where available)
- Supplementary technical/organizational measures (e.g., encryption)
10. Data Retention We retain data only as long as necessary:
- Contract data: Duration of contract + statutory retention (usually 6–10 years for accounting/tax)
- Marketing consent: Until withdrawal
- Analytics data: Up to 14–26 months (anonymized where possible)
- Inquiry data: 6–24 months
11. Data Security We implement appropriate technical and organizational measures, including TLS encryption, access controls, regular security updates, and data minimization. However, no system is completely secure. In case of a data breach, we will notify you and the supervisory authority where legally required.
12. Your Rights (GDPR) You have the following rights (subject to legal limitations):
- Right of access
- Right to rectification
- Right to erasure ("right to be forgotten")
- Right to restriction of processing
- Right to data portability
- Right to object
- Right to withdraw consent (at any time, without affecting prior processing)
- Right not to be subject to automated decision-making (we do not engage in this)
To exercise these rights, contact office@iuliani.com. We respond within one month (free of charge in most cases).
You also have the right to lodge a complaint with a supervisory authority. In Germany, this is typically the data protection authority of your federal state or the Federal Commissioner for Data Protection and Freedom of Information (BfDI).
13. Children's Privacy Our website and services are not directed at children under 16. We do not knowingly collect data from minors without verifiable parental consent.
14. Changes to This Policy We may update this Privacy Policy. The "Last Updated" date will be revised. Significant changes will be notified via the website or email where appropriate.
15. Contact For any questions: office@iuliani.com iuliani.com