Skip to content
HUGIN HUGIN
itenes
Request demo
Product Pricing Why HUGIN
Request demo Sign in

Privacy & Cookies

In brief. HUGIN is a product of P3 Consulting. We only collect data you send us through the contact form in order to respond to your enquiry. We do not sell data, we do not use profiling cookies, and site analytics are anonymous. You can exercise your GDPR rights by writing to [email protected].

1. Data controller

The data controller for personal data under EU Regulation 2016/679 (GDPR) is P3 Consulting, with registered operational address at Via Giosuè Carducci 2, 20852 Villasanta (MB), Italy. Email: [email protected].

2. Data we collect

We collect only the data strictly necessary to respond to your requests.

  • Data provided via the contact form: full name, business email, company name, message text.
  • Anonymous and aggregated usage statistics collected via Umami (self-hosted, no profiling cookies): pages viewed, country, referrer.
  • Technical server logs managed for security and diagnostic purposes.

3. Purposes and legal basis

  • Handling contact form requests and pre-contractual matters — legal basis: performance of pre-contractual measures at your request and/or consent (Art. 6(1)(b) and 6(1)(a) GDPR).
  • Security and operation of the website — legal basis: legitimate interest (Art. 6(1)(f) GDPR).
  • Aggregate statistics to improve the site — legal basis: legitimate interest, using privacy-friendly tools without profiling (Art. 6(1)(f) GDPR).

4. Tools and data processors

  • Web3Forms — forwards contact form messages by email. Acts as an external data processor.
  • Umami — site analytics, self-hosted, anonymous, and cookie-free.
  • Cloudflare — site distribution, security, and protection.

5. Cookies and tracking

This site does not use profiling or marketing cookies. Statistics are collected in anonymous and aggregated form, without cookies. Strictly necessary technical cookies required for site operation and security may be present.

6. Data retention

We retain contact form data for as long as necessary to handle your request and any resulting commercial relationship, and in any case no longer than 24 months from the last contact, unless legal obligations require otherwise.

7. Sharing and transfers

We do not sell or transfer your data to third parties for marketing purposes. Data may be processed by the processors listed in section 4. Your attack surface data is stored exclusively in Italian data centres, with no extra-EU transfers.

8. Your GDPR rights (Arts. 15–22)

You have the right to: access, rectification, erasure (right to be forgotten), restriction of processing, objection, data portability, and withdrawal of consent at any time without affecting the lawfulness of prior processing. To exercise your rights, write to [email protected]: we will respond within the timeframes required by law.

9. Supervisory authority

You have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali) (garanteprivacy.it).

10. Changes

We may update this notice to reflect regulatory or service changes. The current version is always published on this page with its last-updated date.