Privacy Policy — Purple Rain Design

Privacy Policy

Last updated: 26 June 2026

This Privacy Policy explains how Purple Rain Investment di Stillitano Francesco ("Purple Rain Design", "we", "us") collects and processes your personal data when you visit purpleraindesign.com (the "Site") or book a strategy call with us, in accordance with Regulation (EU) 2016/679 (GDPR) and the Italian Personal Data Protection Code (Legislative Decree 196/2003, as amended). Please also read our Cookie Policy.

1. Data Controller

Purple Rain Investment di Stillitano Francesco

VAT (P.IVA): 03900990544
Via Enrico Fermi 26, Perugia (PG), Italy
Email: [email protected]

We have not appointed a Data Protection Officer, as we are not required to do so under Article 37 GDPR. For any privacy matter you can contact us at the email above.

2. What data we collect

  • Identification and contact data you provide when you book a call or contact us: name, email address and phone number.
  • Booking data: the date, time and time zone of the appointment you select, and any message or information you choose to share.
  • Communications: the content of emails, text messages (SMS) and other messages exchanged with us.
  • Usage and technical data collected automatically through cookies and similar tools (for example IP address, device and browser type, pages viewed and interactions). See the Cookie Policy for details.

We do not knowingly collect special categories of data, and we do not request them.

3. How we collect your data

We collect data directly from you when you fill in the booking calendar (provided through Calendly) or otherwise contact us, and automatically when you browse the Site, through the cookies and analytics tools described in the Cookie Policy.

4. Why we use your data and on what legal basis

  • To schedule, confirm and deliver your strategy call, including sending appointment confirmations and reminders by email and SMS and hosting the call on Google Meet. Legal basis: performance of a contract or pre-contractual measures taken at your request (Art. 6(1)(b) GDPR).
  • To respond to your enquiries and communicate with you. Legal basis: pre-contractual measures / our legitimate interest in replying to you (Art. 6(1)(b) and (f)).
  • To analyse and improve the Site through analytics tools (Microsoft Clarity, Wistia). Legal basis: your consent, given through the cookie banner (Art. 6(1)(a)).
  • To comply with legal obligations, including accounting and tax obligations. Legal basis: legal obligation (Art. 6(1)(c)).
  • To establish, exercise or defend legal claims where necessary. Legal basis: our legitimate interest (Art. 6(1)(f)).

We send you service-related messages (such as appointment confirmations and reminders) because they are necessary to provide the call you requested. We will only send you marketing communications if you have given separate consent, which you can withdraw at any time.

5. Who we share your data with

We do not sell your personal data. We share it only with trusted providers who process it on our behalf as data processors, or who act as independent controllers for their own tools:

  • HighLevel, Inc. (GoHighLevel) — Site hosting, CRM and sending of email and SMS confirmations/reminders.
  • Calendly LLC — booking and scheduling of the call.
  • Google LLC (Google Meet) — hosting of the video call.
  • Wistia, Inc. — video hosting and viewing statistics.
  • Microsoft Corporation (Microsoft Clarity) — Site usage analytics.

We may also disclose data to authorities or advisors where required by law or to protect our legal rights.

6. International data transfers

Some of the providers above are located outside the European Economic Area (e.g. in the United States). Where your data is transferred outside the EEA, it is protected by appropriate safeguards under Chapter V GDPR, such as the European Commission's Standard Contractual Clauses and/or the EU-U.S. Data Privacy Framework.

7. How long we keep your data

We keep your personal data only for as long as necessary for the purposes described above, and no longer than required. In particular:

  • Booking and contact data: for the time needed to handle your request and our business relationship, after which it is deleted or anonymised.
  • Data we must keep by law (for example accounting and tax records): for the period required by Italian law, generally up to 10 years.
  • Analytics data: for the periods set by each provider, as described in the Cookie Policy.

8. Your rights

Under the GDPR you have the right to:

  • access your personal data and obtain a copy;
  • rectify inaccurate or incomplete data;
  • request erasure of your data ("right to be forgotten");
  • restrict or object to the processing;
  • data portability;
  • withdraw your consent at any time, without affecting processing carried out before.

To exercise any of these rights, email us at [email protected]. You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali, gpdp.it).

9. Automated decision-making

We do not carry out automated decision-making or profiling that produces legal effects, or similarly significant effects, on you.

10. Who can use this Site

Our services are intended for businesses and for individuals aged 18 or over. The Site is not directed at minors, and we do not knowingly collect data from anyone under 18.

11. Data security

We take appropriate technical and organisational measures to protect your personal data against loss, misuse and unauthorised access. Our providers also maintain their own security measures. However, no transmission over the internet can be guaranteed to be completely secure.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top shows the latest revision. We encourage you to review this page periodically.

13. Contact

For any question about this Privacy Policy or your personal data, contact us at [email protected].

Back to home