Data Processing Register
Pursuant to Article 30 of Regulation (EU) 2016/679 (GDPR), this register describes the personal data processing activities carried out by KP Studio Legale e Notarile.
Data Controller
KP Studio Legale e Notarile
Via Cà dei Lunghi, 70/B – 47893 Borgo Maggiore – R.S.M.
Email: kristinapardalos@gmail.com
Phone: (+378) 0549 901308
List of Processing Activities
1. Management of Contact Requests via Website
- Purpose: Respond to contact requests and provide preliminary legal consultation
- Legal basis: Data subject consent (Art. 6, para. 1, lett. a GDPR) / Legitimate interest (Art. 6, para. 1, lett. f GDPR)
- Data categories: Name, email address, message content
- Recipients: Studio staff
- Retention period: 24 months from collection, unless required by law
- Extra-EU transfer: None
2. Client and Legal Case Management
- Purpose: Management of the professional relationship, execution of legal mandates
- Legal basis: Contract performance (Art. 6, para. 1, lett. b GDPR) / Legal obligation (Art. 6, para. 1, lett. c GDPR)
- Data categories: Identification data, fiscal data, case-related data, sensitive data (crimes, criminal proceedings)
- Recipients: Studio staff, judicial authorities, technical consultants
- Retention period: According to applicable professional regulations (generally 10 years)
- Extra-EU transfer: None
3. Technical Navigation Cookies Management
- Purpose: Ensure proper functioning of the website
- Legal basis: Legitimate interest (Art. 6, para. 1, lett. f GDPR)
- Data categories: Session data, navigation preferences
- Recipients: No third parties
- Retention period: Session duration
- Extra-EU transfer: None
Security Measures
Personal data is processed with the following technical and organizational security measures:
- Access to data limited to authorized personnel
- Hosting on SSL/TLS-certified servers
- Regular backups and recovery procedures
- Staff training on data protection
- Data Protection Impact Assessment (DPIA) when necessary
Last updated: April 2026