Privacy Policy

This privacy notice is provided pursuant to Regulation (EU) 2016/679 (GDPR) and the applicable Italian legislation on the protection of personal data.

1. Data Controller

The Data Controller is: EPStories

EP Stories
Website: [https://epstories.com](https://epstories.com)
Contact email: [info@epstories.com](mailto:info@epstories.com)

2. Types of Data Processed

Browsing data

The computer systems and software procedures used to operate the website acquire, during their normal operation, certain personal data whose transmission is inherent in the use of Internet communication protocols.
Such data include IP addresses, browser type, operating system, access times, and pages visited.

Such data are used exclusively for statistical and security purposes, in aggregated or anonymized form.

Data voluntarily provided by the user

The optional, explicit, and voluntary sending of messages via contact forms, comments, or email entails the acquisition of the data necessary to respond to requests (name, email address, and message content).

3. Comments

When visitors leave comments on the site, we collect the data shown in the comments form, as well as the visitor’s IP address and the browser user agent string, in order to help detect spam.

An anonymized string (hash) generated from your email address may be provided to the Gravatar service.
Gravatar’s privacy policy is available here: [https://automattic.com/privacy/](https://automattic.com/privacy/).

After approval of the comment, the profile image is visible to the public in the context of the comment.

4. Cookies and Tracking Tools

This website uses technical cookies and, subject to the user’s consent, third-party analytics and tracking cookies.

Tools Used

• Google Analytics 4 (GA4)
  Used for anonymous statistical analysis of website traffic and usage.

• Google Tag Manager (GTM)
  Used as a tag management system, without direct processing of personal data.

• Microsoft Clarity
  Used for aggregated behavioral analysis (heatmaps and anonymized session recordings).

• Hotjar (if enabled)
  Utilizzato per analisi UX tramite heatmap e registrazioni anonimizzate.

All of these tools are activated only after obtaining user consent, through the cookie management system.

5. Consent Management

Consent to the use of cookies is managed through Complianz.

The user may:

• to accept or refuse non-essential cookies

• to modify your preferences at any time by clicking on “Manage cookies”, available in the website footer

6. Legal Basis for Processing

Personal data are processed:

• on the basis of the user’s consent

• for the performance of contractual or pre-contractual obligations

• to comply with legal obligations

• for the legitimate interest of the Data Controller (website security and functionality)

7. Data Retention

The data are retained for the time strictly necessary to fulfill the purposes for which they were collected, unless different retention periods are required by law.

Comments and their associated metadata may be retained indefinitely in order to enable automatic recognition of follow-up comments.

8. User Rights

The user has the right to:

• to access your personal data

• to request their rectification or erasure

• to request restriction of or object to the processing

• to request data portability

• to withdraw consent at any time

• to lodge a complaint with the Italian Data Protection Authority (Garante per la Protezione dei Dati Personali)

Requests may be submitted to the Data Controller using the contact details provided.

9. Data Transfers

Data may be processed by third-party providers (e.g. Google, Microsoft), including outside the EU, in compliance with the safeguards provided by the GDPR (e.g. Standard Contractual Clauses).

10. Updates

This Privacy Policy may be subject to changes.
Users are encouraged to review it periodically to stay informed.