Privacy Policy
Information on the Processing of Personal Data
Pursuant to EU Regulation 2016/679 (GDPR) and Legislative Decree 196/2003 and subsequent amendments.
1. Data Controller
Dr. Gianluca Maria Buniato
Buniato Dental Practice
Corso Francia 30, 10143 Turin (TO)
VAT number: 11634260019
Tel: +39 011 437 3857
Email: info@buniato.it
2. Data Collected
This website does not use profiling cookies, tracking tools, analytics or third-party pixels. No personal data is collected while browsing.
Personal data may be collected exclusively in the following cases:
- Direct contact: when the user contacts the studio via telephone, email or WhatsApp, voluntarily providing name, contact details and reason for contact.
- Online booking: via the Alfadocs platform (third party with its own privacy policy), accessible from book.alfadocs.com.
- Health data: within the doctor-patient relationship, health data are processed in compliance with professional secrecy, the GDPR and current health legislation. Consent to the processing of health data is acquired in the studio before any service.
3. Technical Cookies
The site can only use technical cookies strictly necessary for operation (e.g. session management, viewing preferences). These cookies do not require consent pursuant to art. 122 of Legislative Decree 196/2003.
The site is served via the CDN network of Cloudflare, which can set technical cookies to protect against cyber attacks (e.g. __cf_bm). These cookies are classified as strictly necessary. Cloudflare Disclosure: cloudflare.com/privacypolicy.
4. Third Party Services
The site integrates the following external services:
- Google Fonts: for loading typefaces. Google may collect your IP address. Google Privacy Policy.
- Cloudinary: for optimized image hosting. Cloudinary Privacy Policy.
- Google Maps: for viewing the study map. Google Privacy Policy.
5. Purpose of the Processing
Any data provided by the user are processed for:
- Respond to requests for information or appointments
- Management of the doctor-patient relationship
- Legal obligations (tax, health, administrative obligations)
6. Legal Basis
The processing is based on:
- Consent of the interested party (art. 6.1.a GDPR) for voluntary contact
- Execution of a contract or pre-contractual measures (art. 6.1.b GDPR) for healthcare provision
- Legal obligation (art. 6.1.c GDPR) for tax and health obligations
- Vital interest (art. 9.2.c GDPR) for health data in case of urgency
7. Data Retention
The contact data are kept for the time necessary to manage the request and in any case no later than 24 months from collection. Health data are stored according to the legal terms established for clinical documentation (10 years from the date of the last service, unless otherwise provided).
8. Rights of the interested party
Pursuant to articles. 15-22 of the GDPR, the interested party has the right to:
- Access your personal data
- Rectify inaccurate or incomplete data
- Obtain the deletion of data (right to be forgotten)
- Limit treatment
- Object to the treatment
- Request data portability
- Revoke your consent at any time
- Submit a complaint to the Guarantor for the Protection of Personal Data (garanteprivacy.it)
To exercise your rights, write to: info@buniato.it.
9. Security
The site uses the HTTPS protocol with TLS encryption to protect communications. The server is protected by firewalls, anti-intrusion systems and continuous monitoring. Health data are managed with security measures appropriate to the risk, in compliance with the art. 32 of the GDPR.
10. Updates
This information may be updated periodically. The date of the last update is shown at the bottom.
Last update: 04/23/2026