en

Privacy Policy

IN ACCORDANCE WITH REGULATION (EU) 2016/679 (GDPR) AND ITALIAN LEGISLATIVE DECREE 196/2003 AS AMENDED BY DECREE 101/2018

Effective Date: July 2, 2025

PORTALIO (“we”, “our”, “us”) is committed to protecting your privacy and personal data in full compliance with European and Italian data protection laws. This policy explains in clear and transparent language what data we collect, how and why we process it, the legal grounds under GDPR, and what rights you have.

1. Data Controller

PORTALIO S.R.L.
Reg No. 306182986

2. Types of Data Collected

a) Data provided by you:

  • Name and surname
  • Email address
  • LinkedIn or other profile links (if provided)
  • Project or idea information
  • Any messages sent via forms, email, or chat

b) Data collected automatically:

  • IP address
  • Device and browser type
  • LinkedIn or other profile links (if provided)
  • Pages visited and on-site behavior
  • Cookies and tracking technologies

3. Purpose and Legal Basis of Processing

Purpose Legal Basis (Art. 6 GDPR)
Responding to requests and forms Consent (1a), Pre-contractual execution (1b)
Project evaluation and follow-up Legitimate interest (1f), Contract (1b)
Email newsletters and updates Consent (1a)
Website optimization and analytics Consent via cookie banner (1a), Legitimate interest (1f)
Legal and administrative compliance Legal obligation (1c)
Fraud prevention and security Legitimate interest (1f), Legal obligation (1c)

4. Cookies and Tracking

We use cookies to:

  • Ensure website functionality
  • Analyze usage and improve performance

You can manage cookies via the on-site banner or browser settings.

5. Email Marketing

We may send newsletters and updates only with your explicit consent (opt-in). Every email includes an unsubscribe link (opt-out).

6. Founder Applications

When you apply through our forms:

  • We store and evaluate your data internally
  • We may retain notes and correspondence for consideration

This is based on our legitimate interest and pre-contractual obligations.

7. Third-Party Providers

We may use external services for hosting, CRM, analytics, visual creations and email. All comply with GDPR, and we sign Data Processing Agreements (DPA) where necessary.

8. Data Retention Periods

Data Type Retention
Application forms Up to 24 months after last interaction
Analytics data Up to 14 months
Email subscription data Until consent is withdrawn
Legal/contractual records 3 years depending on legal obligations

9. Data Security

We implement technical and organizational measures such as:

  • SSL encryption
  • Two-factor authentication (2FA)
  • Role-based data access
  • Backups and audit logs
  • Access monitoring

10. Data Subject Rights

Under Articles 15–22 GDPR, you have the right to:

  • Access your data
  • Rectify inaccurate data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Port your data to another provider
  • Object to processing
  • Withdraw consent

11. Data Breach Notification

In case of a data breach that may pose a risk to your rights, we will:

  • Notify the Italian DPA within 72 hours
  • Inform you directly if required

12. Policy Updates

This privacy policy may be updated. The latest version will always be published on our website. In case of significant changes, we will notify users by email or banner.

13. Governing Law

This policy is governed by the laws of the European Union and Italian data protection regulations.

14. Contact Information

Data Controller:
PORTALIO S.R.L.
Email: portalio@portalio.io
Reg No. 306182986

PORTALIO protects your ideas as carefully as your data.

Let’s Shake This Idea
Brief us and let’s launch together

    Please add file TLDR or one pager for your idea.