This website and all mentoring services are operated by:

Tamara Spasich — VAT number: IT10883100967
Sole Proprietor — ATECO Code 741090 (Other Design Activities)
Email: tamara@tamaraspasich.com
Address: Via Imperia 20, 20142 Milan (MI), Italy

Under the EU General Data Protection Regulation (GDPR), I am the Data Controller of your personal data.

 

 

2. Personal data I collect

​I may collect and process the following categories of personal data:

​

• First and last name

• Email address

• Messages sent via contact forms or email

• Billing and invoicing information

• Payment data processed by third parties such as PayPal or Stripe (I do not see or store your card details)

• Technical data such as IP address, browser type, and device information when analytics tools are enabled

​

​

3. Purposes and legal bases

I process your personal data for the following purposes and legal bases:

​

a) Providing mentoring services
Legal basis: Performance of a contract (Art. 6.1.b GDPR)

​

b) Responding to enquiries
Legal basis: Pre-contractual steps (Art. 6.1.b GDPR)

​

c) Issuing invoices and fulfilling legal obligations
Legal basis: Legal obligation (Art. 6.1.c GDPR)

​

d) Sending newsletters and marketing communications
Legal basis: Your explicit consent (Art. 6.1.a GDPR).

You may withdraw consent at any time.

​

e) Delivering free resources (e.g. ebooks)
Legal basis: Consent (Art. 6.1.a GDPR)

​

f) Operating, securing and improving the website
Legal basis: Legitimate interest (Art. 6.1.f GDPR) to ensure functionality, security and performance,

while respecting users’ fundamental rights and freedoms.

​

​

 

4. Newsletter and marketing emails

If you subscribe to my mailing list or request a free resource where clearly stated, I may send you:

​

• tips and educational content

• updates

• resources

• information about offers and programs

​​

You can unsubscribe at any time using the link in the email or by contacting me.

 

​

5. Third-party providers

I use trusted service providers acting as Data Processors, including but not limited to:

​

• Website hosting: Wix

• Payment processing: Stripe, PayPal

• Email marketing platforms

​

These providers process data on my behalf and in accordance with GDPR requirements.
I do not sell personal data.

​

A full list of processors is available upon request.

 

​

6. International transfers

Some providers may process data outside the European Economic Area (EEA).

​

In such cases, I ensure appropriate safeguards are in place in accordance with Articles 44–49 GDPR,

such as Standard Contractual Clauses or adequacy decisions.

 

​

7. Data retention

I retain personal data only as long as necessary:

• Financial and invoicing data: up to 10 years (legal obligation)

• Newsletter data: until you unsubscribe

• Enquiry data: as long as necessary to respond and follow up

 

 

8. Your rights

You have the right to:

​

• access your data

• correct inaccurate data

• request deletion

• restrict or object to processing

• request data portability

• withdraw consent at any time

• lodge a complaint with a supervisory authority

​

To exercise your rights, contact me at: tamara@tamaraspasich.com

​

You also have the right to lodge a complaint with the competent Data Protection Authority.

In Italy, this is: Garante per la Protezione dei Dati Personali — www.garanteprivacy.it

​

​

9. Mandatory or optional data

The provision of personal data is voluntary, but certain data is necessary to provide services

(for example billing information for invoicing or your email address for delivering content).

 

Failure to provide required data may prevent me from delivering the requested service.

 

​

10. Automated decision-making

I do not use automated decision-making or profiling that produces legal or similarly significant effects on users.

 

​

11. Cookies

This website uses essential cookies and, with your consent, analytics or third-party cookies.

Non-essential cookies are only set after you provide consent via the cookie banner.

​

You can withdraw your consent at any time through the cookie settings or your browser.

​

For full details, please see the Cookie Policy.

​​

​

12. International users (CCPA & UK GDPR)

If you are a resident of California, you may have additional rights under the California Consumer Privacy Act (CCPA), including the right to know, delete, and opt-out of the sale of personal information.

 

I do not sell personal information.

UK users are protected under the UK GDPR and may exercise the same rights described above.

​​

​

13. Updates​

This Privacy Policy may be updated from time to time.

Any changes will be published on this page.

​

Last updated: 15/01/2026

​

​

​

​