Back to TonnoBass

Privacy Policy

Last updated: May 28, 2026

1. Who is responsible for your data

This Privacy Policy explains how personal data is handled when you visit this website, contact TonnoBass, or request a bass recording service.

This policy is prepared in accordance with Regulation (EU) 2016/679 (GDPR) and the Italian Legislative Decree 196/2003, as amended.

Data Controller: Antonio D'Amato
Location: Milan, Italy
Email: book@tonnobass.com

2. What data may be collected

This website does not currently use a contact form, user accounts, a customer database, analytics, or advertising pixels. However, when you contact TonnoBass by email or through related project workflows, you may choose to provide personal or project-related information, such as:

  • your name, email address, artist name, or company details;
  • project details, song titles, deadlines, BPM, reference links, notes, and musical preferences;
  • audio files, demos, session links, stems, or other materials needed to work on your project;
  • billing, payment, and invoicing information when a booking is confirmed;
  • technical data that may be processed automatically when you visit the website, such as IP address, browser type, device information, pages visited, and access logs.

3. Why the data is used

Your data is used only for legitimate and practical reasons connected to the service, including:

  • replying to your enquiry and understanding your project;
  • preparing quotes, bookings, deadlines, revisions, and delivery details;
  • recording, editing, mixing, and delivering bass tracks;
  • handling payments, invoices, accounting, and legal obligations;
  • protecting the website, preventing abuse, and maintaining basic technical security.

4. Legal bases for processing

Personal data is processed under one or more of the following legal bases under the GDPR:

  • contract or pre-contractual steps, when you request a quote, book a session, or send project material; this may include explicit written confirmation to start a personalized service.
  • legal obligation, for accounting, tax, invoicing, and compliance requirements;
  • legitimate interest, for ordinary business communication, website security, and service improvement;
  • consent, where a specific consent is required by law.

5. Third-party services

To operate the website and deliver the service, trusted third-party providers may process data on behalf of TonnoBass or as independent providers. These may include:

  • Netlify for website hosting and technical logs;
  • UNPKG or similar CDN providers for loading website libraries;
  • ImprovMX for email forwarding;
  • Google/Gmail for email communication;
  • Dropbox, Google Drive, or WeTransfer for file transfer or delivery when needed;
  • PayPal, Revolut, banks, or payment providers for payments and related records.

If you click links to external platforms such as social networks, music platforms, or portfolio profiles, their own privacy policies apply.

6. Cookies and tracking

This website does not currently intentionally use analytics cookies, advertising cookies, tracking pixels, or profiling tools. Basic technical processing may still happen through hosting, CDN, browser, or security logs needed to load and protect the website.

If analytics, embedded players, advertising tools, or other non-essential tracking technologies are added in the future, this policy will be updated and, where required, a consent mechanism will be introduced.

7. How long data is kept

Project enquiries and related email communication may be kept for up to 24 months, unless a longer period is reasonably needed to manage an ongoing collaboration, resolve a dispute, or comply with legal obligations.

Audio files and project materials are kept for the time needed to complete the work, manage revisions, and handle reasonable follow-up requests. Payment, invoice, and accounting records are kept for the period required by applicable law.

8. International transfers

Some providers used for hosting, email, file transfer, cloud storage, or payment processing may process data outside the European Economic Area. Where this happens, the provider is expected to use appropriate safeguards under applicable data protection laws.

9. Your rights

Under the GDPR, you may have the right to access, correct, delete, restrict, or object to the processing of your personal data, and to request data portability where applicable. You may also have the right to lodge a complaint with the Italian supervisory authority, the Garante per la Protezione dei Dati Personali (www.garanteprivacy.it).

To exercise your rights, contact: book@tonnobass.com.

Requests are handled without undue delay and normally within 30 days, subject to identity verification where necessary.

10. Updates

This Privacy Policy may be updated if the website, booking workflow, payment methods, third-party tools, or legal requirements change. The latest version will always be available on this page.

Back to TonnoBass