INFORMATION REGARDING THE PROCESSING OF PERSONAL DATA (Legislative Decree 196/2003 – ART. 13 EU REG. 2016/679)
In compliance with Legislative Decree n.196 of 2003 “Code regarding the protection of personal data” and subsequent amendments and additions. And of the “European Regulation 2016/679” (GDPR), we provide you with the following information:
EXERCISE OF RIGHTS BY THE INTERESTED PARTIES
The requests do not require a particular form and are validly forwarded by post to our company and e-mail to email@example.com
The following links are also noted (from the website of the Guarantor for the exercise of one’s rights: https://www.garanteprivacy.it/home/modulistica-e-servizi-online)
1. Data Controller
The data controller is Sabrina Bonaiuti c / o Podere La Commenda 37 – Località Cicalino, 58024 Massa Marittima (GR) Cel. +39 328 3126101, e-mail: firstname.lastname@example.org, PEC: email@example.com, C.F. BNT SRN 78 C61 D612 W, P.I. 06840330481.
2. Data protection officer
The Company has no obligation to appoint a Data Protection Officer.
3. Purpose of the treatment
By accessing and consulting this site, and using the services provided through, users’ personal data may be purchased, which, in compliance with current legislation on the protection of personal data, will be processed solely for the following purposes:
-strictly connected and instrumental purposes to allow access and use of the site, its features and the services requested;
-to fulfill any obligations provided for by law and European legislation;
-for operational and management needs internal to the Owner and related to the services offered through the site.
If the data collected should also be used for other purposes, users will be asked to give their consent for any further processing. Only if the user freely and clearly consents to each further processing will the collected data be used.
4. What data are processed?
Depending on the service rendered, personal data of different types may be processed, as specified in this article.
4.1 Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This is information that is not collected to be associated with identified interested parties, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user’s IT environment.
These data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site: except for this possibility, the data on web contacts do not currently persist for more than twelve months.
4.2 Data provided voluntarily by the user (COMMUNICATIONS – BOOKING SERVICE – CONTACT FORM)
The optional, explicit and voluntary sending of communications by means of module contact information on the site or e-mail to the addresses indicated on this site, involves the subsequent acquisition of the data communicated by the user, including his e-mail address, and the consent to receive any response messages to his requests. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services if necessary.
The personal data provided in this way are used for the sole purpose of satisfying or responding to the requests transmitted and are communicated to third parties only if this is necessary for this purpose.
These services allow you to manage an archive of e-mail contacts, telephone contacts or contacts of any other type, used to communicate with the User. These services may also allow the collection of data relating to the date and time the messages are displayed by the User, as well as the User’s interaction with them, such as information on clicks on links inserted in messages.
4.3 NEWSLETTER SERVICE
Consult the dedicated information (LINK TO NEWSLETTER INFORMATION)
NATURE OF THE DATA PROCESSED
We only treat / will treat your personal data, provided by filling in the forms, which will be used for the sole purpose of performing the service or service requested. Limited to the information released on this site, personal data that can be classified as particular will not be processed (unless you insert it in the space indicated as “text” of the contact form. To this end, please avoid such data if not essential for the provision of the service) or of a judicial nature.
DATA OF USERS UNDER AGE
If the subject providing the data is a child under 14, such processing is lawful only if and to the extent that such consent is given or authorized by the holder of parental responsibility whose identification data and copy of the identification documents are acquired ( to be sent to the e-mail indicated on the site).
What are? Cookies are information stored by the browser when a website is visited with any suitable device (such as a PC, tablet or smartphone). Each cookie contains different data (for example, the name of the server from which it comes, a numerical identifier, etc.), it can remain in the system for the duration of a session (until the browser is closed) or for long periods and can contain a unique identification code.
What are they for? Cookies are used for different purposes depending on their type: some are strictly necessary for the correct functionality of a website (technical cookies), while others optimize its performance to offer a better user experience or allow you to acquire statistics on the website. ‘use of the site.
Cookies used on this site
No personal user data is acquired by the site in this regard. Cookies are not used to transmit information of a personal nature, nor are so-called c.d. persistent cookies of any kind, or systems for tracking users. The use of so-called session cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to allow safe browsing and efficient site. The so-called Session cookies used on this site avoid the use of other IT techniques that are potentially detrimental to the confidentiality of users’ browsing and do not allow the acquisition of the user’s personal identification data.
4.5 Log files and their conservation
The log files will be tracked for security reasons that require the registration and maintenance of log files and their accessibility by the judicial police in the event that the latter requests them. To this end, the access log files will be kept for a period of time not exceeding 1 year. Any access controls will be carried out gradually and in full compliance with the law, in particular with the principles of necessity and proportionality.
5. Social Network Plugin
This site does not incorporate plugins and / or buttons for social networks but only a link or buttons to social networks. Therefore, this site does not collect or set cookies for the use of social networks. For the management of social network cookies, please refer to the respective privacy policies of the social networks.
6. Mandatory or optional data
The provision of the data requested and / or present in the forms, in the fields marked with an asterisk (*) is mandatory and their failure insertion does not allow you to proceed with the processing of the application and / or the provision of the service. On the other hand, the release of the data present in the fields not marked with an asterisk on the forms, although it may be useful to facilitate the management of the procedure and the provision of the service, is optional and failure to indicate them does not affect the completion of the procedure itself.
The User assumes responsibility for the personal data of third parties obtained, published or shared through this site and guarantees to have the right to communicate or disseminate them, freeing the Owner from any liability to third parties.
7. Methods of data processing
Personal data are processed lawfully and fairly and used only for the purposes indicated in art. 3. The processing will take place using tools suitable for guaranteeing the security and confidentiality of personal data and with automated tools designed to store, manage and transmit the data. Specific security measures are adopted to prevent data loss and contain the risks of illicit or incorrect use and unauthorized access and personal data will be kept for the time prescribed by law and, in any case, for the time strictly necessary. to follow up on the activities for which they were collected and / or up to the revocation of the consent given for the purposes referred to in art. 3.
8. To whom can the collected data be disclosed?
The treatments connected to the web services of this site take place at the headquarters of the Data Controller and are handled by the Data Controller and any technical personnel expressly authorized to process. In particular, where necessary, the data may be disclosed to third parties whose collaboration the Data Controller may and / or must use for the performance of the services offered. The data acquired via the web, or in any case deriving from web services, may be communicated to the technological and instrumental partners of which the Data Controller uses for the provision of the services requested by users, always in compliance with the purposes indicated in art. 3. To this end, the subjects who will have access to personal data will be appointed as Data Processors, pursuant to art. 28 and 29 of the GDPR and the Privacy Code.
The data collected for the aforementioned purposes may also be disclosed to subjects authorized for this purpose by provisions of law and European legislation.
A list of the subjects to whom the Data Controller communicates the personal data collected for the aforementioned purposes is available and can be consulted at the headquarters of the Data Controller and may be requested at the addresses indicated.
9. How long are the data kept?
The navigation data are kept as long as they are useful for the performance of the requested service and ancillary services.
In case of sending e-mails or filling out the information request form, the data are stored for the management of the request and the possible provision of services, if the booking is successful. In this regard, consult the CUSTOMER information, published on this page.
10. Where are the data processed?
The data will be processed only within the European Union.
11. What are the rights of the data subjects?
It is possible to exercise at any time the rights provided for in articles 15 and following of the
EU Regulation 679/2016 and the Privacy Code:
-receive confirmation of the existence of their personal data, know the purposes of the processing or their area of circulation and access their content;
-ask to update, modify and / or correct their personal data;
-request cancellation, transformation into anonymous form, blocking of data processed in violation of the law or limitation of the processing of your personal data;
-oppose the processing for legitimate reasons, including any profiling;
-oppose the processing of data for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication;
-revoke the consent, where given, without prejudice to the lawfulness of the processing based on the consent given before the revocation;
-receive a copy of the data provided and request that such data be transmitted to another data controller.
-request the deletion of all the user’s personal data. This does not include the data that the Owner is obliged to keep for administrative, legal or security purposes.
The exercise of the aforementioned rights can be exercised by means of communication written or communication to be sent to the e-mail address firstname.lastname@example.org
You also have the right to:
propose a complaint or report to the Guarantor Authority for the Protection of Personal Data;
-propose an effective judicial remedy against the supervisory authority;
-propose an effective judicial remedy against the data controller or data processor;
-to mandate a body, organization or non-profit association for the exercise of its rights;
-to request compensation for damages resulting from the violation of the law.