Privacy Policy
This privacy policy applies exclusively to online activities on this site and is valid for the visitors/users of the site. It does not apply to information that may be collected through channels other than this website.
The purpose of this privacy policy is to provide maximum transparency regarding the information collected by the site and how it is used.
This website processes data based on consent. By using or browsing this site, visitors and users explicitly approve this privacy policy and consent to the processing of their personal data in accordance with the methods and purposes outlined below, including any potential disclosure to third parties if necessary for the provision of a service.
Providing data and thus consenting to the collection and processing of data is optional. Users can deny consent and can withdraw any previously given consent at any time by sending an email to the following address: info@beblanticoborgo.com.
However, denying consent may result in the inability to provide certain services, and the browsing experience on the site may be compromised.
As of May 25, 2018 (the date the GDPR came into effect), this website will process some of the data based on the legitimate interests of the data controller.
Data Collected and Purposes
Like all websites, this site makes use of log files, which store information automatically collected during user visits. The information collected may include:
– Internet Protocol (IP) address;
– Browser type and parameters of the device used to connect to the site;
– Internet Service Provider (ISP) name;
– Date and time of the visit;
– Referral webpage (the page the visitor came from) and the page visited;
– Country of origin;
– Potentially, the number of clicks.
The data and information collection occurs for the following purposes:
– Aggregated and anonymous data: Used solely to ensure the proper functioning of the site. None of this information is linked to the physical user of the site and cannot identify them in any way (from May 25, 2018, such information will be processed based on the legitimate interests of the data controller).
– Security purposes: (anti-spam filters, firewalls, virus detection). Automatically recorded data may include personal information such as the IP address, which may be used, in accordance with applicable laws, to block attempts to damage the site or harm other users, or any harmful activities or illegal actions. This data is never used for identifying or profiling the user, nor cross-referenced with other data, nor shared with third parties. It is solely used for the protection of the site and its users (from May 25, 2018, such information will be processed based on the legitimate interests of the data controller).
– Sharing with third parties: Data may be shared with third parties who perform necessary or instrumental functions for the operation of the service, such as managing comments on the site.
Comments and Data Submission
If the site allows for comments or specific services requested by the user (via the “Contact” section), the site automatically collects and records certain personal data, including the email address and nickname. These data are voluntarily provided by the user when the service is requested and are processed based on consent. By submitting a comment or any other information, the user expressly agrees to the privacy policy and consents that the content entered may be freely viewable by other visitors.
The collected data will be used exclusively for providing the requested service and for the time necessary to fulfill the service.
Users voluntarily provide the information they choose to make public via the site’s services and tools, exempting the site from any liability regarding possible violations of laws. It is the user’s responsibility to verify they have permission to input personal data of third parties or content protected by national and international laws.
If comments are managed via an external service, users should refer to the policies of that service.
Data Retention and Disclosure
The data collected by the site during its operation are used exclusively for the purposes mentioned above and stored for the time strictly necessary to perform the specified activities. In any case, personal data collected by the site will never be provided to third parties for any reason, unless requested by the judicial authority or in cases provided by law. However, data may be provided to third parties if necessary for the provision of a specific service requested by the user (e.g., managing comments) or for security checks or site optimization.
Security Measures
This site processes user data lawfully and fairly, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of data. The processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the specified purposes. In particular, the website management software is continuously updated and regularly scanned to detect any viruses or harmful codes.
In addition to the data controller, in some cases, other categories of personnel involved in the organization of the site (administrative, commercial, marketing staff, legal personnel, system administrators) or external entities (such as third-party service providers, postal couriers, hosting providers, IT companies, communication agencies) may have access to the data.
User Rights
In accordance with European Regulation 679/2016 (GDPR) and Article 7 of Legislative Decree No. 196 of June 30, 2003 [https://www.garanteprivacy.it/regolamentoue/DPIA], the User may, in accordance with the methods and within the limits set by current regulations, exercise the following rights:
– Object, in whole or in part, for legitimate reasons, to the processing of personal data concerning them for the purposes of sending advertising material, direct sales, market research, or commercial communication;
– Request confirmation of the existence of personal data concerning them (right of access);
– Know the origin of the data;
– Receive intelligible communication about the data;
– Have information regarding the logic, methods, and purposes of processing;
– Request the updating, rectification, integration, deletion, anonymization, or blocking of data processed in violation of the law, including data no longer necessary for the purposes for which they were collected;
– In cases of processing based on consent, receive, at the cost of any support, the data provided to the data controller in a structured, machine-readable format commonly used by electronic devices;
– The right to file a complaint with the supervisory authority (Privacy Guarantor – link to the Guarantor page);
– Additionally, more generally, exercise all rights granted to them by the applicable legal provisions.
If data is processed based on legitimate interests, the rights of the data subjects to the processing are still guaranteed (except for the right to portability, which is not foreseen by the regulations), particularly the right to object to the processing, which can be exercised by sending a request to the data controller.
Requests should be addressed to the Data Controller.
Data Controller
The Data Controller, as per the applicable laws, is the administrator of the website, Bed & Breakfast l’Antico Borgo.