On 25 May 2018, a new regulation came into force in the European Union, called the EU General Data Protection Regulation 2016/679 ("GDPR"). It provides strict and specific guidelines on how personal data is collected and managed. This also affects companies and individuals who reside outside the EU but collect data from EU citizens.
holder [HOTEL CIMA ROSETTA DI TAUFER FRANCESCO & C SAS]
Head office address [VIA PASSO ROLLE, 151 38054 PRIMIERO SAN MARTINO DI CASTROZZA -TN-]
Tax code/VAT number [00390100220]
Person responsible for personal data processing [TAUFER FRANCESCO]
Website address [HTTP://WWW.HOTELCIMAROSETTA.COM].
E-mail address [INFO@HOTELCIMAROSETTA.IT]
Telephone number +39 [0439768622].
When you use our services, you accept that our company collects some of your personal data. We process two types of data, personal data that you provide when using our services and technical data that we collect automatically to improve the service.
We collect the following data with this application:
You can also choose to provide us with the following information:
information for a cost estimate
If you provide personal data of third parties, such as your family members or friends, you must ensure that they have been adequately informed and have consented to the processing of their personal data in the manner described in this policy.
We store this data solely for the purpose of providing you with the requested service (information request).
We do not disclose this data to third parties.
We use the data collected, where you have expressly given us consent, to:
We process the data collected, if you have expressly given us your consent, to analyse your consumption habits or choices in order to provide you with a service that is increasingly personalised and in line with your interests.
The provision of personal data is compulsory only for the processing required to provide the services offered (refusal to provide the service makes it impossible to use the service itself); it is optional for promotional and profiling purposes and refusal to give consent has no negative consequences on the provision of the service offered within the website and its applications.
The data controller is [HOTEL CIMA ROSETTA DI TAUFER FRANCESCO & C SAS] in the person of its pro-tempore legal representative, with registered office at [VIA PASSO ROLLE, 151 - 38054 - PRIMIERO SAN MARTINO DI CASTROZZA -TN-].
The designated Data Protection Officer pursuant to Article 37 of the GDPR is [FRANCESCO TAUFER].
We remind you that you may at any time contact the DPO and send any questions or requests relating to your personal data and respect for your privacy by writing to [FRANCESCO.TAUFER@HOTELCIMAROSETTA.IT].
The data collected as part of the provision of the service may be communicated to:
Your personal data may be transferred outside the European Union for processing by some of our service providers. If this is the case, we will ensure that this transfer complies with applicable law and that an adequate level of protection of your personal data is guaranteed by relying on an adequacy decision, on standard clauses defined by the European Commission or on Binding Corporate Rules.
Under no circumstances do we give or sell personal data to third parties.
The owner adopts appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of personal data. The processing is carried out using computer and/or telematic instruments, with organisational methods and logics strictly related to the purposes indicated. In addition to the owner, in some cases, other subjects involved in the organization of this application (administrative, commercial, marketing, legal, system administrators) or external subjects (such as third party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) also appointed, if necessary, as data processors by the owner, may have access to the data. The updated list of data processors can always be requested from the data controller.
Users may exercise their rights with regard to the data processed by the controller. In particular, the user has the right to:
We have created this form to make it easier for you to exercise the following rights over your personal data:
The data are processed and stored for the time required by the purposes of the services used and for which they were collected.
Where processing is based on your consent, the controller may keep your personal data for longer until your consent is withdrawn. In addition, the controller may be obliged to retain personal data for a longer period in compliance with a legal obligation or by order of an authority. At the end of the retention period, the personal data will be deleted. Therefore, after the expiry of this period, the right of access, cancellation, rectification and the right to data portability can no longer be exercised.
The data controller reserves the right to make changes to this privacy policy at any time by informing users on this page and, if possible, on this application as well as, if technically and legally feasible, by sending a notification to users through one of the contact details in the possession of the data controller. Therefore, please consult this page regularly, referring to the date of last modification indicated at the bottom. In the event of changes affecting processing operations whose legal basis is consent, the data controller will collect the user's consent again, if necessary.
#Last updated at: 04-06-2018 15:51:21