Privacy Policy EN

PRIVACY NOTICE – www.larosadinettuno.it

Dear User,

This notice is provided by La Rosa di Nettuno Sas di Biancotti M. in accordance with Regulation 679/2016 (GDPR) on the protection of personal data in order to describe the methods of processing personal data of users who consult this website.

While browsing the website www.larosadinettuno.it (“Site”), information may be collected regarding users that constitute personal data under the GDPR. This notice is provided exclusively for the Site and does not concern any other external sites reachable by the user through links on this Site.

DATA CONTROLLER

The data controller pursuant to current laws is: La Rosa di Nettuno Sas di Biancotti M. – VAT number 01142230539, with registered office at Via XXIV Maggio 73, Marina di Grosseto 58100 – GR – reachable via email at info@larosadinettuno.it.

DATA PROCESSOR

The web hosting provider appointed as data processor is Aruba S.p.A., represented by its pro tempore legal representative, with registered office in Ponte San Pietro (BG), Via San Clemente n. 53, email: privacy@staff.aruba.it, located in the European Economic Area and acting in compliance with European regulations (link to the web hosting policy).

TYPES OF PROCESSED DATA

Browsing Data

The computer systems and software procedures involved in the operation of this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

This is information that is not collected to be associated with identified data subjects, but which by its nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the domain names of the computers used by users who connect to the site, the URI (Uniform Resource Identifier) addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.), and other parameters relating to the user’s operating system and computer environment. This data is used solely to obtain anonymous statistical information about the use of the site and to ensure its proper functioning.

For security purposes (anti-spam filters, firewalls, virus detection), automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with applicable laws, to block attempts to damage the site itself or to cause harm to other users, or in any case activities constituting offenses. Such data is never used for the identification or profiling of users, but only for the purpose of protecting the site and its users.

Additionally, the Data Controller informs that the data provided by you are processed using computer tools and procedures, for the following purposes:

Manage and improve site navigation (see also Cookie Policy); Explicit request through contact forms; Technical management of navigation (see also Cookie Policy) Some data may be processed for exclusive technical/information management purposes of the web service, by technological partners of the Controller. In any case, the data will never be disclosed.

The data provided by you may be known exclusively by personnel and collaborators of the Controller and possibly by companies (web hosting) that process data on behalf of the Controller, solely for the purpose of carrying out the activities requested by you.

User Provided Data

These are data voluntarily provided by the user when requesting information via the contact form on the “Contacts” page. In particular, the following categories of personal data may be processed:

Name;
Email;
Message (referring to the content of the message filled out by the user at the time of the contact request)

DATA PROVIDED BY THE USER IN THE BOOKINGS PAGE

These are data voluntarily provided by the user when booking one of our apartments through the portal provided by the website “www.iperbooking.com“.

These data are provided by the user at the time of completing the reservation form for one of our apartments. In particular, the following categories of personal data may be processed:

Name;
Surname;
Email;
Municipality of Residence and Postal Code;
Check-in / Check-out Date
Room Type;
Number of people;
Other information;
Payment Method;

These data are voluntarily provided by the User at the time of requesting the service and will be used exclusively for the provision of the requested service and processed only for the time necessary for the provision of the service itself.

The data collected within the booking platform will not be provided to third parties unless it is a legitimate request by the judicial authority and only in cases provided for by law. However, the data may be provided to third parties if necessary for the provision of a specific service requested by the User, or for tax purposes or for the execution of security checks or optimization of the site (For more information – Iperbooking Privacy Policy).

DATA PROCESSING METHODS

Personal data are processed using automated tools and not for any longer than is necessary to achieve the purposes for which they were collected, see below data retention period. Personal data provided by users may be known by employees and collaborators who provide ancillary or instrumental services to the company’s activities, appointed Data Processors pursuant to art. 28 of the GDPR. No other data communications to third parties will be made, except in the case of requests from the Judicial Authority or Public Security. The data collected will not be disclosed under any circumstances.

DATA RETENTION PERIOD

Customer data will be retained for the time strictly necessary to achieve the purposes for which they were collected. Data acquired automatically by the system (art. 4, lett. B)) will be retained for a maximum of 31 days from the time of acquisition.

DATA PROCESSING LOCATION

DATA SUBJECT RIGHTS

The data subjects have the right to:

request and obtain information regarding the processing of personal data and a copy of such personal data;
for data processed by automated means, it is possible to request transfer to another controller;
request and obtain modification and/or correction of personal data considered inaccurate or incomplete;
request and obtain deletion – and/or limitation of processing – of personal data if it concerns data or information that is not necessary – or no longer necessary – for the purposes outlined above;
request and obtain the cessation of all processing of personal data for direct marketing purposes. Under Regulation no. 679/2016, the user has the possibility to lodge any complaints with the Data Protection Authority.

Requests should be addressed: via email, to the following address: info@larosadinettuno.it.