1. This section contains information on how to manage www.ilborghetto.it with reference to the processing of www.ilborghetto.it users' data.
2. This information is also valid for the purposes of Article 13 of EU Regulation no. 2016/679, concerning the protection of individuals with regard to the processing of personal data as well as the free circulation of such data, for those who interact with www.ilborghetto.it and can be reached at the address indicated on the initial page: www.ilborghetto.it.
3. The information is provided only for www.ilborghetto.it and not for other websites that may be consulted by the user via links contained therein.
4. The purpose of this document is to provide indications regarding the methods, timing and nature of the information that data controllers must provide to users when connecting to the web pages of www.ilborghetto.it, regardless of the purposes of the connection itself, according to the law ne Italian a and European.
5. The information may be changed due to the introduction of new regulations in this regard, therefore the user is invited to periodically check this page.
6. If the user is less than 14 years old, according to the art.8, c.1 EU regulation 2016/679, and of the Art. 2 - Quinquies of Legislative Decree 196/2003, as amended by Legislative Decree 181/18, must legitimize its consent through the authorization of parents or guardians.
II - DATA PROCESSING
1 - Data Controller
1. The data controller is the natural or legal person, public authority, service or other body which, individually or together with others, determines the purposes and means of processing personal data. It also deals with security profiles.
2. With regard to this website, the data controller is: Albergo Il Borghetto di E. Trovati & C. s.a.s., and for any clarification or exercise of your rights you can contact him at the following email address: firstname.lastname@example.org.
2 - Data processing manager
1. The controller is the natural or legal person, public authority, service or other body that processes personal data on behalf of the data controller.
2. In accordance with article 28 of the EU regulation no. 2016/679 , upon appointment of the data controller , the person responsible for processing the data of the site www.ilborghetto.it is: Elena Trovati.
3 - Data processing location
1. The processing of the data generated by the use of www.ilborghetto.it takes place at Via Borgo Buio 7, 53045 Montepulciano (SI).
2. In case of need, the data connected to the newsletter service may be processed by the data controller or persons appointed by it for this purpose at the relative site.
III - COOKIES
IV - DATA PROCESSED
1 - Data processing mode
1. Like all websites, this site also uses log files in which information collected in an automated manner during user visits is stored. The information collected could be the following:
- internet address pro tocol (IP);
- type of browser and parameters of the device used to connect to the site;
- name of the internet service provider (ISP);
- date and time of visit;
- web page of the visitor's origin (referral) and exit;
- possibly the number of clicks.
2. The aforementioned information is processed in an automated manner and collected in an exclusively aggregated form in order to verify the correct functioning of the site, and for security reasons. This information will be processed according to the legitimate interests of the owner.
3. For security purposes (anti-spam filters, firewalls, virus detection), automatically recorded data may also include personal data such as the IP address, which could be used, in accordance with the applicable laws in force, in order to block attempts of damage to the site itself or of causing damage to other users, or in any case harmful activities or constituents of a crime. These data are never used for the identification or profiling of the user, but only for the purpose of protecting the site and its users, such information will be treated according to the legitimate interests of the owner.
5. The information that the users of the site will deem to make public through the services and the tools made available to them, are provided by the user knowingly and voluntarily, exempting this site from any responsibility for any violations of the laws. Users responsibility to ensure you have permission for the 'entry of personal data of third parties or content protected by national and international standards.
2 - Purpose of data processing
1. The data collected by the site during its operation are used exclusively for the purposes indicated above and kept for the time strictly necessary to carry out the specified activities, and in any case not beyond 10 years.
2. The data used for security purposes (blocking attempts to damage the site) are kept for the time strictly necessary to achieve the purpose previously indicated.
3 - Data provided by the user
1. As indicated above, the optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message .
2. Specific summary information will be progressively reported or displayed on the pages of the site set up for particular services on request.
4 - Support in the configuration of your browser
1. The user can manage the cooks ie also through the settings of his browser. However, deleting the cookies from the browser may remove the preferences set for the site.
2. For further information and support you can also visit the help page specific to the web browser you are using:
5 - Social Network Plugin
2. The collection and use of information obtained through the plugin are governed by the respective privacy policies of social networks, to which please refer:
V. USER RIGHTS
1. The art. 13, c. 2 of EU Regulation 2016/679 lists the user's rights.
2. The site www.ilborghetto.it in tents therefore inform the user about the existence:
- the right of the interested party to request the owner access to personal data (Article 15 EU Regulation), their update (Article 7, paragraph 3, letter a) of Legislative Decree 196/2003), the rectification (Article 16 of the EU Regulation ), integration (Article 7, paragraph 3, letter a) of Legislative Decree 196/2003) or the limitation of processing that concerns it (Article 18 of the EU Regulation) or to oppose, for legitimate reasons, to their treatment (art. 21 EU Regulation), in addition to the right to data portability (art. 20 EU Regulation);
- the right to request cancellation (art. 17 EU Regulation), transformation into anonymous form or blocking of data processed in violation of the law, including those whose storage is not necessary in relation to the purposes for which the they have been collected or subsequently processed (Article 7, paragraph 3, letter b) of Legislative Decree 196/2003);
- the right to obtain the attestation that the updating, rectification, data integration, deletion, data blocking and transformation operations have been brought to the attention, also with regard to their content, of those to whom the data was communicated or disseminated, except in the case where such fulfillment proves impossible or involves the use of means manifestly out of proportion with respect to the protected right (art. 7, co. 3, lett. c) D.lgs. 196/2003);
3. Requests can be addressed to the data controller, without formalities or, alternatively, using the model provided by the Guarantor for the Protection of Personal Data , or by sending an email to the address: email@example.com.
4. If the treatment is based on the art. 6, paragraph 1, lett. a) - express consent to use - or on art. 9, paragraph 2 letter. a) - express consent to the use of genetic, biometric, health-related data, revealing religious or philosophical convictions or union membership, revealing racial or ethnic origin, political opinions - the user has the right to withdraw consent at any time without affecting the lawfulness of the processing based on the consent given before the revocation.
5. Likewise, in the event of violation of the law, the user has the right to lodge a complaint with the Guarantor for the Protection of Personal Data, as an authority in charge of controlling the processing in the Italian State.
6. For a more in-depth examination of the rights that belong to you, see the articles 15 and ss. of the EU Regulation 2016/679 and the art. 7 of Legislative Decree 196/2003.
VI - TRANSFER OF DATA TO EXTRA EU COUNTRIES
1. This site may share some of the data collected with services located outside the European Union area. In particular with Google, Facebook and Microsoft (LinkedIn) through social plugins and the Google Analytics service . The transfer is authorized and strictly regulated by article 45, paragraph 1 of EU Regulation 2016/679, for which no further consent is required. The companies mentioned above guarantee their adherence to the Privacy Shield.
2. Data will never be transferred to third countries that do not comply with the conditions set out in Article 45 et seq. Of the EU Regulation.
VII. SECURITY DATA PROVIDED
1. This site treats users' data in a lawful and correct manner, taking appropriate security measures to prevent unauthorized access, disclosure, modification or unauthorized destruction of the data. The processing is carried out using IT and / or telematic tools, with organizational methods and strictly related to the purposes indicated.
2. In addition to the owner, in some cases, the categories of employees involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external parties (such as third-party technical services) may have access to the data (postal couriers, hosting providers, IT companies, communication agencies).
VIII. CHANGES TO THIS DOCUMENT
2. It may be subject to changes or updates. Users are encouraged to periodically consult this page to keep up to date with the latest legislative changes.
3. The previous versions of the document will still be available on this page.
4. The document was updated on 04/30/2019 to comply with the relevant regulatory provisions, and in particular in compliance with EU Regulation 2016/679.