menu
menu
eng
Privacy 2

Privacy

Information document article 13 Reg. EU 2016/679- GDPR 
Subject: Information for the processing of personal data collected from the data subject via the website 

In compliance with the provisions of Reg. EU 2016/679 (European Regulation for the protection of personal data) we provide you with the necessary information regarding the processing of the personal data provided.
The information refers to the site www.anticoconventosanfrancesco.it/com, and is not to be considered valid for other websites that may be consulted through links present on the internet sites in the owner's domain, who is not to be considered in any way responsible for third-party websites.
This is an information notice provided pursuant to art. 13 of Reg. EU 2016/679 (European Regulation for the protection of personal data) and is also inspired by the provisions of Directive 2002/58/EC, as updated by Directive 2009/136/EC, regarding Cookies as well as the provisions of the Provision of the Authority for the protection of personal data of 08.05.2014 regarding cookies. 


1 - DATA PROCESSING SUBJECTS
DATA CONTROLLER, pursuant to articles 4 and 24 of Reg. EU 2016/679 is DamianiCamprini snc, via Cadorna 10 Bagnacavallo 48012 (RA) hereinafter, (“Controller”) 


2 - PURPOSE AND LAWFULNESS OF PROCESSING
The personal data provided will be processed in compliance with the conditions of lawfulness ex art. 6 Reg. EU 2016/679 for the following purposes:
Data processing management related to (art. 6 lett. b):

- browsing this website;
- eventual filling of data collection forms to send an information request to the data controller;
- fulfillment of current administrative, accounting and tax obligations, as well as to comply with laws and regulations. For the purposes of applying the provisions on the protection of personal data, the processing carried out for administrative-accounting purposes are those connected to the performance of organizational, administrative, financial and accounting activities, regardless of the nature of the data processed.

The personal data provided voluntarily and optionally by users who forward requests to receive information on the hotel's services (prices, room and conference room availability, etc.), register for the newsletter, make online reservations, or simply submit job applications by sending curricula in electronic format, are used for the sole purpose of performing the service or provision requested and are not communicated to third parties unless the communication is imposed by legal obligations or is strictly pertinent and necessary for the fulfillment of the requests. 


3 - NAVIGATION DATA
Like all websites, this site also makes use of log files in which information collected in an automated manner during user visits is stored. The information collected could be the following: 

- internet protocol (IP) address;
- type of browser and device parameters used to connect to the site;
- name of the internet service provider (ISP);
- date and time of visit;
- web page of origin of the visitor (referral) and exit;
- possibly the number of clicks.

This is information that is not collected to be associated with identified interested parties, but which by its very nature could, through processing and association with data held by third parties, allow users to be identified. 


4 - DATA PROVIDED VOLUNTARILY BY THE USER
The optional, explicit and voluntary sending of e-mails to the addresses indicated on this site involves the subsequent acquisition of the sender's address, necessary to respond to requests, as well as any other personal data included in the message.


5 - RECIPIENTS OR CATEGORIES OF RECIPIENTS OF THE DATA
Personal data provided through email contacts or through any curriculum spontaneously sent to the owner may be communicated to recipients, who will process the data as processors and/or as natural persons acting under the authority of the Controller, in order to comply with contracts or related purposes. 

Precisely, the data may be communicated to recipients belonging to the following categories:

- Subjects providing services for the management of the information system and communication networks of DamianiCamprini snc (including electronic mail);
- Offices or Companies in the context of assistance and consultancy relationships;
- Competent authorities for fulfillment of legal obligations and/or provisions of public bodies, upon request;
- In the case of administrative-accounting purposes, the data may eventually be transmitted to commercial information companies for the assessment of solvency and payment habits and/or to subjects for debt collection purposes.
- In the case of spontaneous application, your data will be stored at our headquarters and will be communicated exclusively to the subjects competent for the performance of the necessary services, with a guarantee of protection of the rights of the data subject. Your data will be processed only by personnel expressly authorized by the Controller and, in particular, by the following categories of appointed subjects: Management and Administration of DamianiCamprini snc with functions of System Administrator and Personnel Management and Administration. 

The subjects belonging to the aforementioned categories perform the function of Data Processor, or operate in total autonomy as distinct Data Controllers. 


6 - PLACE OF PROCESSING
The data collected by the site are processed at the headquarters of the Data Controller, and at the web hosting datacenter. The web hosting, which is responsible for the processing of the data, processing the data on behalf of the owner, is located in the European Economic Area and acts in accordance with European standards.
The list of designated Data Processors is constantly updated and available at the headquarters of DamianiCamprini snc.


7. DATA TRANSFER TO A THIRD COUNTRY AND/OR AN INTERNATIONAL ORGANIZATION
The personal data provided will not be transferred abroad within or outside the European Union.


8 - RETENTION PERIOD AND CRITERIA
The processing will be carried out in an automated and/or manual form, with methods and tools aimed at guaranteeing maximum security and confidentiality, by subjects specifically appointed for this.
In compliance with the provisions of art. 5 paragraph 1 lett. e) of Reg. EU 2016/679, the personal data collected will be stored in a form that allows the identification of the data subjects for a period of time not exceeding the achievement of the purposes for which the personal data are processed. To know the criteria underlying the data retention period, write to info@anticoconventosanfrancesco.it 


9 - NATURE OF PROVISION AND REFUSAL
Apart from what is specified for navigation data, the user is free to provide personal data in dedicated areas on the site.
The provision of personal data for the purposes referred to in this information document is necessary to complete the specific functions and use the services offered to the Data Controller, for example to receive feedback on the information request sent. Failure to provide personal data may make it impossible to obtain the requested service or to use the services offered by the site.


10 - RIGHTS OF THE DATA SUBJECTS
You may assert your rights as expressed by articles 15 – right of access, 16 - right of rectification, 17 – right to erasure, 18 – right to restriction of processing, 20 – right to portability, 21 – right to object, 22 right to object to the automated decision-making process of GDPR 679/16 of EU Regulation 2016/679, by contacting the Controller, writing to the address info@anticoconventosanfrancesco.it. 

You have the right, at any time, to ask the Data Controller for access to your personal data, the rectification, erasure of the same, or the restriction of processing. 
Furthermore, you have the right to object, at any time, to the processing of your data (including automated processing, e.g. profiling) as well as to the portability of your data. 
Without prejudice to any other administrative and judicial appeal, if you believe that the processing of data concerning you violates the provisions of Reg. EU 2016/679, pursuant to art. 15 letter f) of the aforementioned Reg. EU 2016/679.

You have the right to lodge a complaint with the Data Protection Authority and, with reference to art. 6 paragraph 1, letter a) and art. 9, paragraph 2, letter a), you have the right to revoke the consent given at any time. Link to the Privacy Authority website: http://www.garanteprivacy.it/web/guest/home/docweb/-/docweb-display/docweb/4535524. 

In the case of a request for data portability, the Data Controller will provide you with the personal data concerning you in a structured, commonly used and machine-readable format, without prejudice to paragraphs 3 and 4 of art. 20 of Reg. EU 2016/679.