INFORMATION ON THE PROCESSING OF PERSONAL DATA OF USERS CONSULTING THE WEBSITE LOVESANTATERESA.IT PURSUANT TO ARTICLE 13 OF REGULATION (EU) 2016/679
This information is provided to describe how the personal data of users who consult the LOVESANTATERESA website accessible electronically at the following address: www.lovesantateresa.it is processed. The information also covers the processing of personal data resulting from access to the reservation services rendered by Silene through the website.
1 - DATA CONTROLLER
The person who decides how your data will be processed and for what purposes is the Data Controller. In this specific case, the Data Controller is. Silene Multiservizi S.U.R.L. with registered office Strada Prov.le per il Porto, 1 - 07028 - Santa Teresa Gallura (SS), TEL. +39 0789754482, http://www.silenemultiservizi.it, pec amministrazione@pec.silenemultiservizi.it.
2 - DATA PROTECTION OFFICER
The data controller has appointed the Dr. Giuliana Madonna data protection officer (DPO), whom they can contact for reports and complaints about the processing of their data. The DPO can be contacted at the following email address: g.madonna@silenemultiservizi.it
3 - TYPE OF DATA COLLECTED
As a result of consulting the above site and accessing the services offered, data relating to identified or identifiable individuals may be processed. The data collected are:
- Navigation Data
The computer systems and software procedures used to operate the site acquire, in the course of their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes IP addresses or domain names of computers and terminals used by users, the addresses in URI/URL (Uniform Resource Identifier/Locator) notation of the requested resources, the time of the request, the method used in submitting the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters related to the user's operating system and computer environment.
These data, necessary for the use of web services (consultation of the pages of the site and access to the services offered), are also processed for the purpose of monitoring the proper functioning of the services offered.
4 - DATA DISCLOSED BY THE USER
Filling out dedicated spaces, for booking beach service, as available on the website of Silene Multiservizi S.U.R.L. involve the acquisition of the user's personal data, contact data (e.mail address) and credit card.
5 - COOKIES AND OTHER TRACKING SYSTEMS
No cookies are used for user profiling, nor are any other tracking methods employed.
Instead, use is made of session (non-persistent) cookies in a manner strictly limited to what is necessary for the safe and efficient navigation of the sites.
6 - Information for the processing of personal data carried out through the social media platforms used by Silene Multiservizi S.U.R.L.
With reference to the processing of personal data carried out by the managers of the Social Media platforms used by Silene Multiservizi surl (Facebook, etc.), please refer to the specific information rendered by the aforementioned managers/owners through their respective privacy policies. Silene Multiservizi surl processes personal data conferred by users through the pages of the Social Media platforms dedicated to its organization, within the scope of its business purposes, exclusively to manage interactions with users/customers (comments, posts, news, etc.) and in compliance with current regulations.
7 - PURPOSE AND LEGAL BASIS FOR PROCESSING
Personal data are collected and processed for the following purposes:
- Management of the website and related forms related to the services offered (e.g., beach reservation requests)
- Management of services offered through web server;
The legal basis for the processing is the performance of tasks in the public interest or otherwise connected with the exercise of public authority (Art. 6(1)(e) GDPR) and the performance of pre-contractual and contractual measures between the parties relating to the collection of contact data initiated at the request of the data subject for the reservation service (Art. 6(1)(b) GDPR).
8 - DATA PROCESSING METHODS
Personal data are processed for the purposes set forth, in accordance with the principles set forth in Article 5 of the GDPR: "Lawfulness, fairness, transparency, purpose limitation and retention period, data minimization, accuracy, integrity and confidentiality" in computerized and paper form. The availability, management, access, storage and usability of data is guaranteed by the adoption of technical and organizational measures to ensure adequate levels of security in accordance with Articles 25 and 32 of the GDPR.
The processing of personal data is not subject to a decision based solely on automated decision-making, including profiling.
9 - RECIPIENTS OR CATEGORIES OF RECIPIENTS OF PERSONAL DATA
The following are recipients of the data collected as a result of consulting the above-listed sites:
-
- Duly trained and authorized processing personnel acting under the direct authority of the Owner;
-
- individuals and/or legal entities, such as data processors for the processing of personal data pursuant to Articles 28 and 29 of the GDPR who process data on behalf of the Data Controller, in a contractual or conventional relationship with the same suitably designated and selected, also, for the guarantees provided on the protection of personal data, each within the limits of their profession and assigned functions, or to external consultants for the performance of delegated administrative and fiscal activities, software companies for the provision of management systems, etc.
- individuals and/or legal entities, such as data processors for the processing of personal data pursuant to Articles 28 and 29 of the GDPR who process data on behalf of the Data Controller, in a contractual or conventional relationship with the same suitably designated and selected, also, for the guarantees provided on the protection of personal data, each within the limits of their profession and assigned functions, or to external consultants for the performance of delegated administrative and fiscal activities, software companies for the provision of management systems, etc.
10 - DATA TRANSFER
Personal data will not be transferred to non-EU countries.
11 - DATA RETENTION PERIOD
The Data Controller retains and processes personal data for the time necessary to pursue the purposes indicated above: a) browsing data do not persist more than seven days (except for any need to ascertain crimes by the Judicial Authority); b) data communicated directly by the user, are retained for the time necessary for the conclusion of the relationship/contract, in compliance with the limits provided by the Law.
12 - RIGHTS OF THE DATA SUBJECT
With respect to Personal Data, the GDPR grants you, as a Data Subject, the exercise (where applicable and technically possible) of specific rights, as provided for in Articles 15 -22, such as those of access, objection, rectification.
To exercise your rights, you can contact the Data Controller using the following contact methods: privacy@silenemultiservizi.it - pec. privacy@pec.silenemultiservizi.it.
In particular, you may exercise your rights by specifying the subject of your request, the right you wish to exercise, and attaching a photocopy of an identity document attesting to the legitimacy of the request.
13 - RIGHT OF COMPLAINT
If the conditions are met, you also have the right to propose complaint To the supervisory authority of the state of residence (former Art. 77 Reg. No. 679/2016), according to the procedures provided for in Art. 142 of Legislative Decree No. 196/2003, as amended by Legislative Decree No. 101/2018.