This policy describes the procedures followed by
Antonio Maria Arru (hereinafter the “Owner”) in relation to the processing of personal data collected through the site https://agriturismocasteddu.com (hereinafter the “Site”).
Unless otherwise specified, this policy also applies as information – pursuant to art. 13 of the legislative decree n. 196/2003 (hereinafter the “Code”) and art. 13 of the Regulation (EU) n. 2016/679 (hereinafter the “GDPR”) – rendered to those who interact with the Site (hereinafter the “User”).
Information on the processing of detailed personal data are reported, where necessary, in the pages relating to the individual services offered through the Site. These information are aimed at defining limits and methods of processing personal data of each service, on the basis of which the user can freely express their consent, if necessary, and eventually authorize the collection of data and their subsequent processing.
Data controller. Responsible for the treatment.
The Data Controller is Antonio Maria Arru, with registered office in Via Nuoro 12 – Padru, tel. 078945910, e-mail firstname.lastname@example.org. The updated list of any data controllers is available at the headquarters of the Data Controller.
Responsible for data protection.
The person in charge of data protection, designated by the Data Controller, can be contacted by:
– ordinary post, to the address [ordinary postal address, c.a. of the Data Protection Officer;
– telephone number 078945910;
– e-mail, at email@example.com
Types of data processed.
Through the Website, it will be possible to collect and process:
? navigation data;
? personal data voluntarily provided by the user in the forms on the Site.
Cookies are small text files that visited sites send to the user’s terminal, where they are stored, and then be transmitted back to the same sites on the next visit.
The Website uses technical cookies, both own and third-party. These cookies, being of a technical nature, do not require the prior consent of the User to be installed and used.
In particular, the cookies used on the Site are traceable to the following sub-categories:
? browsing or session cookies, which guarantee the normal navigation and use of the Websites. Not being stored on the user’s computer, they disappear when the browser is closed;
? analytical cookies, with which statistical information on the number of users and visits to the Web sites is collected and analyzed;
? social widgets and plugins: some widgets and plugins made available by social networks can use their own cookies to facilitate interaction with the reference site.
Below are listed third-party cookies installed on the Site. For each of them is a link to the related information on the processing of personal data and how to disable cookies used. With regard to third-party cookies, the Owner has the sole obligation to include in this policy the link to the third-party site. It is the responsibility of this subject, however, the obligation of disclosure and indication of the methods for the possible consent and / or deactivation of cookies.
? Google Analytics:
Information at https://www.google.com/intl/it_ALL/analytics/learn/privacy.html
Opt Out at
Cookies can be disabled by the user by changing the browser settings based on the
instructions made available by the relevant suppliers to the links listed below.
? Internet Explorer: http://windows.microsoft.com/it-IT/internet-explorer/delete-manage-cookies#ie=ie-11
? Mozilla Firefox: https://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
? Google Chrome: https://support.google.com/chrome/answer/95647?hl=en
? Apple Safari: https://support.apple.com/it-it/HT201265
? Opera: http://www.opera.com/help/tutorials/security/cookies/
Purpose and legal basis of the processing.
Personal data collected through the Website will be processed to handle requests for information or documents sent by the User.
The processing of personal data for the aforementioned purposes does not require the consent of the User as the processing is necessary to fulfill specific requests of the data subject pursuant to art. 24, c. 1, lett.
b) of the Code and of the art. 6, c. 1, lett. b) of the GDPR.
Provision of data and consequences in case of failure to provide.
The provision of personal data for the aforementioned purpose is optional and their failure to provide will result, as a sole consequence, the inability for the Owner to manage and fulfill the requests of the person concerned.
Method of treatment. Personal data will be processed electronically, also by inserting and organizing into databases, in compliance with the provisions of the Code and the GDPR regarding security measures.
Recipients or categories of recipients.
Personal data may be made accessible, brought to the attention of or communicated to the following persons, who will be appointed by, as the case may be, those responsible or persons in charge:
? Group companies of which the Holder (controlling, controlled, affiliated), employees and / or collaborators of any title of the Holder is a member;
? public or private subjects, natural or legal persons, of which the Data Controller uses for the performance of the activities instrumental to the achievement of the aforementioned purpose or to which the Data Controller is required to communicate personal data, pursuant to legal or contractual obligations.
In any case, personal data will not be disclosed.
Personal data will be kept for 1 year from their registration.
Access rights, cancellation, limitation and portability.
The interested parties are granted the rights referred to in articles 7 of the Code and from 15 to 20 of the GDPR. By way of example, each interested party can:
a) obtain confirmation of the processing of personal data concerning him or her;
b) if a processing is in progress, obtain access to personal data and information relating to the processing and request a copy of personal data;
c) obtain the correction of inaccurate personal data and the integration of incomplete personal data;
d) obtain, if one of the conditions foreseen by the art. 17 of the GDPR, the cancellation of personal data concerning him;
e) obtain, in the cases provided for by art. 18 of the GDPR, the limitation of the treatment;
f) receive personal data concerning him in a structured format, commonly used and readable by automatic device and request their transmission to another holder, if technically feasible.
Each interested party has the right to object at any time to the processing of his personal data carried out for the pursuit of a legitimate interest of the Data Controller. In the event of opposition, your personal data will no longer be processed, provided that there are no legitimate reasons to proceed with the processing that prevail over the interests, rights and freedoms of the interested party or for the assessment, exercise or defense of a right in court.
Right to propose a claim to the Guarantor.
Furthermore, each interested party may lodge a complaint with the Guarantor for the Protection of Personal Data if he / she considers that the rights he / she is the holder of in accordance with the Code and the GDPR have been violated, according to the procedures
indicated on the website of the Guarantor accessible at: www.garanteprivacy.it.