Privacy policy - I Fiori di Margherita Luxury B&B

WHAT IS THE PRIVACY POLICY

This page describes how the site is managed with regard to the processing of personal data of users who consult it.

This is an information that is also made pursuant to the current legislation on Privacy – Code on the protection of personal data to those who interact with the web services of the company B&B I Fiori di Margherita by Stefano Cau, accessible by electronic means from the following address: www.bbifioridimargherita.it

The information is made available only for the website of the company B&B I Fiori di Margherita by Stefano Cau Data Controller and not for third-level websites that may be consulted by the user via links.

The information is in accordance with the legislation of the European Community and more precisely to Recommendation n. 2/2001 that the European authorities for the protection of personal data, gathered in the Group established by art. 29 of Directive 95/46/EC, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data on-line. and, in particular, the manner, timing and nature of the information that data controllers must provide to users when they link to web pages, regardless of the purpose of the link.

THE “CONTROLLER” OF THE PROCESSING

In accordance with current legislation, the Data Controller is Stefano Cau based at Strada Bellocchio San Faustino, 3 – 06127 Perugia.

THE “RESPONSIBLE” FOR PROCESSING

In accordance with current legislation, the Data Controller is Stefano Cau.

In accordance with current legislation, the external data controller for the management of the site and the acquisition of personal data during the booking process is SolutionPlus s.r.l. – Str. Prov. Bitonto – Aerop. Palese, 28 – Bari, It owner of the hotel booking engine (www. krossbooking.com) integrated in this website.

PLACE OF DATA PROCESSING

The site is hosted on machines managed by an external company, however communications are sent to the data controller in order to give feedback on users’ requests and guarantee the reservation.

The processing related to the web services of this site therefore take place at the offices of the owner and external data processors for relevant areas.

No data resulting from the web service is communicated by the two companies to third parties unless strictly relevant to the purpose of processing or imposed by laws or regulations.

END OF TREATMENT

The personal data provided voluntarily and voluntarily by users who submit requests to receive information about hotel services (prices, room availability, etc.), or simply submit applications for recruitment by sending curricula in electronic format, are used only for the purpose of performing the requested service or performance and shall not be disclosed to third parties unless disclosure is required by law or is strictly relevant and necessary for the fulfillment of requests.

In particular, the personal data voluntarily provided by the data subjects will be collected and processed, also with the help of electronic means directly and/ or through delegated third parties (companies for the e-mail service, companies for hosting the website) for the following purposes:

check the availability of the requested room against information entered in the booking form;
allow you to make and confirm your booking by providing your identification data and credit card details as a guarantee;
to activate any promotional and commercial activities in accordance with the current legislation;
to comply with existing administrative, accounting and tax obligations as well as to comply with laws and regulations;
provide answers on our hotel services (room availability, prices, conference rooms, catering, etc.);
to register for the newsletter in order to receive regular commercial or promotional communications;
Assess any curricula received in a manner consistent with internal needs;
for the defense by the Owner in court or in the stages leading to its possible establishment, from abuses resulting from an unlawful use of the website or related services by the User;
Statistical purposes in anonymous form (to assess the number of accesses, etc.).

RESERVATIONS

The personal data on reservations will be processed electronically and in paper form for the sole purpose of guaranteeing the reservation of the room and the agreed conditions.

The booking platform is owned by the company Solution Plus s.r.l., external data controller, which will communicate the data of the person concerned to the accommodation facility for normal activities related to hospitality management

The data will be recorded in our electronic databases accessible to staff duly instructed and trained on the security and confidentiality of personal data.

To confirm the reservation, a credit card will be required as guarantee, provided that the customer can decide to pay in cash at the end of the stay.

CURRICULUM MANAGEMENT

This information is drawn up in accordance with the current standard, is also usable by the company I Fiori di Margherita di Stefano Cau for any advertisements published for the search of staff in sites or portals not directly managed by the company I Fiori di Margherita di Stefano Cau.

The Company will process resumes received via email or through third-party recruiting companies (publications on portals, etc.) to evaluate potential applications within the company or that may be submitted in the near future.

The processing is carried out electronically, excluding curricula received by regular mail.

The curricula considered “interesting” will be kept at the company for a period not exceeding one year and will be treated in full respect of minimum security measures regarding privacy according to current legislation.

Curricula deemed irrelevant as well as those whose retention time has exceeded 12 months will be discarded.

The curricula will be kept at the company’s premises and will not be communicated to unauthorized third parties.

The same may be evaluated by employees or collaborators of the company appointed as data processors (ex art. 30 of D. Lgs. 196/2003).

Please observe the following rules when sending your CV in electronic form:

Complete the curriculum in the European format;
Send the CV in pdf format;
avoid including in their CV sensitive data (relating, in particular, to health, religious, philosophical or political convictions) which are not relevant to the job offer;
consent to processing.

The company reserves the right to discard curricula that do not comply with the above requirements.

It will be the responsibility of the company to provide suitable information in accordance with current legislation, during any interviews with candidates.

The purpose of the processing related to the management of curricula, will concern activities strictly related to the evaluation, recruitment or selection of personnel, with objectives of collaboration, fixed-term or indefinite employment, to enable the chosen candidate to prepare his or her thesis at our Headquarters.

COMMERCIAL EMAIL COMMUNICATIONS

The company I Fiori di Margherita by Stefano Cau reserves the right to send promotional and commercial emails in accordance with the current Privacy Policy:

“if, in the context of a sale of goods or services, the Data Controller uses the customer’s e-mail address, the same address may be used for sending commercial and promotional material without prior consent provided that the customer is duly informed at each sending of promotional and commercial material and that the same has the possibility in such a way Easy and free to exercise the right to stop such processing”.

In this case, the interested party, received the first message of a promotional nature will have the possibility to cancel from the newsletter of the accommodation with a simple click.

These messages are sent by a third party email service provider.

COMMUNICATION AND DISSEMINATION OF DATA

The personal data acquired from this website may be processed only by staff officially appointed and trained in confidentiality and security of personal data.

The areas of communication of personal data of data subjects may refer to:

to Public Bodies or Offices in function of the legal and/or contractual obligations;
company Solution Plus s.r.l.;
external processors acting as companies or consultants who carry out activities on behalf of the holder instrumental to the proper functioning of the site and management of information acquired through it;
to the Postal Police for the determination of possible activities harmful to the company’s site;
to employees or service providers when the communication is necessary for the use of the hotel services by the data subject.
Personal data will not be disclosed.

NAVIGATION DATA

The software applications used to operate this website acquire, in the course of their normal operation, some personal data whose transmission is implicit within the normal IP protocol of Internet communication.

This is information that is not collected to be directly associated with the identified data subjects, but that by its very nature could, through processing and subsequent correlations with data held by third parties (providers), allow users to be identified.

This data category includes the IP addresses or domain names of computers used by users connecting to the site, the date and time of the request, the addresses in notation URI (Uniform Resource Identifier) of the requested resources, the size of the file obtained in response from the server, the numerical code indicating the state of the answer given by the server (ok, error, etc.) and other parameters related to the operating system and computer environment of the user.

These data are used only for the purpose of obtaining anonymous statistical information on the use of the site and to check its proper functioning and are deleted immediately after processing.

This site may disclose personal data that, if required in accordance with the law, may be disclosed to the judicial authority for purposes of state defense or prevention, detection or prosecution of crimes, act to ensure the protection of personal data of the interested parties who use the online services of the site, for possible defensive investigations under Law n. 397 of 7 December 2000, or, in any case, to assert or defend a legitimate right and interest of the Data Controller in legal proceedings in compliance with the relevant principles and not exceeding the purpose of the processing.

OPTIONAL PROVISION OF DATA

Apart from the specified for browsing data, you are free to provide personal data to make an online booking.

The progress of the online booking procedure implies an implied consent of the interested party to the processing of their personal data according to the privacy policy of this website.

The possible acquisition of other personal data through dedicated forms (for example, registration to the newsletter), will require an explicit reading of the information by the person concerned to the processing as consent to the processing of his personal data.

The failure to provide personal data provided by the website may make it impossible to obtain what is requested.

The optional, explicit and voluntary sending of e-mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, necessary to respond to requests, as well as any other personal data inserted in the letter.

MODE OF TREATMENT

Personal data is processed in paper format and/or with automated tools for the time strictly necessary to achieve the purposes for which it was collected.

Specific security measures are observed to prevent data loss, illegal or incorrect use and unauthorized access.

DATA PROVIDED VOLUNTARILY BY THE USER

Cookies are small files stored on your hard drive. This allows a smoother navigation and greater ease of use of the site itself.

Cookies generally allow you to access information already stored on your computer for purposes that may be of a commercial nature (profiling, for example) or technical (to ensure the proper functioning of the website visited).

In accordance with Directive 2009/136/EC, no explicit consent will be required for the use of cookies because we will only use session cookies, or cookies instrumental to the proper functioning of the website.

No use will therefore be made of cookies for the transmission of personal information, nor arec.d. persistent cookies of any kind, or systems used to track users.

The use of c.d. session cookies (which are not stored in a persistent way on the user’s computer and disappear with the closing of the browser) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable safe and efficient site exploration.

The c.d. session cookies used on this site avoid the use of other computer techniques potentially detrimental to the confidentiality of users’ browsing and do not allow the acquisition of personal data identifying the user.

RIGHTS OF DATA SUBJECTS

The persons to whom the personal data relates have the right at any time to obtain confirmation of the existence or not of the same data and to know its content and origin, verify its accuracy or request its integration or update, or rectification (art. 7 of the D. Lgs. n. 196/2003).

Pursuant to the same article, you have the right to request the deletion, transformation into anonymous form or blocking of data processed in violation of law, as well as to oppose in any case, for legitimate reasons, their processing.

Requests must be addressed to the owner of the personal data processing company Mr. Stefano Cau.

The rights of the data subject are set out in full below.

Art. 7 – Right of access to personal data and other rights

The data subject has the right to obtain confirmation of the existence or otherwise of personal data concerning him, even if not yet recorded, and their communication in an intelligible form.

The person concerned has the right to obtain an indication of:

a) the origin of the personal data;

b) the purposes and methods of processing;

c) the logic applied in case of processing carried out with the aid of electronic instruments;

d) the identification details of the holder, the persons responsible and the representative designated pursuant to Article 5, paragraph 2;

e) the subjects or categories of subjects to whom personal data may be communicated or who may become aware of it as a designated representative in the territory of the State, of responsible persons or delegates.

The person concerned has the right to obtain:

a) the updating, rectification or, where relevant, integration of data;

b) the deletion, anonymisation or blocking of data processed in breach of law, including those which do not require storage in relation to the purposes for which the data were collected or subsequently processed;

c) an attestation that the operations referred to in points a) and b) have been made known, including as regards their content, by those to whom the data were communicated or disseminated, except where such fulfilment proves impossible or involves the use of means manifestly disproportionate to the right protected.

You have the right to object, in whole or in part:

a) for legitimate reasons to the processing of personal data concerning him, even if relevant to the purpose of the collection;

b) the processing of personal data concerning it for the purposes of sending advertising or direct sales material or for the completion of market research or commercial communication.