Bed and Breakfast Mare e Monti


Privacy Policy

Maestroni Paola (hereafter the " Owner "), owner of the website https://www.mareemonti.it (hereafter the " Site "), as Owner of the processing of the personal data of users who browse and who register on the Site (hereinafter, the " Users ") below provides the privacy policy pursuant to art. 13 of EU Regulation 2016/679 of 27 April 2016 (hereinafter, the " Regulation " and / or the " Applicable Regulations ").

This Site and any services offered through the Site are reserved for individuals who have reached the age of eighteen. The Data Controller therefore does not collect personal data relating to subjects under the age of 18. At the request of the Users, the Data Controller will promptly delete all personal data involuntarily collected and relating to subjects under the age of 18.

The Owner takes the utmost account of the right to privacy and protection of personal data of its Users. For any information in relation to this privacy statement, Users can contact the Owner at any time, by sending an email to mareemontilaspezia@hotmail.com

The Data Controller has not identified the figure of the Data Protection Officer (DPO or DPO), as he is not subject to the designation obligation envisaged by art. 37 of the Regulation.

1. Purpose of the treatment

Users' personal data will be processed lawfully by the Data Controller pursuant to art. 6 of the Regulation for the following processing purposes:

  1. contractual obligations and service provision , to allow navigation of the Site or to execute the Terms of Use of the Site, which are accepted by the User when registering on the Site, to take advantage of the services offered through the Site including access to the dating platforms on -line and chat and also to fulfill specific User requests. The user data collected by the Data Controller for the purpose of any registration on the Site include: the voluntarily chosen username, date of birth, gender, the province of residence / domicile, email address as well as all personal information of the User possibly and voluntarily published. Unless the User gives the Owner a specific and optional consent to the processing of their data for the further purposes set out in the following paragraphs, the User's personal data will be used by the Owner for the exclusive purpose of ascertaining the identity of the User (also by validating the e-mail address), thus avoiding possible scams or abuse, and contacting the User for service reasons only (e.g. send notifications relating to the services offered on the Site). Without prejudice to the provisions elsewhere in this privacy statement, in no case will the Data Controller make the Users' personal data accessible to other Users and / or third parties. send notifications relating to the services offered on the Site). Without prejudice to the provisions elsewhere in this privacy statement, in no case will the Data Controller make the Users' personal data accessible to other Users and / or third parties. send notifications relating to the services offered on the Site). Without prejudice to the provisions elsewhere in this privacy statement, in no case will the Data Controller make the Users' personal data accessible to other Users and / or third parties.

  1. administrative-accounting purposes , or to carry out organizational, administrative, financial and accounting activities, such as internal organizational activities and activities functional to the fulfillment of contractual and pre-contractual obligations;

  1. legal obligations , or to fulfill obligations under the law, an authority, a regulation or European legislation.

The provision of personal data for the aforementioned processing purposes is optional but necessary, since failure to provide them will make it impossible for the User to browse the Site, register on the Site and take advantage of the services offered by the Owner on the Site.

The personal data that are necessary for the pursuit of the processing purposes described in this paragraph 1 are indicated with an asterisk within the registration form on the Site.

2. Processing methods and data retention times

The Data Controller will process the personal data of Users through manual and IT tools, with logic strictly related to the purposes themselves and, in any case, in order to guarantee the security and confidentiality of the data.

The personal data of the Users of the Sites will be kept for the time strictly necessary to carry out the primary purposes illustrated in the previous paragraph 1, or in any case according to what is necessary for the protection in civil law of the interests of both the Users and the Owner.

If the User decides to block and / or delete his / her profile, all stored data relating to the User will be deleted. If the complete cancellation of the User's data is not allowed or required by law, the data is blocked for further processing.

3. Scope of communication and dissemination of data

The employees and / or collaborators of the Data Controller in charge of managing the Sites may become aware of the Users' personal data. These subjects, who are formally appointed by the Data Controller as "Data Processors ", will process the User's data only for the purposes indicated in this information and in compliance with the provisions of the Applicable Regulations.

Third parties who may process personal data on behalf of the Data Controller as " External Data Processors " may also become aware of the Users' personal data , such as, by way of example, suppliers of IT and logistic services functional to the operation of the Site. , outsourced or cloud computing service providers , professionals and consultants.

Users have the right to obtain a list of any data processors appointed by the Data Controller, making a request to the Data Controller in the manner indicated in paragraph 4 below.

4. Rights of the interested parties

Users can exercise the rights guaranteed to them by the Applicable Regulations, by contacting the Owner by sending an email to mareemontilaspezia@hotmail.com

Pursuant to the Applicable Law, the Data Controller informs that Users have the right to obtain an indication (i) of the origin of personal data; (ii) the purposes and methods of treatment; (iii) the logic applied in case of treatment carried out with the aid of electronic instruments; (iv) the identity of the owner and managers; (v) the subjects or categories of subjects to whom the personal data may be communicated or who can learn about them as managers or agents.

Furthermore, Users have the right to obtain:

a) access , updating , rectification or, when interested, integration of data;

b) the cancellation , transformation into anonymous form or blocking of data processed in violation of the law, including data which need not be kept for the purposes for which the data were collected or subsequently processed;

c) the certification that the operations referred to in letters a) and b) have been brought to the attention, also as regards their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment occurs proves impossible or involves the use of means manifestly disproportionate to the protected right.

In addition, Users have:

a) the right to withdraw consent at any time, if the treatment is based on their consent;

b) the right to data portability (right to receive all personal data concerning them in a structured format, commonly used and readable by automatic device), the right to limit the processing of personal data and the right to erasure (" right to be forgotten ");

c) the right to object :

i) in whole or in part, for legitimate reasons, to the processing of personal data concerning them, even if pertinent to the purpose of the collection;

ii) in whole or in part, to the processing of personal data concerning them for the purpose of sending advertising materials or direct selling or for carrying out market research or commercial communication;

iii) if personal data are processed for direct marketing purposes, at any time, to the processing of their data carried out for this purpose, including profiling to the extent that it is connected to such direct marketing.

d) if they believe that the processing that concerns them violates the Regulation, the right to lodge a complaint with a Supervisory Authority (in the Member State where they usually reside, in the one in which they work or in the one in which the alleged violation occurred ). The Italian Supervisory Authority is the Guarantor for the protection of personal data , based in Piazza di Monte Citorio n. 121, 00186 - Rome ( https://www.garanteprivacy.it/ ).

The Data Controller is not responsible for updating all the links that can be viewed in this Policy, therefore whenever a link is not functional and / or updated, Users acknowledge and accept that they must always refer to the document and / or section of the websites referred to by this link.