(GDPR) to the users (hereinafter “Users” or “User”) of the internet site www.poderesanantonio.it property of Simone Amato, who is the Data Controller. Scope of this policy is to describe how the Users’ data are managed and to let the Users know why and how their data are used, in case they consent to collect them.
PRINCIPLES APPLICABLE TO THE PROCESSING OF PERSONAL DATA
The Data Controller, pursuant to and for the purposes of the Policy, states that the processing of personal data and their treatment will be based on principles of correctness, lawfulness, transparency and protection of confidentiality and fundamental rights.
PURPOSE, LEGAL BASIS OF THE TREATMENT AND OPTIONALITY
The site acquires certain personal data of the User by the booking form that the User decides to send while asking for availability of the apartment or booking it. Any personal data collected through the use of the Site will be processed, with the consent of the Users, for the purposes described below:
- Contact the User to answer the questions asked and provide information and business proposals relating to stays at the apartment
- Manage the booking, finalize the tourist rental contract and send, through Email and/or SMS, all the information necessary for the stay at the apartment
For the purpose referred to in number 2, in addition to the name and e-mail address entered in the contact form, the Data Controller may become aware of additional User data such as telephone number, credit card number, personal data, bank details. In this case the Data Controller applies, as the legal basis for processing, the need to process personal data for the execution of the rental contract, in particular to allow a complete management of the apartment booking and leasing process.
PERSONAL DATA PROCESSING METHODS AND RETENTION PERIOD
The Data Controller ensures that any personal data is processed in full compliance with the Rules, in paper and / or electronic format, also with automated procedures. Processing can also be carried out using automated tools to store, manage and transmit the data. The data collected and processed will be protected with physical and logical methods that reduce to a minimum the risks of unauthorized access, dissemination, loss and destruction of data, pursuant to art. 25 and 32 of the Regulations. The data processing will last no longer than is necessary to meet the purposes for which it was collected. According to the art. 7 paragraph 3 of the Regulation, the interested party will have the right at any time and in an easy and fast way to withdraw the consent to the processing and request the cancellation of any personal data, sending a specific communication to the Data Controller at firstname.lastname@example.org. Following the request for cancellation by the User, all personal data of the same will be deleted, without prejudice to further storage required by regulatory obligations. In the event that a User has made reservations or stays at the apartment, the data will be kept for the time strictly necessary to carry out all the obligations connected with the tourist rental contract.
DATA CONTROLLER AND DATA PROTECTION MANAGER
Users may exercise their rights at any time by contacting the Data Controller and Data Protection Officer for any communications regarding the processing of their Personal Data, at the following contacts: