Privacy policy
CAV LE CASETTE DI OSVALDO
Guest privacy policy diagram pursuant to art. 13 of the GDPR
Warning:
the following privacy policy model is a general diagram that Accommodation Establishments are required to complete and adapt according to the terms laid down in EU Regulation 2016/679 on the protection of personal data (GDPR) and in Legislative Decree No. 196/03 as amended by Legislative Decree No. 101/2018, indicating by way of non-limiting example, the kind of data processed, the purpose of such processing and any further data processed by the establishment, the processing methods, any communication of the same to third parties and their transfer outside of the EU, etc.
Privacy policy pursuant to art. 13 of EU Regulation 2016/679 governing the processing of personal data
pertaining to statistical studies on tourism flows, communications to the Public Security Authorities
and administration reason
Before supplying your own personal data, in compliance with the terms laid down in the European Regulation on the protection of personal data 2016/679 and in Italian Legislative Decree No. 196 of 30 June 2003 (so-called Privacy Code), amended pursuant to Legislative Decree No. 101 of 10 August 2018, the aim of which is to protect the fundamental rights and freedom of physical persons, particularly the right to the protection of personal data, you are required to read a series of information points that will help you to understand how and why your personal data are processed, as well as informing you of your rights and how you can exercise them.
1. Aims and legal basis of the processing of personal data.
Your personal data are processed for the primary aim of:
a) fulfilling legal requirements in terms of statistics, among which:
1) complying with statistical surveys “IST-00138 Occupancy of accommodation establishments” and “IST-00139 Capacity of accommodation establishments”, which are compulsory for Accommodation Establishments and included in ISTAT’s National Statistical Program (Programma Statistico Nazionale, PSN);
2) providing data on the Guests and on their stay to the competent Public Security Authorities, pursuant to art. 109 of the T.U.L.P.S. (Testo Unico Leggi di Pubblica Sicurezza, Consolidated Law on public security)
b) Accommodation establishment management requirements
c) Data collection for marketing purposes (e.g. sending of newsletter)
...
2. Controller
The Controller, i.e. the entity that decides how and why your data are processed, is
<> as legal representative of the accommodation establishment.
<>, as legal representative of the accommodation establishment CAV LE CASETTE DI OSVALDO located in LECCO(LC), address Via Mascari Don Antonio 15, that can be contacted by writing an email with the heading: “Privacy” to the e-mail address [email protected], telephone number .Contact data of the Data Protection Officer (DPO): <>,
3. Data subjects
Guests of the Accommodation Establishments.
4. Type of data processed:
General personal data: identification (name and surname, tax code, copy of valid ID document with photo); biographical data (Citizenship and Country of birth, place and date of birth, address of residence, etc.), contact details (telephone numbers, e-mail address, etc.), educational qualifications.
5. Data processing methods
The processing is carried out by electronic, or in any case, automated means and transmitted via telematic networks. The same data are processed on paper. The Controller adopts suitable technical and organizational measures to guarantee a level of security proportional to the type of data processed.
6. Transmission and dissemination of personal data
Your data may be transmitted, for the primary aims (point 1 letter a.1, a.2) and in order to fulfil legal requirements2 to other autonomous Controllers of public data, such as Provincial Offices, Regione Lombardia (regional authorities of Lombardy) and the Ministry of the Interior;
These data will be processed with appropriate and suitable technical and organizational measures in order to guarantee their confidentiality and security, also by means of the tourist data management systems made available through ARIA spa – Regional agency for innovation and purchasing, for the statistical aims laid down in the National Statistics Program (PSN). For the purposes referred to in point 1 lett a), your data will be rendered anonymous and communicated to ISTAT in aggregate form. These data may also be transmitted to Third Parties (e.g. Suppliers), as Processors, appointed by the Controller. This list of Third Parties is available from the Controller. The recipients of your personal data have been properly instructed to be able to process your personal data, guaranteeing the same level of security as that provided by the Controller. Your personal data will not be disseminated.
07. Data retention time frame : 10 YEAR
08
. Rights of the data subject
You are entitled to exercise your rights pursuant to articles 15-22 of EU Regulation 679/2016, where applicable and, among these, we draw your attention to your right to obtain the correction, integration or deletion (so-called right to erasure) of your personal data, the right to pose a limitation on the processing of your data, the right to data portability, and the right to object to the processing of your personal data, including their use for profiling.
Any requests regarding the exercising of your rights must be sent to the e-mail address [enter mail] of the Accommodation Establishment, or by registered mail with return receipt to the following address: [Enter address of the Establishment’s registered office] for the attention of: [Enter person responsible]. You also have the right to lodge a complaint with a Supervisory Authority: if you think that the processing of your data does not comply with the provisions in force, or if the response to a complaint in which you have exercised one or more of the rights provided for in Articles 15-22 of the GDPR is not received within the time limits indicated or is not satisfactory, you may apply to a Supervisory Authority
[click here].
CONSENT
After having read and understood the privacy policy issued pursuant to EU Regulation 2016/679 and the Privacy Code (Legislative Decree 196/2003 and subsequent amendments and additions), you are kindly asked to give your consent and authorize the data processing for the following purposes:
Guest privacy policy diagram pursuant to art. 13 of the GDPR
Warning:
the following privacy policy model is a general diagram that Accommodation Establishments are required to complete and adapt according to the terms laid down in EU Regulation 2016/679 on the protection of personal data (GDPR) and in Legislative Decree No. 196/03 as amended by Legislative Decree No. 101/2018, indicating by way of non-limiting example, the kind of data processed, the purpose of such processing and any further data processed by the establishment, the processing methods, any communication of the same to third parties and their transfer outside of the EU, etc.
Privacy policy pursuant to art. 13 of EU Regulation 2016/679 governing the processing of personal data
pertaining to statistical studies on tourism flows, communications to the Public Security Authorities
and administration reason
Before supplying your own personal data, in compliance with the terms laid down in the European Regulation on the protection of personal data 2016/679 and in Italian Legislative Decree No. 196 of 30 June 2003 (so-called Privacy Code), amended pursuant to Legislative Decree No. 101 of 10 August 2018, the aim of which is to protect the fundamental rights and freedom of physical persons, particularly the right to the protection of personal data, you are required to read a series of information points that will help you to understand how and why your personal data are processed, as well as informing you of your rights and how you can exercise them.
1. Aims and legal basis of the processing of personal data.
Your personal data are processed for the primary aim of:
a) fulfilling legal requirements in terms of statistics, among which:
1) complying with statistical surveys “IST-00138 Occupancy of accommodation establishments” and “IST-00139 Capacity of accommodation establishments”, which are compulsory for Accommodation Establishments and included in ISTAT’s National Statistical Program (Programma Statistico Nazionale, PSN);
2) providing data on the Guests and on their stay to the competent Public Security Authorities, pursuant to art. 109 of the T.U.L.P.S. (Testo Unico Leggi di Pubblica Sicurezza, Consolidated Law on public security)
b) Accommodation establishment management requirements
c) Data collection for marketing purposes (e.g. sending of newsletter)
...
2. Controller
The Controller, i.e. the entity that decides how and why your data are processed, is
<
<
3. Data subjects
Guests of the Accommodation Establishments.
4. Type of data processed:
General personal data: identification (name and surname, tax code, copy of valid ID document with photo); biographical data (Citizenship and Country of birth, place and date of birth, address of residence, etc.), contact details (telephone numbers, e-mail address, etc.), educational qualifications.
5. Data processing methods
The processing is carried out by electronic, or in any case, automated means and transmitted via telematic networks. The same data are processed on paper. The Controller adopts suitable technical and organizational measures to guarantee a level of security proportional to the type of data processed.
6. Transmission and dissemination of personal data
Your data may be transmitted, for the primary aims (point 1 letter a.1, a.2) and in order to fulfil legal requirements2 to other autonomous Controllers of public data, such as Provincial Offices, Regione Lombardia (regional authorities of Lombardy) and the Ministry of the Interior;
These data will be processed with appropriate and suitable technical and organizational measures in order to guarantee their confidentiality and security, also by means of the tourist data management systems made available through ARIA spa – Regional agency for innovation and purchasing, for the statistical aims laid down in the National Statistics Program (PSN). For the purposes referred to in point 1 lett a), your data will be rendered anonymous and communicated to ISTAT in aggregate form. These data may also be transmitted to Third Parties (e.g. Suppliers), as Processors, appointed by the Controller. This list of Third Parties is available from the Controller. The recipients of your personal data have been properly instructed to be able to process your personal data, guaranteeing the same level of security as that provided by the Controller. Your personal data will not be disseminated.
07. Data retention time frame : 10 YEAR
08
. Rights of the data subject
You are entitled to exercise your rights pursuant to articles 15-22 of EU Regulation 679/2016, where applicable and, among these, we draw your attention to your right to obtain the correction, integration or deletion (so-called right to erasure) of your personal data, the right to pose a limitation on the processing of your data, the right to data portability, and the right to object to the processing of your personal data, including their use for profiling.
Any requests regarding the exercising of your rights must be sent to the e-mail address [enter mail] of the Accommodation Establishment, or by registered mail with return receipt to the following address: [Enter address of the Establishment’s registered office] for the attention of: [Enter person responsible]. You also have the right to lodge a complaint with a Supervisory Authority: if you think that the processing of your data does not comply with the provisions in force, or if the response to a complaint in which you have exercised one or more of the rights provided for in Articles 15-22 of the GDPR is not received within the time limits indicated or is not satisfactory, you may apply to a Supervisory Authority
[click here].
CONSENT
After having read and understood the privacy policy issued pursuant to EU Regulation 2016/679 and the Privacy Code (Legislative Decree 196/2003 and subsequent amendments and additions), you are kindly asked to give your consent and authorize the data processing for the following purposes: