Privacy Policy

PRIVACY POLICY

  1. Introduction

This section contains information relating to the methods of processing the personal data of visitors to the fanticstore.it website

.This information is also valid for the purposes of art. 13 of Regulation (EU) n. 2016/679 (“GDPR”), relating to the protection of individuals with regard to the processing of personal data and the free movement of such data and is provided by HOTEL RISTORANTE LA BAITINA di Rodighiero Simone PIVA 02507310221 CF RDGSMN71L27B041S Via Kaberlaba 35 Asiago (VI) as Data Controller of your personal data.

This information is valid only for visitors to the fanticstore.it website.

The information may change due to the introduction of new rules, so the user is invited to periodically check this page.

2. Type of data collected

While browsing the fanticstore.it website, information about the visitor may be acquired in the following ways:

· Browsing data

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes: IP addresses, the type of browser used, the operating system, the domain name, the web page the visitor came from (referral) and exit, date and time of visit.

· Additional categories of data

This is all personal data provided by the visitor through the site, for example:

– filling out a form to place a purchase order;

– filling out a form through which to request information on the services offered and/or a contract request;

– filling out a form through which to request a return or the exchange of an item in relation to an order placed; – by writing to the e-mail addresses indicated on our site to request information;

– accessing a reserved area and/or a service; – filling out a form to receive our newsletter and marketing communications;

– to give answers through a support form.

3. Purpose of the processing

The data provided are processed for the following purposes:

– to provide the goods requested by the user, to manage the contacts made by the user, to carry out the related administrative, accounting, tax and legal obligations, and to process the requests sent by the user. The treatments put in place for these purposes are necessary for the fulfillment of contractual obligations and do not require specific consent from the interested party;

– detect the experience of using our platforms, the products and services we offer and ensure the proper functioning of the web pages and their contents. The treatments put in place for these purposes are based on a legitimate interest of the Data Controller;

– send commercial communications relating to promotions and/or offers, in the interest of the Data Controller. The treatments put in place for these purposes are carried out with the specific consent provided by the user.

4. Data processing methods

The processing of your personal data may include any type of operation, including collection, registration, organization, structuring, storage, adaptation or modification, extraction, consultation, use, communication by transmission, dissemination or any other form of provision, comparison or interconnection, limitation, cancellation or destruction.

The operations can be carried out with or without the aid of electronic or automated tools.

The processing is carried out by the Data Controller and/or by the data processors who operate under the direct authority of the Data Controller in accordance with the instructions given or by third parties appointed as external data processors.

5. Sharing and transfer of personal data

The data collected by HOTEL RISTORANTE LA BAITINA di Rodighiero Simone will be shared only for the purposes mentioned above; we will not share or transfer your personal data to third parties other than those indicated in this privacy policy.

In the course of our activities, and exclusively for the purposes indicated in this privacy policy, your personal data may be transferred to the following categories of recipients:

– employees and/or collaborators of the Data Controller (including system administrators) who operate under the authority of the latter;

– service providers (for example IT system providers, cloud service providers, database providers and consultants );

– Public Administrations for legal purposes;

– any public and/or private entity that requires the communication of your personal data in relation to the purposes indicated above.

This privacy policy is also applicable in the case of data transfer to third countries where the level of data protection is different from that provided by the European Union: any transfer of data to third parties will be carried out only after having informed you and, where required, after receiving your consent. Any transfer of data to countries other than those for which the European Commission has made an adequacy decision takes place on the basis of agreements that use standard contractual clauses adopted by the European Commission or other appropriate guarantees in compliance with current laws.

6. Personal data protection

HOTEL RISTORANTE LA BAITINA di Rodighiero Simone has implemented appropriate technical and organizational measures to provide a high level of security and confidentiality of personal data.

The purpose is to protect them from accidental or unlawful destruction or alteration, accidental loss, unauthorized disclosure or access, and from other forms of unlawful processing.

When managing your personal data, HOTEL RISTORANTE LA BAITINA di Rodighiero Simone collects and processes personal data that are adequate, relevant and not excessive, as required to meet the above purposes and ensures that such personal data remain up to date.

7. Data storage times

Without prejudice to your right to object to the processing of personal data and/or to request their cancellation, HOTEL RISTORANTE LA BAITINA di Rodighiero Simone will keep your personal data only for the time necessary to achieve the purpose for which they were collected and received, or to meet legal or regulatory requirements.

At the end of this period, your personal data will be removed from the systems of HOTEL RISTORANTE LA BAITINA di Rodighiero Simone

8. Obligation to provide data The provision of data must be considered mandatory with regard to the treatments that the Data Controller must carry out to fulfill its obligations to the interested party on the basis of the existing relationship (or contract), as well as legal obligations, rules, regulations. Consent is not mandatory for all other purposes and, even if given, can be revoked at any time by the interested party.

9. Refusal to provide data The failure to provide the data that the interested party is obliged to communicate may make it impossible to satisfy your requests or to carry out a business relationship and the contracts that may be established with the Data Controller. In the event of failure to provide non-mandatory data, the consequences will be evaluated from time to time with regard to the specific case and will presumably result in the non-execution of the service linked to such data.

10. Rights of

the interested party The Regulation (EU) n. 2016/679 relating to the protection of individuals with regard to the processing of personal data, recognizes the following rights to the interested party:

  • rights of access to data (art. 15): you can request
  • the purposes of the processing;
  • the categories of personal data in question;
  • the recipients or categories of recipients to whom the data personal data have been or will be disclosed, in particular if recipients from third countries or international organizations;
  • when possible, the expected period of retention of personal data or, if not available, the criteria used to determine that period;
  • the existence of your right to ask the Data Controller to rectify or delete personal data or to limit the processing of personal data concerning you or to object to their processing;
  • the right to lodge a complaint with a supervisory authority;
  • if the data are not collected from you, all the information available on their origin;
  • the existence of an automated decision-making process, including the profiling referred to in article 22, paragraphs 1 and 4 and, at least in such cases, significant information on the logic used, as well as the importance and expected consequences of such processing for you;  
  • a copy of the personal data being processed.
  • right to rectification (art. 16): you have the right to request the rectification of inaccurate personal data concerning you and to obtain the integration of incomplete personal data.
  • right to cancellation (right to be forgotten) (art. 17): you have the right to obtain from the Data Controller the cancellation of personal data concerning you if the personal data are no longer necessary for the purposes for which they were collected or otherwise processed, if you revoke your consent, if there is no overriding legitimate reason to proceed with the profiling treatment, if the data have been processed unlawfully, if there is a legal obligation to delete them. Cancellation may take place unless the right to freedom of expression and information prevails, whether they are preserved for the fulfillment of a legal obligation or for the execution of a task carried out in the public interest or in the exercise of public authority, for reasons of public interest in the health sector, for archiving purposes in the public interest, for scientific or historical research or for statistical purposes or for the assessment, exercise or defense of a right in court.
  • right to limitation (art. 18): you have the right to obtain from the Data Controller the restriction of processing when you have contested the accuracy of personal data (for the period necessary for the Data Controller to verify the accuracy of such personal data), or if the processing is unlawful and you object to the cancellation of personal data and instead ask that their use be limited, or if they are necessary for the establishment, exercise or defense of a right in court, while at Holders are no longer needed.
  • right to portability (art. 20): you have the right to receive in a structured format, commonly used and readable by an automatic device the personal data concerning you and that you have provided to us and you have the right to transmit them to another if the processing is based on consent, on the contract and if the processing is carried out by automated means, unless the processing is necessary for the performance of a task of public interest or connected to the exercise of public authority and that such transmission does not harm the right of the third party.
  • right to object (art. 21): you have the right to object at any time to the processing of personal data concerning you pursuant to article 6, paragraph 1, letters e) or f), of the GDPR, including profiling based on these provisions. In these cases, the Data Controller will refrain from further processing personal data unless he demonstrates the existence of compelling legitimate reasons to proceed with the processing that prevail over the interests, rights and freedoms of the interested party or for the assessment, exercise or
  • defense of a right in court.
  • if personal data are processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data carried out for those purposes, including profiling to the extent that it is connected to such direct marketing.
  • right to lodge a complaint (Guarantor for the protection of personal data) (art. 77): without prejudice to any other administrative or judicial remedy, if you believe that the processing concerning you violates the regulation on the protection of personal data, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State where you usually reside, work or the place where the alleged violation occurred.

11. How to exercise your rights

12. Changes to this privacy policy

  • Any future changes or additions to the processing of personal data as described in this privacy policy will be notified, for example, by e-mail or through the website

13. Data Controller and Data Protection Officer

  • To exercise the rights set out in articles 15 and following of EU Regulation no. 2016/679, you can contact the Data Controller HOTEL RISTORANTE LA BAITINA di Rodighiero Simone with registered office in Via Kaberlaba n. 35 in Asiago (VI), by sending an e-mail to the address analytics.labaitina@gmail.com.