Data processing owner

The Data Controller, in accordance with the Act and this EU Regulation 679/2016, is: Isabella Hospitality SRL Via Alpe Adria 6, 33010 33010 Tavagnacco (UD) VAT NO. 03039600303 Via Silvio Amico 35 17025 Loano, Liguria in the person of its legal representative pro tempore.

We would like to inform you that the aforementioned legislation provides for the protection of data subjects with regard to the processing of personal data and that such processing will be based on the principles of correctness, lawfulness, transparency and the protection of your privacy and rights in accordance with the provisions of reg. 679/2016.

Purpose of processing

Purposes of processing: in particular, your data will be processed for the following purposes in connection with the implementation of legal or contractual obligations:

- purposes necessary to verify, exercise or defend a right in court or whenever the judicial authorities exercise their jurisdictional functions;
- purposes of advanced navigation or personalised content management;
- purposes inherent to the execution of a contract to which you are party or the execution of pre-contractual measures taken at your request (e.g.: request for contact via the Contact form, newsletter, work with us, etc.);
- purposes of statistical research/analysis on aggregated or anonymous data, without therefore the possibility of identifying the user, aimed at measuring the operation of the Site, measuring traffic and assessing usability and interest.

The processing of functional data for the fulfilment of these obligations is necessary for the proper management of the relationship and their provision is mandatory for the implementation of the purposes indicated above. The Data Controller also makes it known that failure to provide, or incorrect communication of, any of the mandatory information may make it impossible for the Data Controller to guarantee the appropriateness of the processing itself.

Treatment methods

Your personal data may be processed in the following ways: manually or by computer using management systems. All processing is carried out through the adoption of appropriate security measures.

Communication of personal data:

Your personal data, possibly entered voluntarily in the services available on the present website, will be processed and managed for the purposes and performance of the services necessary for the proper management of the requested relationship, with guaranteed protection of the rights of the data subject. Your data will be processed only by personnel expressly authorised by the Data Controller. In the event that the personal data require the performance of a service that involves the sending of informative, promotional electronic communications, in accordance with the conditions and authorisations issued by the data subject, the company may use the external services of third parties specialising in the management of the service itself. In this case, it will be the responsibility of the data controller to specify exactly the terms of the service and to request consent under the terms of these regulations.

Distribution of personal data:

Your personal data will not be disseminated in any way.

Retention Period

We would like to inform you that, in accordance with the principles of lawfulness, purpose limitation and data minimisation, pursuant to Article 5 of the GDPR, the retention period for your personal data is:
• Established for a period of time not exceeding the performance of the services provided.
• According to the legal terms provided by the specific processing required.

Cookie management:

See for more details the extended information on cookie management in the footer on the homepage: Cookie Policy

If you have any doubts or concerns about the use of cookies you can always take action to prevent them being set and read, for example by changing the privacy settings within your browser to block certain types of cookies.

Rights of the data subject:

You have the right to obtain from the data controller the erasure (right to be forgotten), limitation, updating, rectification, portability, opposition to the processing of personal data concerning you, as well as in general you can exercise all the rights provided for in Articles 15, 16, 17, 18, 19, 20, 21, 22 of the GDPR.

1. You have the right to obtain confirmation of the existence or otherwise of personal data concerning you, even if not yet recorded, and its communication in intelligible form.

2. The data subject shall have the right to be informed
a. the origin of the personal data
b. the purposes and methods of processing
c. the logic applied in the event of processing carried out with the aid of electronic instruments
d. the identity of the data controller, data processors and the representative designated pursuant to Article 5, paragraph 2; e. the subjects or categories of subjects to whom the personal data may be communicated or who may become aware of such data in their capacity as designated representative in the territory of the State, data processors or persons in charge of processing.

3. The data subject has the right to obtain
a. the updating, rectification or, where interested therein, integration of the data;
b. the cancellation, transformation into anonymous form or blocking of data processed in breach of the law, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed
c. certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected;
d. portability of the data.

4. The data subject has the right to object, in whole or in part
a. on legitimate grounds, to the processing of personal data concerning him/her, even though they are relevant to the purpose of the collection
b. to the processing of personal data concerning him/her for the purpose of sending advertising materials or direct selling or for carrying out market research or commercial communication.

The data subject's right to complain:

The data subject has the right to lodge a complaint with the competent supervisory authority and to appeal to the competent courts of the Member States in accordance with Article 79 - Competent authority: www.garanteprivacy.it 

Profiling

It is confirmed, for the purposes and types of data collected by this website, that there is no automated decision-making process, including profiling as referred to in Article 22(1) and (4).

Further informations

For any further needs, requests for information or clarifications, please contact our office directly on the telephone numbers and/or email below (footer area).