Privacy policy in accordance with EU Regulation 2016/679
Pursuant to Article 13 of the GDPR (EU Regulation 2016/679) and Legislative Decree No. 101 of 2018, the following information is provided, consistent with the principle of transparency, in order to make the user aware of the characteristics and methods of data processing:
- Identity and contact details
We inform you that the “Data Controller” of the data processing is
Grand Hotel Liberty Beauty and Wellness S.p.a.,
in the person of the pro tempore director Mr. Alessandro Calzà,
current at Viale Carducci n. 3/5,
38066 Riva del Garda (TN),
VAT no. 00819600222.
The following contact details are provided: telephone 0464/553581,;
e-mail address info@ grandhotelliberty.it;
certified electronic mail (PEC) box liberty.srl.rivadelgarda@legalmail.it.
- Purpose of data processing and legal basis for processing, purpose limitation and data minimisation
The processing of your personal data is solely for the purpose of supplying and providing the services referred to in the corporate purpose (hotel, restaurant, bar and wellness activities) communications without commercial or marketing purposes only with specific consent, user profiling and similar always related to the aforementioned purposes referred to in the corporate purpose. It should be noted that the Data Controller shall abide by the principle of purpose limitation and that any processing operations subsequent to the initial ones shall not have purposes incompatible with the original one.
- Accuracy
The Data Controller shall keep your data up to date by deleting them at your request, except as provided for therein, and by promptly rectifying inaccurate data, subject to the exercise of this right by the data subject himself.
- Limitation of storage – duration of processing
The data shall be kept in a form that ensures their identification for a period of time not exceeding the achievement of the purposes referred to in point 2, as well as in application of the relevant tax regulations.
- Integrity and confidentiality
In order to guarantee adequate security of the processed data, including its protection from unauthorised or unlawful processing or from accidental loss-destruction or damage, the following measures shall be implemented: backup of data stored in computer format; computer access traced by means of a username and password changed at regular intervals; use of licensed software programmes only; use of licensed antivirus software; paper-based data filing system accessible only by the persons formally designated to process the data; written presentation of the methods for accessing the data; access-controlled filing system for sensitive data.
- Modalities of data processing
- Data processing is carried out partly in paper form and partly in computer form and is carried out by means of the operations or set of operations of collection, recording, organisation, storage with the duration limits indicated above and subsequent filing in paper form and/or computer form with access and consultation only to those persons in charge of processing regulated in writing.
- The operations may be carried out with or without the aid of electronic or automated tools and all appropriate technical and organisational measures will be put in place in order to guarantee the security and protection of the data, such as access passwords to the data in the possession only of those in charge of processing (changed at least once a year) and system applications to prevent unauthorised third parties from accessing the databases.
- Archives containing sensitive data shall be protected by means of a key lock and only accessible by authorised persons, with a written record of each access.
- The persons who may access the premises outside closing hours shall be specifically identified and registered: the list may be requested from the Data Controller or the relevant appointee.
- Data processor ex art 29 GDPR
Data are processed within the entity by authorised data processors under the responsibility of the Data Controller for the purposes stated above.
- Data Processor ex art 28 GDPR
The data may be communicated to external Data Processors who have entered into specific agreements, conventions or protocols of understanding, contracts with the Data Controller.
The data may be communicated, merely by way of example, to the following categories of recipients: consultants, other suppliers and service providers (accountants, labour consultants, training consultants and certifiers, lawyers and legal consultants, system administrators, IT consultants, insurers and brokers), whose contact details may be requested from the Data Controller.
- Disclosure of data and provision of data
Please note that the provision of personal data is a legal or contractual obligation or a necessary requirement for the conclusion of a contract.
Failure to provide data will make it impossible for the person concerned to proceed with the completion of the procedure.
- Dissemination of data.
Personal data shall not be subject to dissemination, except as expressly authorised in the consent and to the extent strictly necessary for the activity referred to in point 2.
- Transfer of data abroad.
Personal data may be transferred to European Union countries and to countries outside the European Union within the scope of the purposes set forth in point 2, without being transferred to third parties.
- Rights of the data subject.
We wish to inform you that the EU Regulation 2016/679 and Legislative Decree 101 of 2018 to complete the General Data Protection Regulation give you specific rights to be exercised over your personal data, including the right to request from the Data Controller access to and rectification or erasure of your personal data or the right to restrict the processing of your personal data or the right to object on legitimate grounds to the processing of your personal data. The right to data portability, understood as the right to receive data concerning you in a structured, commonly used and machine-intelligible format and the right to transmit such data to another data controller without hindrance. The right to obtain direct transmission of personal data from the Data Controller to another Data Controller if technically feasible.
COOKIE POLICY
This Cookie Policy was last updated on 6 June 2024 and applies to citizens and legal permanent residents of the European Economic Area and Switzerland.
1. Introduction
Our website, https://www.grandhotelliberty.it (hereinafter: "the website") uses cookies and other related technologies (for convenience all technologies are referred to as "cookies"). Cookies are also placed by third parties we have engaged. In the document below we inform you about the use of cookies on our website.
2. What are cookies?
A cookie is a small simple file that is sent along with pages of this website and stored by your browser on the hard drive of your computer or another device. The information stored therein may be returned to our servers or to the servers of the relevant third parties during a subsequent visit.
3. What are scripts?
A script is a piece of program code that is used to make our website function properly and interactively. This code is executed on our server or on your device.
4. What is a web beacon?
A web beacon (or a pixel tag) is a small, invisible piece of text or image on a website that is used to monitor traffic on a website. In order to do this, various data about you is stored using web beacons.
5. Cookies
5.1 Technical or functional cookies
Some cookies ensure that certain parts of the website work properly and that your user preferences remain known. By placing functional cookies, we make it easier for you to visit our website. This way, you do not need to repeatedly enter the same information when visiting our website and, for example, the items remain in your shopping cart until you have paid. We may place these cookies without your consent.
5.2 Statistics cookies
We use statistics cookies to optimise the website experience for our users. With these statistics cookies we get insights in the usage of our website. We ask your permission to place statistics cookies.
5.3 Marketing/Tracking cookies
Marketing/Tracking cookies are cookies or any other form of local storage, used to create user profiles to display advertising or to track the user on this website or across several websites for similar marketing purposes.
5.4 Social media
On our website, we have included content from Facebook, WhatsApp and Instagram to promote web pages (e.g. “like”, “pin”) or share (e.g. “tweet”) on social networks like Facebook, WhatsApp and Instagram. This content is embedded with code derived from Facebook, WhatsApp and Instagram and places cookies. This content might store and process certain information for personalised advertising.
Please read the privacy statement of these social networks (which can change regularly) to read what they do with your (personal) data which they process using these cookies. The data that is retrieved is anonymised as much as possible. Facebook, WhatsApp and Instagram are located in the United States.
6. Placed cookies
7. Consent
When you visit our website for the first time, we will show you a pop-up with an explanation about cookies. As soon as you click on "Save preferences", you consent to us using the categories of cookies and plug-ins you selected in the pop-up, as described in this Cookie Policy. You can disable the use of cookies via your browser, but please note that our website may no longer work properly.
7.1 Manage your consent settings
8. Enabling/disabling and deleting cookies
You can use your internet browser to automatically or manually delete cookies. You can also specify that certain cookies may not be placed. Another option is to change the settings of your internet browser so that you receive a message each time a cookie is placed. For more information about these options, please refer to the instructions in the Help section of your browser.
Please note that our website may not work properly if all cookies are disabled. If you do delete the cookies in your browser, they will be placed again after your consent when you visit our website again.
9. Your rights with respect to personal data
You have the following rights with respect to your personal data:
- You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
- Right of access: You have the right to access your personal data that is known to us.
- Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
- If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
- Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
- Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.
To exercise these rights, please contact us. Please refer to the contact details at the bottom of this Cookie Policy. If you have a complaint about how we handle your data, we would like to hear from you, but you also have the right to submit a complaint to the supervisory authority (the Data Protection Authority).
10. Contact details
For questions and/or comments about our Cookie Policy and this statement, please contact us by using the following contact details:
Liberty s.r.l.
Viale Carducci, 3/5
38066 Riva del Garda (Tn)
Italy
Website: https://www.grandhotelliberty.it
Email: info@grandhotelliberty.it
Phone number: +39 0464.553581
This Cookie Policy was synchronised with cookiedatabase.org on 16 October 2023.