PRIVACY POLICY
Dear User, thank you for visiting our site.
In the following pages, we describe how the site is managed with regard to the processing of the personal data of users who consult it.
WHY THIS NOTICE
This notice is also provided pursuant to art. 13 of Legislative Decree no. 196/03 (Personal Data Protection Code) to those who interact with the web services directly provided by Hotel Rose & Crown S.r.l.s, accessible telematically from the address: www.hotelrosecrown.it corresponding to the home page of the above mentioned site of Hotel Rose & Crown S.r.l.s.
The information is provided for the Hotel Rose & Crown S.r.l.s. website and not for any other websites that the user may consult through links. This information is based on recommendation no. 2/2001 that the European authorities for the protection of personal data, brought together in the Group established by art. 29 of directive no. 95/46/CE, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data online, and, in particular, the methods, times and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection. We therefore invite you to read our Privacy Policy, set out below.
The Privacy Policy and Standards used by Hotel Rose & Crown S.r.l.s for the protection of personal data are based on the following principles:
Data Controller
The data controller as specified below is Hotel Rose & Crown S.r.l.s, with registered office in Via Fosdondo, 80 - 42015 Fosdondo di Correggio - Reggio Emilia (RE) Italy.
PRINCIPLE OF RESPONSIBILITY
The processing of personal data is managed over time by managers identified within the company organisation.
PRINCIPLE OF TRANSPARENCY
Personal data are collected and subsequently processed according to the principles expressed by the Privacy Policy adopted by Hotel Rose & Crown S.r.l.s indicated in this Privacy Policy. At the moment of the eventual conferral of data, the interested party is provided with a brief but complete information notice, in accordance with the provisions of art. 13 of Legislative Decree no. 196/03.
PRINCIPLE OF RELEVANCE OF THE COLLECTION
Personal data shall be processed lawfully and fairly; they shall be recorded for
specified, explicit and legitimate purposes; they shall be relevant and not exceed the purposes of processing; they shall be kept for the time necessary for the purposes of collection.
PRINCIPLE OF PURPOSE OF USE
The purposes of personal data processing are made known to the data subjects at the time of collection. Any new processing of data, if unrelated to the stated purposes, is activated subject to new information being provided to the data subject and any request for consent, when required by Legislative Decree no. 196/03. In any case, personal data shall not be disclosed to third parties or disseminated without the prior consent of the data subject, except in the cases expressly indicated in Article 24 of Legislative Decree no. 196/03.
PRINCIPLE OF VERIFIABILITY
Personal data are accurate and updated over time. They are also organised and stored in such a way as to allow the person concerned to know, if he/she so wishes, which data have been collected and recorded, as well as to check their quality and request their correction, integration, cancellation due to violation of the law or opposition to their processing and to exercise all other rights, under and within the limits of art. 7 of Legislative Decree no. 196/03, at the addresses indicated in the Information notes under art. 13 of Legislative Decree no. 196/03 present on the Hotel Rose & Crown S.r.l.s. website.
SECURITY PRINCIPLE
Personal data are protected by technical, IT, organisational, logistical and procedural security measures against the risks of destruction or loss, even accidental, and against unauthorised access or unauthorised processing.
These measures are updated periodically on the basis of technical progress, the nature of the data and the specific characteristics of the processing, and are constantly monitored and verified over time. Third parties who perform support activities of any kind for the provision of services by Hotel Rose & Crown S.r.l.s, in relation to which they carry out personal data processing operations, are designated by the latter as Data Processors and are contractually bound to comply with the measures for the security and confidentiality of processing. The identity of these third parties is made known to users. In some cases the employees of third party companies that collaborate with Hotel Rose & Crown S.r.l.s may be in charge of the processing if the processing operations take place under the direct authority of Hotel Rose & Crown S.r.l.s. With the consent of the interested parties, if required by law, and in any case subject to adequate information specifying the various purposes, personal data may be communicated to third parties, public and private, unrelated to Hotel Rose & Crown S.r.l.s, who will process them as autonomous data controllers,
according to the definition contained in Legislative Decree no. 196/03. Hotel Rose & Crown S.r.l.s is in no way responsible for the processing of personal data carried out by said third-party data controllers.
Hotel Rose & Crown S.r.l.s also assumes no responsibility for
the rules and methods of handling personal data of other websites that can be reached from our pages through links and cross-references;
the contents of any e-mail services, web spaces, and chat forums provided to users.
The processing operations connected to the web services offered by this site take place at the offices of Hotel Rose & Crown S.r.l.s located in Via Fosdondo, 80 - 42015 Fosdondo di Correggio - Reggio Emilia (RE) Italy, and possibly at the offices of external data processors and are carried out by persons in charge of processing who are responsible for managing the services requested, marketing activities - where requested by the user - data storage and occasional maintenance operations.
SCOPE OF DATA COMMUNICATION
The personal data provided may be communicated to third parties in order to comply with legal obligations, in execution of orders from public authorities legitimated to do so, or to assert or defend a right in court. If necessary in relation to particular services or products requested, personal data may be communicated to third parties who carry out, as autonomous data controllers, functions strictly connected and instrumental to the provision of services or supply of products. Without the communication, these services and products could not be provided. Personal data will not be disclosed, unless the service requested requires it.
TYPES OF DATA COLLECTED AND PROCESSING METHODS
It is good for you to know that, through your navigation of the Hotel Rose & Crown S.r.l.s site, your professional and personal interests may be detected: this information, however, is collected for the sole and exclusive purpose of providing the services requested and possibly to control the quality of the services offered.
DATA PROVIDED VOLUNTARILY BY THE USER
The types of personal data collected and processed on Hotel Rose & Crown S.r.l.s website are those necessary for the provision of the various services provided. The data collected is processed using paper, automated and telematic methods and with logic strictly related to the purposes of processing. To provide you with the services, your fax and landline telephone numbers and your e-mail address may also be used. It is therefore obvious that should these data not be provided, those services requiring the use of these tools cannot be provided to you. If you do not consent to the use of e-mail, landline mobile telephone and fax for advertising or direct sales information or interactive commercial communication, these tools will not be used for this purpose. Specific information will be provided on
the pages of the site set up for the possible conferment of personal data. Any voluntary sending of electronic mail to the addresses indicated on the site entails the acquisition of the sender's address as well as any other information contained in the message; such personal data will be used solely to perform the service or provision requested.
NAVIGATION DATA
It is useful to know that the site's software procedures acquire, in the course of their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. Although this information is not intended to be associated with identified users, by its nature, if it is associated with other data held by third parties (e.g. your internet service provider), it could allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by the users who connect to the site, the addresses in URL (Uniform Resource Locator) notation of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user's operating system and computer environment. These data are used solely for the purpose of anonymous statistics on the use of the site and to check its correct operation. The Data Controller and, depending on the service requested, the designated Managers keep, for a limited period of time in accordance with the law, the trace (LOG) of the connections/navigations made in order to respond to any requests from the judicial authorities or other public body legitimated to request said trace for the purpose of ascertaining any liability in the event of computer crimes. Apart from what is specified for navigation data, the user is free to provide or not to provide the personal data requested in the registration form for services. On this form, however, some data may be marked as mandatory; it must be understood that this data is necessary for the provision of the requested service. If this data is not provided, the requested service cannot be provided and you will not be able to take advantage of the associated opportunities.
At the moment of the eventual conferment of the data, according to the provisions of art. 13 of Legislative Decree no. 196/03, the interested party is provided with a brief but complete informative note on the purposes and methods of processing, on the compulsory or optional nature of the conferment of the data, on the consequences of failure to confer the data, on the subjects or categories of subjects to whom the personal data may be communicated and the scope of dissemination of the data, on the rights under art. 7 of Legislative Decree no. 196/03 (access, integration, updating, correction, deletion for violation of the law, objection to processing, etc.), the identity and location of the data controller and data processor(s). The data subject is therefore called upon to give his or her informed, free consent, expressed
in a specific form and documented in the form provided for by law, where required by the same. If personal data are provided at later stages, additions may be made to the information previously provided and new processing consents required by the Code.
SECURITY MEASURES ADOPTED TO PROTECT COLLECTED DATA
Hotel Rose & Crown S.r.l.s uses "secure" architectures and technologies to protect personal data against undue disclosure, alteration or improper use. The protections activated with regard to personal data are aimed, in particular, at minimising the risks of destruction or loss, even accidental, of data, unauthorised access or processing that is not permitted or does not conform to the purposes of collection. These security measures obviously meet the minimum requirements indicated by the legislator (Technical Regulations on minimum security measures in Articles 33 to 36 of Legislative Decree No. 196/03). The persons to whom the personal data refer have the right at any time to obtain confirmation of the existence or non-existence of such data and to know their content and origin, verify their accuracy or request their integration or update, or rectification (Article 7 of Legislative Decree No. 196/03). Under the same article, the interested party has the right to request the cancellation, transformation into an anonymous form or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, their processing.
Requests should be addressed to the e-mail address info@hotelrosecrown.it at Via Fosdondo, 80 - 42015 Fosdondo di Correggio - Reggio Emilia (RE) Italy P.iva 03036370355.
Last updated 1 January 2023