Privacy Policy En
This privacy notice is provided in compliance with Article 13 of Regulation 2016/679 (GDPR), pursuant to Article 13 of Legislative Decree No. 196/2003 (Personal Data Protection Code), and applies to all personal data processed as described below.
Data ControllerThe Data Controller of the Personal Data collected is: VILLA IL PETRICCIO SRL SEMPLIFICATA
Operating address: VIA ORME 307
50025 – MONTESPERTOLI (FI)
Email address of the Data Controller: info@villailpetriccio.com
Types of Data CollectedComplete details on each type of data collected are provided in the relevant sections of this privacy policy. Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during site usage. Unless otherwise specified, all data requested is mandatory. If the User refuses to provide the data, it may be impossible to provide the Service. In cases where some data is optional, Users are free not to communicate such data without affecting the Service’s availability or functionality. Users uncertain about which data is mandatory are encouraged to contact the Data Controller.
The use of Cookies or other tracking tools by the site or by third-party service owners, unless otherwise stated, is intended to provide the Service requested by the User. The User assumes responsibility for the Personal Data of third parties obtained, published, or shared through the site and guarantees to have the right to communicate or disclose it, releasing the Data Controller from any responsibility towards third parties.
METHODS AND PLACE OF DATA PROCESSINGPurposes of Data ProcessingThe User’s data is collected to allow the Data Controller to provide its Services, as well as for the following purposes: Statistics, Newsletters, Personalized Advertising, Accounting, Content and Feature Performance Testing, Interaction with Social Networks and External Platforms, Display of Content from External Platforms, and Interaction with Data Collection Platforms and Other Third Parties.
To obtain more detailed information on the purposes of the processing and on the Personal Data specifically relevant for each purpose, the User can refer to the relevant sections of this document.
Processing MethodsThe Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of Personal Data. Processing is carried out using IT and/or telematic tools, with organizational methods and logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization of the site (administrative, commercial, marketing, legal staff, or system administrators) or external entities (such as third-party technical service providers, mail carriers, hosting providers, IT companies, communication agencies) may have access to the data, if necessary, as Data Processors appointed by the Data Controller.
An updated list of these parties can always be requested from the Data Controller.
Legal Basis for Processing- The User has given consent for one or more specific purposes;
- The processing is necessary for the execution of a contract with the User and/or for any pre-contractual obligations;
- The processing is necessary to comply with a legal obligation to which the Data Controller is subject;
- The processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
- The processing is necessary for the purposes of the legitimate interests pursued by the Data Controller or by a third party.
It is always possible to ask the Data Controller to clarify the specific legal basis for each processing activity and, in particular, to specify whether the processing is based on the law, required by a contract, or necessary to conclude a contract.
PlaceData is processed at the operational headquarters of the Data Controller and in any other locations where the parties involved in the processing are located. For further information, contact the Data Controller.
The User’s Personal Data may be transferred to a country other than the one where the User is located. To obtain further information about the place of processing, the User can refer to the section containing details about the processing of Personal Data.
The User is entitled to obtain information about the legal basis for Data transfer outside the European Union or to an international organization governed by public international law or set up by two or more countries, such as the UN, as well as about the security measures adopted by the Data Controller to safeguard their data.
If any such transfer takes place, the User can refer to the relevant sections of this document or inquire with the Data Controller by using the contact details provided in the opening section.
Retention PeriodData is processed and stored for as long as required by the purpose for which it has been collected:
- Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until such contract has been fully performed.
- Personal Data collected for the purposes of the legitimate interests of the Data Controller will be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Data Controller in the relevant sections of this document or by contacting the Data Controller.
When the processing is based on the User’s consent, the Data Controller may retain Personal Data for a longer period until such consent is withdrawn. Furthermore, the Data Controller may be obliged to retain Personal Data for a longer period in compliance with a legal obligation or by order of an authority.
At the end of the retention period, Personal Data will be deleted. Therefore, after the expiration of such a period, the right to access, deletion, rectification, and the right to data portability can no longer be exercised.