This page describes how to manage the site www.grandhotelflora.com, in relation to the processing of personal data of users who consult it.
This information is provided pursuant to art. 13 of the Legislative Decree no. N. 196/2003 – Code on the Protection of Personal Data – to those who access our site and using the services contained therein.
This information has been prepared taking into account the principles set out in Recommendation no. 2/2001 that the European Authorities for the protection of personal data gathered by the Group established from arti. 29 of the directive no. 95/46/CE, adopted on May 17th 2001 to establish minimum requirements for collecting personal data on-line, and, in particular, the manner, timing and nature of the information that the bearers must provide to users when they connect to web pages, regardless of the purpose of the link.
The information contained in this disclosure relates only to treatments performed by the Grand Hotel Flora and not to those made by the Company or persons whose links can be found on the website.
The Grand Hotel Flora, therefore, only guarantees the correctness and legality of their behavior.
Following consultation of this site data on persons may be processed, natural or legal persons identified or identifiable.
The Data Controller is the Grand Hotel Flora which is based in Sorrento (Naples) in Corso Italia no. 248-80067.
MANAGER OF TREATMENT
The Responsible is, for the Grand Hotel Flora, Mr. Francesco Mascolo, domiciled in Sorrento (Naples) in Corso Italia no. 248-80067 and formally charged under art. 29 of the Law on Protection of Personal Data.
Under art. 29 of the Law on Protection of Personal Data, are also designated as Managers in outsourcing of data processing, the following companies:
Virtual Trends Ltd, as responsible for the maintenance of the technological part of the site;
QNT Ltd, as the Internet Service Provider, Software Provider “Simple Booking” and charged to manage the online reservation system.
PLACE OF DATA PROCESSING
The treatments related to the web services of this website take place at the offices of the Grand Hotel Flora and are only handled by staff of the Hotel, formally assigned to treatment.
The data related to the service “Testimonials” and/or “Newsletter” may also be processed by staff of the company that takes care of the maintenance of the technological part of the site, Virtual Trends Ltd (Head of Data Processing Outsourcing) at the headquarters of the company itself and/or by consulting the data stored on your server.
The data related to the service of online booking can be treated by the staff of the company that manages the system “Simple Booking” QNT Ltd (Head of Data Processing Outsourcing) at the headquarters of the company itself and/or by consulting the data stored on your server.
The personal data provided by users who request dispatch of informative material will also be used only to perform the service or provision requested and will not be disclosed to third parties in any way.
SECURITY OF DATA PROCESSED
The personal data to be processed are stored in such a way as to reduce to a minimum, through the adoption of suitable and preventative security measures, the risks of destruction or loss, even accidental, of data, unauthorized access or treatment not allowed or inconsistent with the purposes of the collection as outlined above.
TYPES OF DATA PROCESSED
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of the Internet.
This information is not collected to be associated with identified, but by their very nature could, through processing and association with data held by third parties, allow users to be identified.
This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the reply given by the server (successful, error, etc..) and other parameters regarding the operating system and computer environment.
These data are used only to obtain anonymous statistics on site usage and to check its correct functioning and are deleted immediately after processing.
The data could be used to ascertain responsibility in case of hypothetical computer crimes against the site: except for this possibility, at present data concerning web contacts do not persist for more than seven days.
Data provided voluntarily by the user
The user data are collected in different parts of the portal by filling in specific forms.
Collecting data from users, even in the case where the same will make use of e-mail addresses on the portal, for us. In such a case the information received (including the same email address) will be used only to meet, where possible, the requests that have been submitted.
Specific summary information will be progressively reported or displayed on web pages dedicated to particular services on request.
Data in the form
The site includes various forms of collected data of the user.
Each form is intended to allow the user to access specific services. To learn about the purposes and methods of data processing, users are encouraged to read the special information contained in the various forms in full compliance with the instructions issued by the Guarantors in accordance with European and national legislation.
Users are asked to pay particular attention to consent, remembering that the consents delivered may possibly always and at any time be revoked by the same users, using the email firstname.lastname@example.org, indicating in the object of email “Ref. Privacy.”
No personal data concerning users are acquired by the website.
The use of so called session cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed) is strictly limited to transmitting session identifiers (consisting of random numbers generated by the server) necessary to consent the secure and efficient site exploration.
The so called session cookies used in this site avoid recourse to other IT techniques potentially prejudicial to the privacy of users browsing and do not allow acquisition of personal identification data.
OPTIONALITY OF DATA ASSIGNMENT
Apart from that specified for navigation data, the user is free to provide personal data contained in the various “forms” on the site and/or using the email setup available.
The conferment of data is never mandatory but may be necessary to enable the use of certain services.
MODALITY OF DATA TREATMENT
Personal data are processed by automated tools for the time strictly necessary to achieve the purposes for which they were collected.
Specific security measures are observed to prevent the loss of data, illicit or incorrect use and unauthorized access.
DATA SUBJECTS’ RIGHTS
The subjects to whom the personal data refer have the right at any time to exercise all the rights indicated in art. 7 of the Legislative Decree 196/2003 by contacting the Grand Hotel Flora to the email address email@example.com with the subject “Ref. Privacy. “
The Grand Hotel Flora is happy to respond to any requests that are received to meet the privacy rights of its users. The same email can also be used for sending suggestions that the Grand Hotel Flora will be pleased to welcome to improve the quality of their site.
For the sake of clarity it gives, in full, the provisions of this article.
Art. 7 – Right of access to personal data and other rights
1. You have the right to obtain confirmation of the existence or not of personal data concerning you, even if not yet recorded, and their communication in intelligible form.
2.You have the right to obtain the indication:
a) the origin of personal data;
b) the purposes and methods of treatment;
c) the logic applied in case of treatment with the aid of electronic instruments;
d) the identity of the owner, manager and the representative appointed under article 5, paragraph 2;
e) the subjects or categories of subjects to whom the personal data may be communicated to or who can learn about them as appointed representative in the State, managers or agents.
3. The interested party has the right to:
a) the updating, correction or, when interested, integration of data;
b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
c) certification that the operations in letters a) and b) have been notified, as also related to their contents, to those to whom the data were communicated or distributed, except in the case where this proves to be impossible or involves the use of means manifestly disproportionate to the protected right.
4. The interested party has the right to object, in whole or partially:
a) for legitimate reasons of the processing of personal data, pertinent for collection purposes;
b) to the processing of personal data concerning him for purposes of sending advertising materials or direct selling or for carrying out market research or commercial communication.
For the purposes of this Article shall have the right to request cancellation, transformation into anonymous form or blocking of the data processed in violation of the law, and oppose any case, for legitimate reasons, to their treatment.
Requests should be addressed:
– via e-mail, to the address: firstname.lastname@example.org
– via fax to the number: +39 081. 8072485
– via mail, to the address: Grand Hotel Flora S.r.l. – Corso Italia, 248 – Sorrento (NA)