Privacy policy

Information drawn up pursuant to art. 13 of Regulation (EU) 2016/679 "GDPR"

Dear Customer,

We invite you to carefully read our Privacy Policy, which applies in all cases in which you access the site www.apollohotel.it (hereinafter the "Site") and decide to navigate within it and use its services.

This document is intended to provide the necessary information regarding the processing of personal data (hereinafter also "data") freely released by you; in particular with regard to the purposes and methods of processing your personal data, as well as the scope of communication and dissemination of the same, the nature of the data in our possession, the retention period and the rights reserved to you.

The information is not to be considered valid for other websites that may be consulted via links on the website of the Data Controller, which is not to be held responsible in any way for third-party websites.

Summary

  • Data controller: 2
  • Object of the treatment: 2
  • Methods and storage of your data: 2
  • Purpose of the processing and legal basis of the processing: 2
  • Optional or mandatory nature of the provision of data; need for consent and consequences of lack of consent: 3
  • Subjects or categories of subjects to whom your data may be communicated: 3
  • Subjects who can process your personal data: 3
  • Security measures: 4
  • The rights of the interested parties: 4
  • Contacts for exercising the rights of the data subject: 4
  • Changes and updates to this Privacy Policy: 4

Data controller

The Data Controller of the data collected through this Site is the company Casadei Edoardo & Christian Snc, VAT number 01760260404, with headquarters in Via Domenico Spina n. 3 – 47922 Viserbella di Rimini (RN), (hereinafter referred to as "The Data Controller"): the Data Controller independently decides on the purposes and methods of data processing, as well as on the security procedures to be applied to guarantee confidentiality, integrity and availability.

Object of the treatment

The Data Controller processes personal, identifying and non-sensitive data (in particular, name, surname, e-mail, telephone number - hereinafter, "personal data" or even "data") communicated by you when requesting information and / or to be able to use the newsletter / marketing services offered by the Owner.

Navigation data may also be processed, personal data whose transmission is implicit in the use of Internet communication protocols (such as IP addresses, browser type, operating system, domain name and website addresses from which the login or logout, page information visited by users within the Site, access time, permanence on a single page, analysis of the internal path and other parameters relating to the operating system and the user's IT environment), acquired from the IT systems and software procedures responsible for operation of the Owner's website. In this regard, the Website uses cookies that collect your personal data. We invite you to read the Cookie Policy which describes the cookies used by the Site and the purposes of their use.

Methods and storage of your data

The processing of your personal data is carried out by means of the operations indicated in art. 4 no. 2) of Regulation (EU) 2016/679 and in compliance with the principles of lawfulness, correctness and transparency and the other principles indicated in art. 5 of Regulation (EU) 2016/679.

The Data Controller will process your data for service or pre-contractual purposes for the time necessary to fulfill the purposes of the processing. Data for newsletter/marketing purposes, where your explicit consent has been given, will be kept for the time necessary to pursue the purposes of the processing or in lesser terms, if you withdraw your consent.

Purpose of the processing and legal basis of the processing

Personal data voluntarily provided will be processed for the following purposes:

1) for navigation on this Website;

1.1) – for the use of the services offered and to receive answers to your requests;

1.2) – for the possible compilation of data collection fields in dedicated areas;

1.3) – to fulfill the obligations established by the Law, by a Regulation, by community legislation or by an order of the Authority;

1.4) – to prevent or detect fraudulent activity or abuse harmful to the website;

1.5) – to exercise the rights of the Owner, for example the right of defense in court.

The legal basis of the processing for the purposes referred to in point 1) above is: the processing of data is necessary to allow correct navigation on the Website and for the execution of pre-contractual measures adopted at the request of the interested party (e.g. responding to your requests by filling in the appropriate forms), to fulfill a legal obligation to which the Data Controller is subject and, finally, for the pursuit of the legitimate interest of the Data Controller (e.g. exercising the right of defense in court or preventing fraudulent activities).

2): subject to your explicit consent for any subscription to the newsletter service, to receive promotional and commercial communication e-mails and/or for other direct marketing activities in order to receive by automated means (e-mail, traditional mail or other means of communication) promotional, commercial and/or advertising information material relating to the services offered, as well as commercial initiatives, which will be organized by the Owner.

The legal basis of the processing for the purposes referred to in point 2) is: the processing of data is lawful only if the interested party has given his consent.

Optional or mandatory nature of the provision of data; need for consent and consequences of non-consent

Apart from that specified for navigation data, you are free to provide your personal data.

The provision of personal data for the purposes referred to in point 1) is optional but necessary to use the services requested from time to time to the Data Controller and to use the specific features of the Site. Failure to provide them may make it impossible to obtain what is requested or to use the services of the Data Controller.

Consent to the processing of data for purposes 2) – i.e. for promotional, commercial communication and/or marketing purposes in general is always optional. Failing that, the Data Controller will still be able to provide the services referred to in point 1) and you will still be able to complete the other requests and use the services rendered by the Data Controller - point 1) (e.g. send a contact request, use other services, etc.). You can therefore decide not to provide any data or to subsequently and at any time revoke the possibility of processing data already provided but the revocation will not affect the lawfulness of the treatment based on the consent before the revocation.

Subjects or categories of subjects to whom your data may be communicated

Your data will be communicated to third parties only with your express consent, except in cases where the communication is mandatory by law or is necessary for purposes established by law for the pursuit of which the consent of the interested party is not required; in such cases, the data may be made available to third parties who will process them independently and solely for the aforementioned purposes (for example, in the case of a request made by the police force or the judiciary or other competent bodies or to fulfill obligations deriving from from the contract concluded with you). Your data will not be in any way.

Subjects who can process your personal data

The Data Controller may make use of third parties for the processing of your personal data, to carry out certain activities. The third parties who carry out these operations have been adequately selected and are endowed with experience, ability, reliability and offer a suitable guarantee of full compliance with the current provisions on processing, including data security.

These third parties will be appointed "Data Processors" and will carry out their activity according to the instructions given by the Data Controller and under its direct control. The updated list of Managers can be requested from the Data Controller. Your data will also be processed by persons authorized by the Data Controller to carry out activities strictly related to the provision of the services or to the other aforementioned purposes, who are suitably trained and are committed to confidentiality (e.g. the employees of the Data Controller).

Security measures

The Data Controller adopts adequate security measures in order to minimize the risk of destruction or loss - even accidental - of data, unauthorized access or processing that is not permitted or does not comply with the collection purposes indicated in this Privacy Policy.

The rights of the interested parties

The (EU) Regulation 2016/679 "GDPR" recognizes the interested party the possibility of exercising the following rights:

  • Right of access to collected and processed data (art. 15)
  • Right to obtain data rectification (art. 16)
  • Right to obtain the cancellation of data and right to be forgotten (Article 17)
  • Right to obtain the limitation of treatment (art. 18)
  • Right to data portability to another Data Controller (art. 20)
  • Right to object to processing (Article 21)
  • Right not to be subject to automated processing (art. 22)
  • Right to lodge a complaint with the Supervisory Authority (art. 77);
  • Right to lodge a judicial appeal against the supervisory authority (art. 78) and in
  • towards the Data Controller and/or data processor (art. 79);
  • Right to withdraw consent at any time (Article 7 paragraph 3), without prejudice to lawfulness of the treatment based on the consent given before the revocation.

In the event of a violation of the data subject's personal data, taking into account the provisions of art. 34 GDPR, the Data Controller will notify the interested party of the violation.

Contacts for the exercise of the rights of the interested party

You may exercise your rights at any time by sending a registered letter with return receipt to Hotel Apollo, Via Domenico Spina n. 3 – 47922 Viserbella di Rimini (RN) or an e-mail to the address: info@apollohotel.it

This Site and the Owner's Services are not intended for minors under the age of 16 and the Owner does not intentionally collect personal information relating to minors. In the event that information on minors is involuntarily recorded, the Data Controller will promptly delete it, at the request of the users.

Changes and updates to this Privacy Policy

The Data Controller may modify or simply update, in whole or in part, the site's Privacy Policy, also in consideration of the modification of the laws or regulations that govern this matter and protect your rights. Changes and updates to the Privacy Policy will be binding as soon as they are adopted and published on the website.