This information does not apply to other sites, pages or online services accessible via hypertext links that may be published on the sites but referring to resources external to the domain of the Owner.
The information is provided only for this site, and not for other websites that may be consulted by the user through links. The information is also inspired by the Recommendation n. 2/2001 that the European authorities for the protection of personal data, gathered in the Group established by art. 29 of the directive n. 95/46 / EC, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data online, and, in particular, the methods, timing and nature of the information that the data controllers must provide to the users when they connect to web pages, regardless of the purpose of the link.
The data controller
Following consultation of this site, data relating to identified or identifiable persons may be processed.
The “owner” of their processing is “HOSTAL DON CARLOS, C.B. – C /. Malgrats 20-22 – 01160 Peguera – Calvia (Balearic Islands)” email email@example.com
The Data Protection Officer
The Data Protection Officer (RPD) is Salvatore Mastropasqua reachable at the following email address: firstname.lastname@example.org
Legal basis of the processing
The personal data indicated on this page are processed by HOSTAL DON CARLOS, C.B. for carrying out their activities. Consent, execution of a contract, fulfillment of a legal obligation and the pursuit of a legitimate interest are the legal bases that, depending on the data processing carried out on the aforementioned website, will be prosecuted.
Place of data processing
The treatments connected to the web services of this site are based in Spain and are handled by the staff of “HOSTAL DON CARLOS, C.B.”, during the updating and maintenance operations. No data deriving from the web service is disseminated. Personal data provided voluntarily by users who submit contact requests are used only to perform the service or the requested service, even if necessary through external service providers.
Types of data processed and processing purposes
The computer systems and software procedures used to operate this site acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.
This category of data includes IP addresses or domain names of computers and terminals used by users, addresses in URI / URL notation (Uniform Resource Identifier / Locator) of the requested resources, the time of the request, the method used in the submit the request to the server, the file size obtained in response, the numerical code indicating the status of the response given by the server (success, error, etc.) and other parameters relating to the operating system and the user’s computer environment.
These data, necessary for the use of web services, are also processed for the purpose of:
• Obtain statistical information on the use of services (most visited pages, number of visitors per hour or day, geographical areas of origin, etc.);
• Check the correct functioning of the services offered.
Data communicated by the user
The optional, explicit and voluntary sending of messages to the contact address in the forms, as well as the compilation and forwarding of the present forms, involve the acquisition of the sender’s contact data, necessary to reply, as well as all the data personal data included in communications.
Specific information will be published on the site page prepared for the provision of certain services.
Cookies and other tracking systems
Instead, session cookies (non-persistent) are used strictly limited to what is necessary for the safe and efficient browsing of the sites. The storage of session cookies in the terminals or browsers is under the control of the user, where on the servers, at the end of the HTTPS sessions, information relating to cookies remain recorded in the service logs, with retention times of each individual third party operator of the service.
Data provided voluntarily by the user
The optional, explicit and voluntary sending of data entered in the forms of data collection (form), or sending emails to the email addresses indicated on this site involves the subsequent acquisition of the sender’s address, necessary to respond to the requests, as well as any other personal data included in the message. It is specified that the personal and / or business data included in the forms on the sites are used to respond to user questions, to provide the requested information and services.
Method of treatment
Personal data are processed with automated tools for the time strictly necessary to achieve the purposes for which they were collected.
Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access. We inform you that, to provide a complete service, there are links to other websites operated by other owners. We decline any responsibility in case of errors, contents, cookies, publications of immoral illicit content, advertising, banners or files not compliant with current regulations and compliance with the Privacy legislation by sites that we do not manage to which we refer.
Recipients of the data
It is the recipient of the data collected following the consultation of the site, pursuant to Article 28 of the Regulations, as the person responsible for processing Pensare web srl, as a provider of web hosting services.
Data transfer abroad
Third Countries: The communication services present on the site may use external suppliers located in non-EU countries, in particular in the USA. For these suppliers, it was verified that the contractual clauses provide for compliance with the Privacy Shield agreements.
Rights of the interested parties
You have the right to obtain from the holder the cancellation (possible right to be forgotten), limitation, updating, rectification, portability, opposition to the processing of personal data concerning you, and in general can exercise all the rights provided for by the articles 15, 16, 17, 18, 19, 20, 21, 22 of the GDPR, where applicable with respect to the data processing purposes.
EU Reg. 2016/679: Articles 15, 16, 17, 18, 19, 20, 21, 22 –
1. The interested party has the right to obtain confirmation of the existence or not of personal data concerning him / her, even if not yet registered, and their communication in intelligible form.
2. The interested party has the right to obtain the indication:
a. of the origin of personal data;
b. the purposes and methods of processing;
c. of the logic applied in case of treatment carried out with the aid of electronic instruments;
d. of the identifying details of the holder, of the responsibles and of the designated representative according to article 5, paragraph 2;
e. of the subjects or the categories of subjects to whom the personal data may be communicated or who can learn about them as appointed representative in the territory of the State, managers or agents.
3. The interested party has the right to obtain:
a. updating, rectification or, when interested, integration of data;
b. the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed;
c. the attestation that the operations referred to in letters a) and b) have been brought to the attention, also with regard to their content, of those to whom the data have been communicated or disseminated, except in the case in which this fulfillment proves impossible o involves a use of means manifestly disproportionate to the protected right;
d. data portability.
4. The interested party has the right to object, in whole or in part:
a. on legitimate grounds, to the processing of personal data concerning him / her, even though they are relevant to the purpose of the collection;
b. to the processing of personal data concerning him for the purpose of sending advertising or direct sales material or for carrying out market research or commercial communication.
Interested parties who believe that the processing of personal data reported to them through this site is in violation of the provisions of the Regulation have the right to lodge a complaint with the Guarantor, as required by art. 77 of the Regulation itself, or to take appropriate judicial offices (Article 79 of the Rules).