This document describes the methods for processing the personal data of users visiting the website of Hotel Villa Maria (hereinafter also referred to as "Hotel" or "we"), which can be reached at the web address associated with the domain of the official website, https://villamariadesenzano.it.
1. Data controller
The data controller is:
Truly Italy S.r.l.
Via Milano, 79 37014 Castelnuovo del Garda (VR)
info@trulyitaly.com
VAT No: IT04415960238
2. Types of data collected
Through the site, they may be collected:
- Navigation data (e.g. IP address, browser type, access time)
- Data provided voluntarily by the user (e.g. filling in the contact form, email)
- Reservation datacollected through a external webapp (part three) of booking.
3. Purpose of processing
The data are processed for:
- responding to requests sent via forms or email;
- provide information on our services;
- manage bookings, via an external platform;
- ensure the security of the site;
- fulfil legal obligations.
4. Legal basis of processing
The treatment is based on:
- the consent of the person concerned (e.g. via a form);
- the execution of pre-contractual or contractual measures (bookings);
- the fulfilment of legal obligations;
- the legitimate interest of the holder (for security and fraud prevention).
5. Data recipients
Data may be disclosed to external parties such as:
- IT service and hosting providers;
- provider of the booking platform;
- consultants or professionals appointed by the owner;
- judicial or administrative authorities in cases provided for by law.
6. Extra-EU data transfer
Any transfer of data outside the European Union, where necessary (e.g. booking service), will take place in compliance with the guarantees provided by the GDPR.
7. Data retention
The data will be stored:
- for the time strictly necessary for the purposes indicated;
- for any legal or tax obligations.
8. User rights
The user has the right to:
- access their data;
- request rectification or cancellation;
- oppose or restrict processing;
- withdraw consent at any time;
- file a complaint with theData Protection Authority (www.garanteprivacy.it).
9. Data Security
We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss or misuse.
10. Amendments to this policy
This notice may be subject to change. Updated versions will be published on this page with the revision date.