With this policy the data controller, as defined below, wishes to explain to you how to manage the website, indicating the purposes for which it collects and process Your personal data, the categories of personal data that are the subject of processing and also Your Rights. The information is made available only for this website and not for other Web pages that may be consulted by the user through links.
The data controller of Your personal data is MY NAME S.R.L. responsible for the legitimate and correct use of Your personal data and that you may contact for any information or request at the following addresses:
Data Controller: MYNAME SRL
Seat: Via dei Berio, 91/97 – 00155 Roma RM, IT
Contacts and addresses:
Your personal data are collected and processed for the purposes listed below, with the clarification of the typology of the data processed and of the reason legitimating the processing (legal basis):
|Purposes||Data Processed||Legal Basis|
|Customer Management||Tax code and other personal identification numbers; Name, address or other personal identifying particulars; Contact details (phone number, e-mail, etc.); bank details; Sex m/f||The processing of so-called common data shall be carried out to the extent that it is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract art. 6, par. 1, lit. b) Reg. EU 2016/679.|
|Tourist and recreational activities||Tax code and other personal identification numbers; Name, address or other personal identifying particulars; Contact details (phone number, e-mail, etc.); bank details; Sex m/f||The processing of so-called common data shall be carried out to the extent that it is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract art. 6, par. 1, lit. b) Reg. EU 2016/679.|
|Sending of informative and/or advertising material by phone or internet, also for direct sale of own products or services purpose, (direct marketing).||Tax code and other personal identification numbers; Name, address or other personal identifying particulars; Contact details (phone number, e-mail, etc.); bank details; Sex m/f||processing is necessary for the purposes of the legitimate interests pursued by the controller — The data controller uses, for direct sale of its products or services purposes, the e-mail details provided by the person concerned in the context of the sale of a product or service, and may not require Consent of the person concerned, provided that such services are similar to those covered by the sale and the person concerned did not object it. Provvedimento Autorità Garante (Registro dei Provvedimenti n. 330 del 4/06/2013).|
The conferral of the data processed for the management of its contractual relationship and of the services related to the tourist and recreational activities is necessary for the fulfilment to ensure the performances provided therein. Apart from what is specified for the navigation data, the user is free to provide personal information to make an online reservation. Refusal to provide such data, for the above-mentioned purpose, will result in the impossibility for the data controller to follow the contract and to carry out the instrumental activities in achieving the objectives. Personal information on bookings will be processed in electronic and paper mode in order to guarantee the reservation of the room and the agreed conditions. The data will be recorded within the controller’s electronic databases accessible to staff properly instructed in the field of security and confidentiality of personal data.
The Data Controller may process his data for the dispatch of commercial communications and/or promotional initiatives for the purpose of the direct offer of products and/or services similar to those which you have already subscribed. The controller will carry out this activity in accordance with the principles of GDPR pursuing its own legitimate interest. In this case, the person receiving the first message of a promotional nature, will be able to unsubscribe from the newsletter of the tourist accommodation by clicking on the appropriate link indicated in the email.
Your data may be sent to the recipients or target groups below: consultants and freelancers in single or associated form, banks and lenders, brokerage firms for the purchase of hotel services ( such as Booking, Tripadvisor, etc.); Public bodies or offices in accordance with the statutory and/or contractual obligations; Postal Police for the determination of any malicious activities for the company’s site.
No data arising from the Web service is communicated to third parties unless it is strictly relevant for the purpose of the processing or imposed by laws or regulations (For example, banks undergoing service payment, public institutions for security reasons, etc.)
The data processor may also communicate some of its information to entities of which it recourses for the carrying out of activities necessary for the attainment of the above mentioned and described purposes (subjects with whom the processor has stipulated contracts with, assistance and maintenance activities of computer systems and management software, etc.). The subjects mentioned above, who process their data on behalf of the processor, have been expressly appointed by the latter, data controllers.
The list of data controllers may be requested by contacting the owner at the following addresses:
The data related to you will be processed by the processor only for the time necessary for the above mentioned purposes. In particular it must be aware, in order to ensure that the data are processed as correctly and transparently as possible, with respect to the duration of the processing, that:
|·||Personal and/or sensitive data will be retained for civil, accounting and fiscal purposes, as well as for exercising the Rightholder’s right of defence for a period of not less than 10 years from the termination of the contractual relationship with the Company Data Controller.|
|·||Data sending of informative and/or advertising material by telephone or internet, also for the purposes of direct sale of own products or services, will be treated for two years from the collection of the same;|
|·||The data to manage the hotel services purchased, will be processed until the end of the same.|
The processing can be carried out through automated processes that do not determine the profiling of the interested and through non-automated means (paper archives) and will be done through methods and tools suitable to guarantee the safety of data.
Personal data is processed in paper format and/or with automated tools for the time strictly necessary to achieve the purposes for which they were collected. Specific security measures are observed to prevent data loss, illicit or incorrect use and unauthorized access.
During the period in which the processor is in possession or carries out the processing of his data, you, acting as the person concerned, may at any time exercise the following rights:
|·||Right of access by the data subject – The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data|
|·||Right to rectification – The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.|
|·||Right to erasure (‘right to be forgotten’) – The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay.|
|·||Right to restriction of processing – The data subject shall have the right to obtain from the controller restriction of processing at the condition of art. 18, Reg. UE 2016/679 ;|
|·||Right to data portability – The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided,;|
|·||Right of withdrawal from consent – You have the right to withdraw your consent to the processing of your data at any time, subject to the lawfulness of the processing prior to your consent revocation;|
|·||Right to propose a complaint to the following Supervisory Authority – “Garante per la protezione dei dati personali”, Piazza Venezia n. 11 – 00187 Roma, email: email@example.com, website: https://www.garanteprivacy.it/|
Right to object
The data subject shall have the right to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (f) of Article 6(1), including profiling based on those provisions. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims
The above rights may be exercised against the processor by writing to the above-mentioned contact details.
The exercise of its rights as a person concerned shall be free of charge within the meaning of article 12 GDPR. However, in the case of unfounded or excessive requests, including for their repetitiveness, the processor may charge a reasonable fee in the light of the administrative costs incurred to manage his request, or deny the satisfaction of his request.
Software applications aimed at the operation of this website to acquire, during their normal exercise, certain personal data whose transmission is implied within the normal IP protocol of Internet communication. This information is not collected to be directly associated with the identified concerned, but which by their very nature could, through subsequent elaboration and correlation with data held by third parties (providers), allow to Identify users.
This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the date and time of the request, the addresses in Uniform resource identifiers (URI) of the requested resources, the file size obtained in response from the server, the numeric code indicating the status of the response given by the server (OK, error, etc.) and other parameters related to the operating system and the user’s computer environment.
This data are used for the sole purpose of obtaining anonymous statistical information on the use of the site and to control its correct functioning and are erased immediately after processing.
This website may disclose personal data which, if required in accordance with the law, may be communicated to the judicial authority for the purpose of State protection or prevention; Investigation or suppression of offences; To guarantee the protection of the personal data of the interested parties who use the on-line services of the site; For any defensive investigations, or to assert or defend a legitimate right and interest of the processor in court, in respect of the principles of relevance and not over the purpose of the treatment.