Privacy Policy
Privacy Policy for the website http://www.hotelmara.it pursuant to Legislative Decree No. 196/2003 and subsequent amendments and additions Introduction This document describes how the website is managed with regard to the processing of personal data of users who visit it. This privacy policy is also provided pursuant to Article 13 of Legislative Decree No. 196 of June 30, 2003, known as the “Personal Data Protection Code,” to those who interact with the web services accessible electronically via the address www.hotelmara.it, corresponding to the homepage of the official website. This notice applies only to the website www.hotelmara.it and not to other websites that may be accessed by the user via links. This policy is also based on Recommendation No. 2/2001, which the European data protection authorities, meeting within the Working Party established by Article 29 of Directive 95/46/EC, adopted on May 17, 2001, to identify certain minimum requirements for the online collection of personal data, and, in particular, the methods, timing, and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection.
The Data Controller
When you visit this website, data relating to identified or identifiable individuals may be processed. The “Data Controller” for any personal data processed as a result of visiting our website and for any other data used to provide our services is Hotel Mara Srl, VAT No. 01542760697, with registered office at Località Lido Riccio 66026 Ortona (CH), which can be contacted at the address and contact details provided above.
Location of Data Processing
Data processing related to the web services of this site, which is physically hosted by Register S.p.A. (www.register.it), takes place at the email address indicated above and is handled exclusively by technical staff responsible for processing, or by personnel assigned to perform occasional maintenance operations. Personal data derived from the web service and provided by users who submit requests for information or request the sending of informational material (information, newsletters, registrations, etc.) are used solely for the purpose of performing the requested service or provision and are not disclosed to third parties, except in the following possible cases: – Hotel Mara’s business partners to whom it discloses the data exclusively to fulfill requests; – individuals, companies, or professional firms that provide assistance and consulting services to Hotel Mara in accounting, administrative, legal, tax, and financial matters; – entities whose right to access the data is recognized by law or by orders from the authorities.
Types of Treatment
- Browsing data: The computer systems and software procedures used to operate this website acquire, during their normal operation, certain personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected to be associated with identified data subjects, but by its very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes the IP addresses or domain names of the computers used by users who connect to the site, or who enter information on the site and comments and/or messages on the Forum and Chat platforms within the site www.hotelmara.it; the URI (Uniform Resource Identifier) addresses of the requested resources; the time of the request, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the response provided by the server (successful, error, etc.), and other parameters related to the user’s operating system and IT environment. This data is used solely to obtain anonymous statistical information on the use of the site and to verify its proper functioning, and is deleted immediately after processing. The data may be used to determine liability in the event of potential cybercrimes against the website.
- Data provided voluntarily by the user: The optional, explicit, and voluntary sending of emails to the addresses listed on this website entails the subsequent collection of the sender’s email address, which is necessary to respond to inquiries, as well as any other personal data included in the message. Specific summary notices will be progressively provided or displayed on the website pages dedicated to particular on-demand services. We do not collect or use personal information regarding visitors to the website. Visitors remain anonymous. The only exception concerns the personally identifiable information necessary to fulfill contractual booking obligations toward the user. In the event of a request for information via the website, the user is required to provide their name, billing address (if applicable), email address, and phone number and any information regarding payment methods. Hotel Mara will use this information solely to process your request and to send you specific information relevant to its confirmation. The information provided will not be used for commercial purposes and will not be sold, transmitted, licensed, or otherwise disclosed to third parties. In any case, the website administrator ensures the adoption of rigorous procedures to protect browsing data and takes special care to safeguard such data. All data will be used to respond to user inquiries, to provide the requested information, or to contact the user regarding the services provided or any promotions and/or offers, in accordance with the stated purposes.
Cookies
Your personal data may also be collected and processed through cookies and any other interactive technology. The processing of your personal data, carried out for the purposes specified above, is performed using both automated and manual methods, in compliance with current security regulations, with particular—but not exclusive—reference to Annex B (Technical Guidelines on Minimum Security Measures) of the Privacy Code. The use of so-called session cookies (which are not stored permanently on the user’s computer and disappear when the browser is closed) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable the safe and efficient browsing of the site. The so-called session cookies used on this site avoid the use of other IT techniques that could potentially compromise the confidentiality of users’ browsing and do not allow for the collection of personal data that identifies the user.
Voluntary provision of data
Apart from what is specified regarding browsing data, users are free to provide the personal data contained in the information request forms submitted to Hotel Mara or otherwise provided when contacting the Office to make inquiries, request the sending of informational materials, or other communications. Failure to provide such data may make it impossible to fulfill the request. For the sake of completeness, it should be noted that in certain cases (not covered by the ordinary management of this website), the Authority may request information pursuant to Article 157 of Legislative Decree No. 196/2003, for the purpose of monitoring the processing of personal data. In such cases, a response is mandatory, subject to administrative penalties. Failure to provide consent to processing or subsequent revocation of consent will result in the cancellation of the request and the consequent removal from the services offered by the site.
Processing Methods
Personal data is processed electronically, in paper form, or using automated tools for the time strictly necessary to achieve the purposes for which it was collected. Specific security measures are in place to prevent data loss, unlawful or improper use, and unauthorized access. Please note that, in order to provide a comprehensive service, this site contains links to other websites operated by third parties. We accept no liability for errors, content, cookies, the publication of immoral or unlawful content, advertisements, banners, or files that do not comply with current regulations, nor for compliance with privacy regulations by third-party websites to which we link.
Rights of Data Subjects
The individuals to whom the personal data refer have the right at any time to obtain confirmation of whether or not such data exist and to learn of their content and origin, verify their accuracy, or request that they be supplemented, updated, or corrected (Article 7 of Legislative Decree No. 196/2003). Pursuant to the same article, you have the right to request the erasure, anonymization, or blocking of data processed in violation of the law, as well as to object in any case, for legitimate reasons, to their processing. Requests should be addressed to the data controller, Hotel Mara, Email: prenotazioni@hotelmara.it This privacy policy can be automatically accessed by the most recent browsers that implement the P3P standard (“Platform for Privacy Preferences Project”) proposed by the World Wide Web Consortium (www.w3c.org). Every effort will be made to ensure that the functionalities of this site are as interoperable as possible with the automatic privacy control mechanisms available in certain products used by users. Considering that the current state of development of automatic control mechanisms means they are not yet free from errors and malfunctions, please note that this document, published at http://www.hotelmara.it/privacy.html, constitutes the “Privacy Policy” of this website and is subject to updates, even without prior notice.
How to exercise your rights
Legislative Decree 193/2003 – Art. 7. Right of access to personal data and other rights 1. The data subject has the right to obtain confirmation as to whether or not personal data concerning him or her exist, even if not yet recorded, and to have such data communicated to him or her in an intelligible form. 2. The data subject has the right to obtain information regarding: a) the origin of the personal data; b) the purposes and methods of processing; c) the logic applied in the case of processing carried out with the aid of electronic tools; d) the identification details of the data controller, data processors, and the designated representative pursuant to Article 5, paragraph 2; e) the subjects or categories of subjects to whom the personal data may be disclosed or who may become aware of it in their capacity as designated representative within the territory of the State, data processors, or persons in charge of processing. 3. The data subject has the right to obtain: a) the updating, rectification, or, where interested, the completion of the data; b) the erasure, anonymization, or blocking of data processed in violation of the law, including data that no longer needs to be retained for the purposes for which it was collected or subsequently processed; c) confirmation that the operations referred to in letters a) and b) have been brought to the attention, including with regard to their content, of those to whom the data have been communicated or disclosed, except where this proves impossible or involves a manifestly disproportionate effort compared to the right being protected. 4. The data subject has the right to object, in whole or in part: a) on legitimate grounds, to the processing of personal data concerning him or her, even if pertinent to the purpose of collection; b) to the processing of personal data concerning him or her for the purposes of sending advertising or direct sales material or for carrying out market research or commercial communication.