HOLDER OF THE TREATMENT.
The owner of the treatment of your data is BOTTOLI FRANCO, email info@casa-francesca.it, Tel: +39 342 7557466, hereinafter also “Owner”.

PURPOSE, LEGAL BASIS OF THE TREATMENT, OBLIGATION TO PROVIDE DATA AND STORAGE PERIOD.

Personal data are collected for the following purposes:

(a) Execution of a contract and/or fulfillment of contractual obligations. The processing of the data is aimed at managing the requests made through the forms on the site or via e-mail by the interested parties, at the negotiation management of the service and/or consultancy contract, to manage the requests and transmit the information required for the contract. For this purpose, the provision of data is mandatory and failure to provide it determines the impossibility of proceeding with the provision of the contractual obligation. The data will be kept for the duration of the treatment and then for 5 years.

b) Fulfilment of legal obligations imposed by national and international laws and regulations, of a fiscal, tributary, accounting and administrative nature. The treatment is aimed at the respect of state regulations. The conferment of data is related to a legal obligation. The data will be kept for the duration of the treatment and then for 10 years.

NAVIGATION DATA AND COOKIES

The computer systems and software procedures used for the ordinary functioning of this site acquire some personal data whose transmission is implicit in the use of Internet communication protocols. This category of data includes IP addresses or domain names of computers and terminals used by users, URI/URL (Uniform Resource Identifier/Locator) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system and computer environment. Except as indicated in the cookie policy of this site, navigation data are used to ensure the proper functioning of the site and prevent (and if necessary prosecute) fraudulent or harmful activities.

RECIPIENTS OF PERSONAL DATA.

Personal data are processed by employees and consultants who are given appropriate instructions regarding measures, measures, modus operandi, all aimed at the effective protection of personal data processed. To the extent that it is necessary or appropriate for the achievement of the purposes already described, or as part of any legal obligation relating to tax and accounting, the data may be shared with external parties, such as specially appointed external managers, for the provision of services including IT services, external consultants or collaborators, within the following contexts:
Services related to the maintenance of the Site;
Consulting and archiving services, also for tax purposes.
Other subjects may access the data exclusively by virtue of legal provisions, regulations and standards.

TRANSFER OF PERSONAL DATA OUTSIDE THE EU.

If, in accordance with the foregoing and for the purposes indicated therein, it becomes necessary to transfer personal data abroad (non-EU), we will proceed on condition that the country of destination has been deemed by the European Commission as suitable for transfer pursuant to Article 45 of Regulation 2016/679 (adequacy decision) or, in the absence of such decision, if one of the conditions set out in Articles 46 and 47 of the same Regulation is met (in particular, contractual clauses standards or binding business rules).

RIGHTS OF THE DATA SUBJECT.

Regulation (EU) 2016/679 grants you, as a Data Subject, several rights, which you may exercise by contacting the Data Controller or the DPO, if available, at the contact details in this Policy. Among the rights that can be exercised, provided that the prerequisites are met from time to time provided by the legislation (in particular, Articles 15 et seq. of the Regulation) are:
– the right to know whether the Data Controller is processing personal data concerning you and, if so, to have access to the data being processed and all information relating thereto;
– the right to rectification of inaccurate personal data concerning him/her and/or integration of incomplete data;
– the right to the cancellation of personal data concerning him/her;
– the right to the limitation of the treatment
– the right to object to the processing;
– The right to the portability of personal data concerning him/her;
– the right to revoke consent at any time, without affecting the lawfulness of processing, based on consent, carried out before revocation.

In any case, you also have the right to submit a formal complaint to the Guarantor Authority for the protection of personal data, according to the procedures available at the site of the Guarantor itself.