IFORMATION OF THIS SITE
In this document we describe the site’s management procedures with reference to the handling of user’s personal data. It is an informative report published according to Article 13 of Law No. 196/2003 (called “Code concerning the handling of personal data”), for users who interact with the web services of the company Hotel Ambassador, accessible at the following web-site: http://www.ambassadorgrottammare.it, it and corresponding to the opening page of the official site. This informative report has been published only for the web-site of the company Hotel Ambassador, not including other web-sites that the user may consult through the use of links. This informative report draws on the Recommendation no. 2/2001 adopted by the European authorities for personal data protection on May 17, 2001, when they gathered in the Group established by Article 29 of the EEC directive No. 95/46/CE, in order to state several minimum requisites for on-line collection of personal data and, in particular, procedures, timing and nature of the information that data controllers must supply to users who visit their web pages, regardless of the purposes of the connection.
THE DATA CONTROLLER
After browsing this web-site, some data concerning identified or identifiable subjects can be processed. The controller of personal data potentially handled following to your consultation of our web-site and of all data used to provide our services, is Hotel Ambassador © 2012
Lungomare della Repubblica 86
Grottammare (AP) - Italy
The responsible person for the handling of personal data is Mr. Xxxxxxx Xxxxxxxxxxx, who can be contacted at the abovementioned address and numbers.
THE PLACE OF DATA TREATMENT
The handling of data connected to the web services of this site [physically hosted by the Hosting Agency Top Level Hotel Srl, Top Level Hotel S.r.l., whose head office is in Teramo, hamlet, fraz. San Nicolò a Tordino, street "Bindi" angolo street Galilei www.toplevelhotel.it Tel.+39 0861 975857 - VAT.no:01726480674 - takes place at the head office of the company Città del Web di Umberto Businaro in San Nicolò a Tordino (TE) via Bindi angolo via Galilei, and is carried out solely by technical staff of the department in charge of the handling or by persons appointed for occasional maintenance operations.
Data originating from the web service and personal data supplied by the users who request for information or dispatch of informative materials (information, newsletter, registrations, etc.) are used with the sole aim of carrying out the service or performance required and will not be communicated to third parties, except in the following cases:
• Commercial partners of Hotel Excelsior, to who the company transmits the data solely to fulfil user’s requirements;
• Persons, companies or professional offices who carry out assistance and consultation duties to Hotel Ambassador on accounting, administrative, legal, tax and financial matters
• Subjects who can have access to data in accordance with the law or authorities orderings.
TYPES OF DATA HANDLED
a) Surfing Data:
Computer systems and software procedures in charge of the operation of this web-site acquire some personal data during their normal process and it is implicit their transmission in the use of internet communication protocols. This information is not collected in order to identify subjects, however due to its own nature, and through processing and association with data held by third parties, it may permit the identification of users. This data category includes the IP addresses or domain names of the computers utilized by the users to connect to the site, the URI addresses (Uniform Resource Identifier) of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the answer given by the server (correct, error, etc.) and other parameters concerning the user’s operational system and computer environment. These data are only used to obtain anonymous statistical information about the use of the site and to check its correct operation and are cancelled immediately after the elaboration. Data may be also used to ascertain responsibility in the case of possible computer violations to the detriment of the site.
b) Data supplied voluntarily by the user:
The optional, explicit and voluntary sending of emails to the addresses indicated in this web-site entails the subsequent acquisition of the sender's address, necessary to reply to his/her requests, as well as the acquisition of any other personal data included in the message. Specific synthesis informative reports shall be progressively cited or showed in those site pages dedicated to particular services on request. No personal data of users shall be acquired or handled. Visitors remain anonymous. The only exception is made for personal information necessary in order to fulfil the contract obligations towards users.
In case of a request for information from the web-site, the user is obliged to provide his/her name, possible address to send the invoice, email address, telephone number and all possible information on conditions of payment. Hotel Excelsior shall use the information solely to fulfil the requirement and send specific information in order to confirm the request, such as the receipt, the order code and the terms of sale.
Information provided shall not be used for commercial purposes and will not be sold, transmitted, granted by permission or sent to third parties in any other way. At any rate, the site administrator guarantees the adoption of scrupulous procedures to protect the surfing data and the use of particular care to protect data. All data shall be used to answer the user’s questions, to provide the requested information or to contact the user regarding the services provided or for possible promotions and/or offers, in accordance with the declared purposes.
Your personal data might be collected and handled even by means of cookies and any other interactive technology. Your personal data shall be processed by means of data storage in electronic and paper archives, for the abovementioned purposes and in compliance with the current law on safety, with particular, although not exclusive, reference to the Enclosure B of the Privacy Code. The use of session cookies (that are not persistently stored on the user’s computer and vanish once the browser is closed) is strictly limited to the transmission of session identifiers (formed by random numbers generated by the server) necessary to enable a safe and efficient exploration of the site. Session cookies used in this web-site avoid other computer techniques that may be detrimental to the privacy of users as they do not permit the acquisition of personal data identifying the user.
OPTIONAL DATA SUBMITTING
Except for what specified for the surfing data, the user is free to provide his/her personal data contained in the request forms sent to the company Hotel Ambassador or, in any case, the data indicated in contacts with our office for asking for further information, sending advertising material or other communications. Failure to submit these data, may make it impossible to obtain what has been requested. In order to be comprehensive, it must be reminded that in some cases (not subject to the ordinary administration of this site) the Authority may require information in compliance with Article 157 of the Legislative Decree No. 196/2003, for the aim of checking the handling of personal data. In these cases the answer is mandatory, under penalty of administrative sanctions. If consent is denied or revoked, your request shall be annulled and consequently services offered by the web-site will be cancelled.
PERSONAL DATA HANDLING PROCEDURES
Personal data are treated by paper or electronic support or with the help of computer-based tools only for the time necessary to realise the purposes for which they were collected. Specific security measures are observed to prevent the loss of data, their illegal or incorrect use and unauthorized access. We inform you that, in order to provide a full service, the web-site contains links to other sites managed by different data controllers. We shall not be held responsible for errors, contents, cookies, publication of illicit, immoral contents, advertising, banners or files not in accordance with provisions of the laws in force and of the Data Protection Law contained in linked web-sites not managed by our data controller.
HOW TO EXERCISE ONE’S RIGHTS
Legislative Decree no. 193/2003 – Article 7: “Right to access personal data and other rights”
1. The subject concerned has the right to obtain confirmation of the presence or not of his/her personal data, even though not yet recorded, and their communication in an intelligible form.
2. The subject concerned has the right to obtain information about:
a) the origin of the personal data;
b) the purposes and terms of data handling;
c) the logic applied should the data be handled with the help of electronic means;
d) the identification data concerning the holder, the data handlers and the legal representative appointed in compliance with article 5, paragraph 2;
e) the subjects or categories of subjects to whom the personal data may be communicated or who might get to know said data as designated representatives in the State’s territory, responsible persons or persons in charge of the data handling.
3. The subject concerned has the right to obtain:
a) updating, rectification or, if interested, integration of the data;
b) deletion, conversion into anonymous form, or block of data handled in violation of the law, including data whose retention is unnecessary with reference to the purposes for which they have been collected or subsequently handled;
c) certification that all operations concerning points a) and b) have been notified, as regards their contents too, to the entities to whom the data has been communicated or spread, unless this requirement proves impossible or involves a manifestly disproportionate effort compared to the right that is to be protected.
4. The subject concerned has the right to oppose, in whole or in part:
a) for legitimate reasons, the handling of his/her personal data, even though they are relevant to the purpose of the collection;
b) the handling of his/her personal data for the purpose of sending advertising materials or direct selling, or for market researches or commercial advertising purposes.