INFORMATION ON THE PROCESSING OF PERSONAL DATA
Pursuant to European Regulation no. 679/2016 and Legislative Decree 196/2003 as amended by Legislative Decree 101/2018
The European Regulation n. 679/2016 GDPR and the laws of harmonization of the Member States, recognize to each person the protection of their personal data that are subject to treatment by third parties, as an expression of respect for human dignity and fundamental human rights and freedoms.
On the basis of the provisions of the European and internal regulations in force, the data processing of the data subject will be carried out in full compliance with the principles of lawfulness, correctness, relevance, proportionality and transparency and protection of confidentiality, in compliance with legal requirements.
“Personal data” means any information concerning an identified or identifiable natural person; for “Concerned” the person providing the data; “Data controller” means the natural or legal person who determines the purposes and means of processing personal data; for “Data Processor” the person, physical or legal, who processes data on behalf of the holder; “Recipient” means the natural or legal person, public authority, service or other body that receives communication of personal data.
Relax Domus Affittacamere Appartamento as a service provider, provides the interested party with the following information:
Data are acquired for the following purposes of the treatment:
- Navigation on the site, including the completion of the forms (form) present there, at www.relaxdomus.com:
- Execution of a contract or provision of a service, such as the accommodation service;
- Contact with the user and related support to solve problems related to the aforementioned service / contract or to the pre-contractual phase;
- Communication to third parties only if instrumental to the execution of the service;
- Statistical processing, in an anonymised form;
- Any fulfillment of legal obligations;
Furthermore, among the data provided by you there could also be some personal data defined by the GDPR and by the Italian harmonization legislation as “particulars” (eg healthcare). The sensitive / particular data will be processed according to the purposes indicated and only with your consent, which will be specifically requested when necessary.
The legal bases of processing for the purposes in points 1,2,3,4,5 refer to the provision of the service, the execution of a contract signed between the parties and the legitimate interest of the owner to set up a website to give visibility to his activity.
The legal basis for the purpose in point 6 is the legal obligation.
The personal data processed are as follows:
- identification data (name, surname, email address) and possibly billing;
- data sent through interaction with social networks and external platforms (Facebook, Vimeo, Youtube), if the person concerned has given specific prior consent;
- Any reports or requests for support to our assistance services;
- site usage data, acquired automatically by the platform, such as IP addresses, domain names entering the site, the addresses of the requested resources, the time of the request, the method used in submitting the request to the server , the size of the file obtained, etc. These data are stored in the hosting provider’s servers and are processed anonymously, to elaborate aggregate statistics on the use of the application, to monitor its correct functioning, and for the eventual assessment of responsibility in case of hypothetical computer crimes damage to the website operating the services.
- Cookie: a “cookie” is a text file saved on the user’s computer when he accesses a website with the purpose of providing information every time the user returns to the same site. It is a sort of reminder of the visited internet page. With the cookie, the web server sends information to the user’s browser (Internet Explorer, Mozilla Firefox, Google Chrome, etc.) stored on the computer of the latter, and will be re-read and updated each time the user returns to the site. In this way the website can automatically adapt to the user. During browsing the user could receive on his terminal even cookies from different sites (“third party” cookies), set directly by the managers of said websites and used for the purposes and according to the procedures defined by them. Depending on their duration, they are divided into session cookies (ie temporary ones and automatically deleted from the terminal at the end of the browsing session, closing the browser) and persistent cookies (ie those that remain stored on the terminal until their expiration or cancellation by the user).
- Depending on the function and purpose of use, cookies can be divided into technical cookies and profiling cookies.
- Technical cookies are used to perform computer authentication, monitoring sessions and storing specific information about users accessing a web page. These cookies are useful to allow you to browse a website and use all its features. Technical cookies are those whose use does not require the user’s consent.
- This category also includes the analytics cookies, if appropriately anonymized. These are cookies that collect information about the use that a user makes of a website and that allow to improve its operation. For example, the analytics cookies show which pages are most frequently visited, allow you to check what are the recurrent patterns of use of a website and help to understand every difficulty that the user encounters in use.
- Profiling cookies can instead be used to monitor and profile users while browsing, to study their movements and habits of web browsing or consumption (what they buy, what they read, etc.), also for the purpose of sending advertising services targeted and personalized. In this case we speak about profiling cookies. The use of these cookies requires the prior acquisition of the free informed consent of the user pursuant to art. 7 of EU 2016/679 Regulation.
- Profiling cookies can instead be used to monitor and profile users while browsing, to study their movements and habits of web browsing or consumption (what they buy, what they read, etc.), also for the purpose of sending advertising services targeted and personalized. In this case we speak about profiling cookies. The use of these cookies requires the prior acquisition of the free informed consent of the user pursuant to art. 7 of EU 2016/679 Regulation. It can also happen that a web page contains cookies from other sites and content in various elements hosted on the page itself, such as banner ads, images, videos, maps or specific links to web pages of other domains that reside on servers other than on which the requested page is located. In other words, these cookies are set directly by managers of websites or servers other than this website. We speak, in these cases, so-called third-party cookies, which are usually used for profiling purposes. The use of these cookies requires the prior acquisition of the free informed consent of the user
- The user can manage their own cookie preferences through the features present in the common browsers that allow you to delete / remove cookies (all or some) or to change the settings of the browser in order to block the sending of cookies or cookies. limit it to specific sites (compared to others).
The above data are processed in the following ways:
- processing through information and IT systems, with no profiling characteristics.
The data are processed by internal operators authorized by the Owner, or specifically appointed Managers, in compliance with technical and organizational measures suitable to guarantee the security of the processing and compliance with the current regulatory framework.
The data are processed at the operating offices of Relax Domus Affittacamere Apartment. In some cases, for technical reasons, they could be stored in servers located in a country outside the European Union, provided that it is adequate to ensure compliance with the principles established by the Regulation by a decision of the European Commission.
The data are kept for as long as necessary to ensure the provision of the service and the fulfillment of the contract. Once the contractual purpose has been exhausted, the invoicing data are kept for the time necessary to fulfill the tax, civil law and management of disputes.
The provision of data in points 1, 2, 3, 4, 5, 6 is optional.
Failure, incorrect, even partial, of data in points 1, 2, 3, 4, 5, 6 on the part of the interested party implies the impossibility for the holder to provide and, for the interested party to use, the service or the contract.
The provision of navigation data in point 1 is implicit in the use of communication protocols over the Internet.
Personal data may be shared with:
– natural persons authorized by the Data Controller to process personal data pursuant to art. 29 GDPR for the performance of their job duties (eg employees, workers, collaborators, etc.);
– service providers (such as tourism service providers, consultants, credit institutions, providers, auditors, etc.) who typically act as data controllers appointed pursuant to art. 28 of the Rules;
– Persons, companies, associations or professional firms that provide services or assistance and advice to the owner in order to protect their rights (for example, accountants, lawyers, tax advisors, auditors, consultants in connection with auditing or due diligence, etc.) as co-owners or controllers.
– subjects, bodies or authorities that are obliged to communicate their personal data in accordance with the provisions of law or orders of the authorities
The updated and complete list of data processors can be requested from the Data Controller by sending a written request to the email address firstname.lastname@example.org
The interested party may at any time request and obtain the exercise of their rights, as required by the above EU Regulation through a request addressed to the following email address: email@example.com.
1. The interested party has the right to obtain confirmation of the existence or not of personal data concerning him / her, even if not yet registered, and their communication in intelligible form. The data subject is also entitled to obtain from the Data Controller confirmation that personal data processing is being processed and, in this case, to obtain access to personal data.
2. The interested party has the right to obtain more information on the contents of this statement, in particular the indication:
- of the origin of personal data;
- the purposes and methods of the processing;
- of the logic applied in case of treatment carried out with the aid of electronic instruments;
- the identification details of the owner and managers;
- the subjects or categories of subjects to whom personal data may be communicated at the time the service is provided.
3. The interested party has the right to obtain:
- updating, rectification of data;
- the cancellation or limitation of the processing of data that occurs in violation of the law;
- the communication of changes to third parties to whom the previous information had been communicated if such communication does not involve a disproportionate effort on the part of the owner
Owner and treatment:
Relax Domus – Guest House VAT. Number: 08108700967 with headquarters at Via Treves 5, Zibido San Giacomo, Milan, Italy