Information according to art. 13-14 of the GULF (General Data Protection Regulation) 2016/679 and consent request.
We hereby inform you that with the start and execution of the current contractual arrangements, our organisation is in possession of data, acquired also verbally, whether directly or through third parties (tour operators internet, etc.), Identified as personnel of the European Regulations 2016/679 of the GDPR. Under these rules this data will be used with the principles of legality, correctness, limit of conservation, integrity and respect and observing your rights. According to art. 13 of the GULF 2016/679 we provide the following information:
● Social network pages controlled by us, through which it is possible to gain access to this information about privacy (called our ‘Social Pages’);
● E-mails HTML sent by us containing the link to this information on privacy and those received by us;
● Your visit or period of stay on our farm or any other kind of off line interaction.
Collectively, our social pages are referred to on our web site as ‘Online Services ‘ and ‘Services ‘ if we include our off line channels. The use of these services entails the acceptance, on your behalf of the terms and conditions foreseen by this information on privacy.
Details about us
The Lorella Pozzi company runs the Sirimagus holiday farm at the Localita’ Medadeddu 16, Tratalias. Our web site address is: https//www.agriturismosirimagus.com.
What personal data do we gather and why
We use dates, fiscal and economic data which are necessary to carry out contracts in effect or in the future, as well as to efficiently manage commercial relations. For these reasons the data will be used for:
- the insertion of dates of birth in our information base;
- to validate the availability of the services requested;
- for book -keeping needs;
- to manage invoices, payments, as well as to protect credit balances;
- to fulfill legislative obligations, including fiscal laws, rules and European regulations;
- to obtain statistical information;
- to send correspondence, including newsletters.
Data is used without your consent (art. 24 lett. a, b c Privacy Code and art. 6 lett. b, and GDPR), solely for the following Service eans: to fulfill precontractual obligations contractual and fiscal origins arising from agreements with you; to fulfill obligations set by law, regulations, European rules or from authorities; to perform the owner’s rights, for example the right to be defended in court.
When you contact us for information or request a booking of a service or information through the web form on the site, our company will ask you to provide certain data which are necessary to use our services. In this case the information we ask,can for example include the following data:
a) personal data, such as name, surname, gender, age/date of birth, country of origin and other personal data that the regulations allow us to collect;
b) contact information, such as address, email address, phone number, Mobile number, fax number and other contact information that current laws allow us to collect;
c) information about invoices and payments, such as fiscal codes, VAT numbers, means of payments(credit or debit cards), banking data (IBAN) if necessary, I’D card, where requested for fiscal reasons or in cases of money recycling laws;
d) information relative to commercial use and transactions of the data, products or services supplied, the total cost of sales, VAT, complaints, refunds or other information relative to the transaction which are permitted under the relevant laws;
e) habits and profiles, whose data concerns the transaction, information about the activity and related initiatives concerning connections with clients (dates and types of such connections which have taken place or are to take place; chosen type of service), other information (on jobs, qualifications, hobbies and life styles) which are permitted under the relevant laws.
Data related to children under the age of 16
Consent for the use of children’s data can only be given by those with parental responsibility (parents or legal guardians). The Lorella Pozzi company accepts no responsibility for any false declarations provided. In the event of personal data being given through false declarations on its discovery, it will be immediately cancelled.
If you leave comments on our site, you can opt to save your name, email address and web site in the cookies. These are for your convenience so that you do not need to insert your data when you leave another comment. These cookies last for a year.
If you have an account and you access this site, a temporary cookie will be used to determine whether or not your browser accepts cookies. This cookie contains no personal data and will be eliminated as soon as you close the browser.
When you access the site, several cookies will be used to save your information and your options will appear on the screen. These cookies last for two days, while the cookies regarding access last for a year. If you select “Remember me”, your access will last for two weeks. If you log out of your account the access cookies will be removed.
Quando i visitatori lasciano commenti sul sito, raccogliamo i dati mostrati nel modulo dei commenti oltre all’indirizzo IP del visitatore e la stringa dello user agent del browser per facilitare il rilevamento dello spam.
When guests leave a comment on our site, we collect the data on the comments form from the IP address of the person and the string of the browser’s user agent to help us to identify spam.
If you upload images onto the web site, you mustn’t upload images which include incorporated position data (EXIF GPS). Vistors to the web site can download any data on the position of the images from the web site.
Contents from other web sites
Articles on this site may include external content (for example videos, images, articles, etc.). Contents from other web sites are exactly the same as though the visitors had gone onto those web sites.
How long do we keep your data
Personal data will be kept for the duration of your commercial relationship and for the necessary time to carry out the finalities described in the information on Privacy. After this period of time, personal data of the client will only be kept for legal regulations for example, for 11 years, for tax purposes; for the period of compulsory keeping for financial purposes, etc.) To allow the company to keep copies and to respect the law and regulations.
Personal data on information about bookings and the purchase of restaurant or residence services which are used for profiling and marketing means will be kept for a limited period, according to the laws, at the end of which, they will be cancelled permanently.
Personal data provided will be kept for the amount of time necessary according to the regulations applicable, the solution of any controversies and the application of contractual terms.
When these conditions are no longer applicable the personal data will be cancelled.
For reasons of development and improvement of the services, personal data may be kept for an additional period.
For marketing reasons aimed at profiling we keep data for a maximum period allowed by applicable regulations (24 and 12 months).
Invoices, accounts and data about transactions are kept for 11 years according to the law (including fiscal obligations).
In the event of Right to be forgotten requesting cancellation expressed in the personal data, it is necessary to point out that this data will be kept, in a protected form and with limited access, solely for purposes of control and surveyance of crimes, for a period no more than 12 months from the date of the request and after they will be cancelled in a safe and anonymous and irreversible way.
We would like to remind you that for the same reasons, data on telematics, excluding the contents of conversations, will be kept for a period no longer than 6 months from the date of communication, according to art. 24 of the law 167/2017, transposing the ST regulation 2017/541 In antiterrorism.
If you leave a comment, it and its relative data will be kept for an unlimited time. This way we can acknowledge and automatically approve any comments without having to have a backlog.
What rights do you have on your data?
If you have left comments, you can request an exported file from the site with your personal data that we have on you, including data that you have supplied. You can also request that we cancel all personal data concerning you. This does not include data we have to keep for administrative, legal or safety means. You are legally allowed to exercise your rights regarding the owner treating the data, as decreed by the (EU) regulation 2016/679 of 27 April 2016 – GDPR.
Who do we share your data with and where do we send it?
The Lorella Pozzi company must electronically communicate the data of people staying at the Sirimagus holiday farm to the police (article 109 of TULPS) through the “guests portal”. We must also communicate the movement of guests for statistical reasons. This is compulsory due to the national statistics program and is transmitted electronically through the SIRED.
Guests’ comments can be controlled through a service of automatic detection of spam.
Subjects of the treatment and contact information.
The proprietor of the treatment is the Lorella Pozzi company CAR registration number 018967870928, located in Localita’ Medadeddu 16, 09010 Tratalias, Sardinia – Italy, represented Pro Tempore.
How we protect your data
Data is collected following indications from reference legislation, especially regarding safety measures laid down by the GDPR (art 32) for their treatment through data processing, manual and automatically and using logistics strictly linked to the purposes indicated in this information and in a way to guarantee the safety and confidentiality of the data.
The Lorella Pozzi company has implemented adequate measures to protect your personal data from accidental loss, or against access, use, modification of publication by parties who are not authorized. When the user supplies information, the company used a ASK (Secure Socket Layer) technology, a coded instrument that guarantees safety for the transmission of information on Internet.
Despite these safety measures, a margin of risk of violation of personal data remains. Therefore personal data is given at your own risk, and by the highest measures permitted under the ruling laws, the company will not accept responsibility for publication of data due to errors, omissions, or non authorized actions carried out by third parties or after the transmission of data. The company recommends the periodic upgrading of software to protect the transmission of data on the web, (eg. antivirus) and to check that electronic communication services have sufficient means of security for transmitting data (eg firewall and anti undesired mail filters).
In the unlikely event that our company feels that the security of the personal data of the client in our possession or under our control has been or could have been compromised, we will inform the client following the means provided by the relevant laws, using the methods laid out by them (by supplying your email address, the user is agreeing to receive this kind of communication electronically to their email address).
Modifications to information on privacy.
The Lorella Pozzi company at their own discretion, reserves the right to change, modify, add or eliminate parts of the current information on privacy at any time, by publishing an edited version on this page of the web site and by updating the latest modification indicated below. It is the user’s responsibility to check the information on privacy to see any eventual changes. In some cases, the company may provide further communication relating to relevant changes in the privacy information, by publishing a note on the first page of this web site. By sending a request for information or booking through the web site after the publication of the altered privacy information, the user accepts this information. Following the alterations, where it is laid down by law, the user’s data will not be subjected to treatment without the explicit permission of the user.
The current information is updated until 13th October 2018.