Newsletter information

Who are we and what do we do with your personal data?

HVB LIVING SRL, headquartered in Via Crosaron Snc – cap. 37053 – Cerea (VR), (hereinafter also The Data Controller), as the Data Controller, is concerned about the confidentiality of your personal data and to ensure that they are protected from any event that may put them at risk of being breached.
The data controller implements for the purpose policies and practices having regard to the collection and use of your personal data and the exercise of your rights under applicable law. The Data Controller takes care to update the policies and practices adopted for the protection of personal data whenever it’s necessary and in any case of regulatory and organizational changes that may affect the processing of your personal data. The Data Controller has appointed a data protection officer (DPO) whom you can contact if you have questions about its policies and practices.
You may contact the DPO at dpo.hvb@midigroup.it.

How and why does the Data Controller collect and process your data?

The Data Controller collects and/or receives information about you, such as:span>

email
For newsletter subscription

The processing of your personal data is done in order to send you communications and information material related to products and/or services made by the Controller. The processing of your data may take place through: e-mail. The treatment in question can be carried out if::

you give your consent for the use of the data with reference to the methods of communication, both traditional and automated, by which the processing takes place;
if you did not object to the treatment.

For information security purposes

The Data Controller processes, including through its suppliers (third parties and/or recipients), your personal data to the extent strictly necessary and proportionate to ensure the security and ability of a network or servers connected to it to withstand, at a given level of security, unforeseen events or unlawful or malicious acts that compromise the availability, authenticity, integrity and confidentiality of personal data stored or transmitted. For these purposes, the Data Controller provides procedures for handling data breaches.

Communication to third parties and recipients

Your personal data may be disclosed to the following recipients in order to achieve the above purposes, in accordance with the principle of minimization: IT service providers, marketing/communication agencies. The Controller does not transfer your personal data outside the European Economic Area (EEA).

What happens if you do not provide your data?

The personal data concerning and identifying you are necessary for the purpose of fulfilling the request you submitted through the specific form, and if not provided, make it impossible for the Controller to fulfill your requests.

How and how long is your data stored?

The processing of data concerning you is carried out through both electronic and manual means and tools made available to individuals acting under the authority of the Data Controller and authorized and trained for this purpose. Personal data are stored, where applicable in electronic archives protected by effective and adequate security measures to counter the risks of violation considered by the Data Controller. For the time necessary for the fulfillment of information requests and sending of communications of such exclusive nature that the Data Controller makes as a result of your request and in any case for a term not exceeding a maximum of 24 months, except in cases where occurring, events that involve the intervention of the competent Authorities, also in collaboration with third parties/recipients entrusted with the information security activities of the Data Controller, to carry out any investigation into the causes that led to the event.

What are your rights?

Compatible with the limits, especially time limits, established for the processing of personal data concerning you, the rights you are granted allow you to be in control of your data at all times. Your rights are those of:

access;
rectification;
deletion;
lilimitation of treatment;
opposition to processing;
portability.

Your rights are guaranteed to you without special charges and formalities for requesting their exercise, which is essentially understood to be free of charge. You are entitled:

to obtain a copy, including in electronic format, of the data to which you have requested access. In case you need to request additional copies, the Holder may charge you a reasonable fee;
to obtain deletion of the same or limitation of processing or even updating and rectification of your personal data and that third parties/recipients in the event that they receive your data also comply with your request, unless legitimate reasons outweigh the ones that determined your request prevail (e.g., environmental investigations and risk containment determined by the emergency managed through them by the Controller);
to obtain any useful communication regarding the activities carried out as a result of the exercise of your rights without delay and, in any case, within one month of your request, unless an extension, with reasons, of up to two months must be duly communicated to you.

For any further information and in any case to send your request you should contact the Controller at info@hotelvillabartolomea.it.

How and when can you object to the processing of your personal data?

For reasons relating to your particular situation, you can object at any time to the processing of your personal data if it is based on legitimate interest by sending your request to info@hotelvillabartolomea.it. You have the right to the deletion of your personal data if there is no legitimate reason overriding the one that gave rise to your request.