INFORMATION FOR THE TREATMENT OF PERSONAL DATA IN ACCORDANCE WITH ART. 13 OF THE EUROPEAN PRIVACY REGULATION No. 679/2016
This page describes the methods and logic of the processing of personal data of users who consult the site resortsantapollinare.com, which is owned by Sant’Apollinare srl, owner of the treatment.
This information is provided in accordance with Regulation (EU) no. 2016/679 (hereinafter GDPR) on the protection of individuals with regard to the processing of personal data, and the free movement of such data, and the Italian legislation in force for the protection of personal data, Legislative Decree no. 196/2003 (the Privacy Code) and subsequent amendments, in particular those introduced by Legislative Decree no. 101 of 10 August 2018, which effectively replaces it.
In detail, the information provided in application of Article 12 of the GDPR, is in accordance with and refers, unless expressly stated below, to the following Articles 13 (“Information to be provided if personal data are collected from the person concerned”) and 14 (“Information to be provided if personal data have not been obtained from the person concerned”). This information refers to the processing of personal data following consultation of the portal and not also other sites or web pages, or online services, accessible through hypertext links published on the portal. The GDPR and the Italian legislation of reference guarantee that the processing of personal data is carried out in respect of the rights, fundamental freedoms and dignity of the person concerned, with particular reference to confidentiality and the protection of personal data. Sant’Apollinare srl is aware of the importance of ensuring the security of information and data related to you that it acquires when you visit these web pages and wish to subscribe to the BLOG.
1. Data processed
In accordance with Article 4 of the GDPR, “personal data” means “any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, with particular reference to an identifier such as name, an identification number, location data, an online identifier or to one or more elements characteristic of his physical, physiological, genetic, mental, economic, cultural or social identity”. The personal data that are processed are those that customers provide when entering into a contract / service of sale (for example, name, surname, sex, date of birth, tax code, identity card, e-mail, telephone) and mandatory insofar as they are necessary for the proper conclusion and performance of the contract / service (Art. 13, paragraph 2, letter e), GDPR). The personal data that are processed are also those that participants and subscribers to the Blog give at the time of their registration and are limited to the name, surname, e-mail address and required to the extent that you want to receive notification of publication of a post or blog activities. The e-mail reporting the publication of a new post will also be used to submit opportunities for users to consult and / or purchase products or services. Among the purposes of processing the data provided will include those of promoting commercial and advertising initiatives with respect to which you will still have, and each time, the opportunity to object, requesting the deletion of your e-mail address from the list of those to whom they are addressed the aforementioned messages. b. Navigation data That is, computer data, the transmission of which is implicit and automatically connected to the use of communication protocols via the Internet, that information systems and software procedures used to operate this WEBSITE acquire in their normal operation, this is data that are not collected to be associated with individual identified but that, by their very nature, could, through processing and association with data held by third parties, allow users to be identified (see below paragraph on cookies).
2. Nature of the provision of the processed data and legal basis
The provision of your data, with the exception of navigation data, referred to in paragraph 1 letter b) (cookies), is optional and self-determined by the user who, therefore, certifies its completeness and its legitimate processing. Processing takes place on a voluntary basis and only with the express consent of the applicant and in the legitimate interest of the data controller or third parties (Art. 6 para. 1 (a) and (f) GDPR). Any refusal to provide them in whole or in part may result in the inability to perform properly all the obligations related to the service you intend to request, including those of the Blog (art. 13, paragraph 2, letter e) of the GDPR).
3. Purpose of processing (art. 5 and art. 13, paragraph 1, letter c) of the GDPR)
The data provided will be treated in accordance with the principle of transparency and, therefore, only with methods and procedures necessary to provide the services requested and for the additional purposes for which you have given your consent. To this end, the data will be adequate, relevant and limited to the purposes for which they were collected (“data minimisation”) (art. 5, paragraph 1, of the GDPR). In detail: only with your express consent the data can be used for statistical analysis, market research, promotional activities through social media and sending commercial information on products and promotional initiatives of Roberto Calandri (Direct marketing purposes).
Always with your consent, the data can be used for profiling purposes (see below “profiling cookies”) conducted automatically by collecting information on the navigation you make while accessing and using the services of the service and, through algorithms of statistical correlation, bind them to the same information from other users to identify common traits and group those within similar classes of interest. By assigning your browser to a class of interest, our systems will then be able to offer you content that is closer to your taste and present advertising contributions that best meet your needs and better address the interests of advertisers by reducing the level of disruption to the fruition (Purpose of profiling).
As regards in particular the registration to our Blog, the personal data that you provide at the time of registration, such as User ID and password, name, surname and e-mail address, will be processed for the sole purpose of providing the requested service, or those treatments related to information on site activities, the ability to read and comment publicly on the articles on the site and respond to posts of members. After registering, you will be able to access the forum area and leave your comments which will then be published on our site. Your registration data may also be processed for the purpose of sending promotional communications, only with your express, optional and separate consent.
4. Treatment modalities (art. 5 and art. 13, paragraph 2, letter a), of the GDPR)
The processing of personal data collected is “in a lawful, correct and transparent” and can be carried out with or without the aid of electronic or automated tools, including through managers or agents specifically authorized to do so (the list of names of companies responsible for processing data is available upon formal request to be forwarded to the data controller), for the time strictly necessary to achieve the purposes for which they were collected and in any case adopting procedures and measures to protect the security and confidentiality.
Personal data as well as your e-mail address are used to send you news about the site. As far as the Blog is concerned, the opinions and comments posted by users and the information and data contained therein will not be used for any other purpose than their publication; in particular, there is no provision for their aggregation or selection in specific databases. Any processing for statistical purposes that may in the future be the intention of the site to perform will be conducted solely on an anonymous basis. While the dissemination of the user’s personal data is to be understood as directly attributed to the initiative of the user, we guarantee that no other hypothesis of transmission or dissemination of the same, except as provided below, is, therefore, provided for.
5. Data controller, rights of information and access
In accordance with art. 13 paragraph 2 letter a), b) and c) of the GDPR, which informs you of the rights of the interested party provided for in articles 15, 16, 17, 18, 19, 20, 21, 22, 23 of the aforementioned European Regulation, we inform you that:
5.1. The interested party has the right to obtain confirmation of the existence or otherwise of personal data concerning him, even if not yet recorded, and their communication in intelligible form (art. 15).
5.2. The interested party has the right to obtain the indication:
- a) the origin of the personal data;
- b) the purposes and methods of treatment;
- c) of the logic applied in case of treatment carried out with the aid of electronic instruments;
- d) the identity of the owner, manager and representative designated under art. 5, paragraph 2;
- e) of the entities or categories of entity to whom or which the personal data may be communicated and who or which may get to know said data in their capacity as designated representative(s) in the State’s territory, data processor(s) or person(s) in charge of the processing.
5.3. You have the right to obtain (Articles 15, 16, 17, 18, 20 and 77 of the GDPR):
- a) the updating, rectification or, when interested, the integration of the data (art. 16 of the GDPR);
- b) the cancellation, transformation into anonymous form or blocking of data processed unlawfully, including data whose retention is unnecessary for the purposes for which the data were collected or subsequently processed, the possible limitation of treatment (art. 17 and art. 18 of the GDPR)
- c) certification to the effect that the operations as per letters a) and b) have been notified, as also related to their contents, to the entities to whom or which the data were communicated or disseminated, unless this requirement proves impossible or involves a manifestly disproportionate effort compared with the right that is to be protected
- d) to request the right of access to personal data processed (art. 15 of the GDPR);
- e) data portability (art. 20 of the GDPR);
- f) lodge a complaint with a supervisory authority (art. 51 of the GDPR).
5.4. The interested party has the right to object, in whole or in part (art. 21 of the GDPR):
- a) for legitimate reasons to the processing of personal data concerning him, even if pertinent to the purpose of collection without prejudice to the rights granted by law to the holder
- b) to the processing of personal data concerning him/her for the purpose of sending advertising materials or direct selling or for the performance of market or commercial communication surveys.
6. Treatment holder
Treatment letterhead is
- Sant’Apollinare srl
- VAT: 03691420545
- Fiscal code: 03691420545
- Headquarters: Via Borgo Nuovo 15/16 – 06072 – Sant’Apollinare – Marsciano (PG) – ITALY
- in the person of its legal representative pro tempore Roberto Calandri
In order to facilitate compliance with the terms of the law, it is necessary that the requests made include the words “Exercise of rights pursuant to art. 13 of European Regulation no. 679/2016”.
Cookies consist of portions of code (computer files or partial data) sent by a server to the user’s Internet browser, automatically stored by that browser on the user’s computer and automatically sent back to the server each time or after the site is accessed. A cookie usually contains the name of the website from which the cookie originated, the lifetime of the cookie (i.e. how long it will remain on the user’s device) and a value, which is usually a randomly generated unique number. At each subsequent visit, cookies are sent back to the website that originated them (first-party cookies) or to another site that recognizes them (third-party cookies). Cookies are useful because they allow a website to recognize your device and have different purposes such as, for example, allowing you to navigate efficiently between pages, remember your favorite sites and, in general, improve your browsing experience. They also help to ensure that the advertising content displayed online is more targeted to a user and his interests.
If you decide to disable cookies, this may affect and/or limit your experience of browsing the Sites, for example, you may not be able to visit certain sections of a Site or you may not receive personalized information when you visit the Sites.
How you can change the settings of your Internet browser to restrict or block cookies. Most internet browsers are initially set to accept cookies automatically, however, you can change these settings to block cookies or to be alerted whenever cookies are sent to your device. There are several ways to manage cookies, so you should refer to your browser’s help screen to see how to adjust or change your browser settings. The user is enabled, in fact, to change the default configuration and disable cookies (ie block them permanently), setting the highest level of protection.
Here below the path to follow to manage cookies from the following browsers:
- Chrome: https://support.google.com/chrome/answer/95647?hl=it-IT&hlrm=fr&hlrm=en
- Internet Explorer e Edge: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies
- Safari: https://support.apple.com/kb/PH21411?viewlocale=en_US&locale=en_US
- Firefox: http://support.mozilla.org/it-IT/kb/enable-and-disable-cookies-website-preferences
Below is an explanatory list.
A) Technical cookies
“Technical” cookies are essential for the proper functioning of the site and allow users to browse the site and exploit its features (for example, they allow the storage of previous actions or allow you to save your session and / or perform other activities strictly necessary to the operation of the site). They are not used for further purposes and are normally installed directly by the owner or operator of the website. They can be divided into:
– Session or navigation cookies
Guarantee normal navigation and use of the website ( allowing, for example, to make a purchase or authenticate to access restricted areas). These cookies can then be distinguished by their persistence on the user’s computer: those that are automatically deleted at the end of each navigation, are called session cookies. If, on the other hand, they have a longer life span, this is referred to as permanent cookies;
– Cookie analytics
They are assimilated to technical cookies when used directly by the site operator to collect information, in aggregate form, on the number of users and on how they visit the site itself. In other words, they help you understand how you interact with the site by providing information about the last page you visited, the number of sections and pages you visited, the time you spent on the site and each story you encountered while browsing, such as an error message, and help you understand any difficulties you encounter using the site. This information may be associated with user details such as your IP address, domain, or browser; however, it is analyzed with information from other users so that we do not identify one user from another. These cookies are collected and aggregated anonymously and allow the site operator to improve the usability of the site;
– Functional cookies
These cookies allow the portal to remember the choices made by the user in order to optimize functionality. For example, they allow you to remember user-specific settings, such as country selection and, if set, permanent access status. Functional cookies are not essential to the functioning of the Sites, but they improve the quality and the browsing experience of the Sites. If you do not accept these cookies, the performance and functionality of the site may be lower and access to the content of the site may be limited.
B) Profiling cookies
“Targeting” or “profiling” cookies are used to present content that is better suited to you and your interests. They can be used to display targeted advertisements, to publish advertisements tailored to the interests of the user or to limit the number of times the user displays an advertisement. They also help measure the effectiveness of advertising campaigns on the site; the site operator may use these cookies to remember the sites you have visited and share this information with third parties, including agencies and advertisers who may use their cookies to collect information about your activities on the site.
“Sharing” (or social networking) cookies are required to enable you to interact with the Sites through your social account and are used, for example, to express your appreciation and to share it with your social contacts.
An additional element to consider for the purposes of the correct definition of the subject under examination is the subjective element. It is necessary, that is, to take into account the different entity that installs cookies on the user’s terminal, depending on whether it is the same operator of the site that the user is visiting (which can be briefly referred to as “publisher”) or a different site that installs cookies through the first (so-called “third parties”). This second option occurs, for example, if the user visits a page that contains content from a third-party website. As a result, you will receive cookies from these third party services. The website operator does not have control over the information provided by the cookie on third party cookies and does not have access to this data. This information is fully controlled by the third party companies as described in their respective privacy policies. Since these cookies are not directly controlled by the publisher, you must refer to third party websites or to the http://www.youronlinechoices.com/it/ website to revoke your consent, to obtain information on how to delete or manage cookies according to your browser and to manage your preferences on third party profiling cookies.