WEBSITE NOTICE
This notice is provided, pursuant to EU Reg. 679/2016 and Legislative Decree 196/2003 as amended and supplemented by Legislative Decree 101/2018, in order to illustrate the way in which your data may be processed and used, for example, when you visit or use the website, contact us for information, provide us with information and/or services, or in any other way you interact in a professional and/or commercial relationship.
WHO IS THE DATA CONTROLLER
The data controller is Società Agricola Perugia Vecchia S.S. di Cori Marina e C., with a registered office in Deruta (PG), 06053, Str. S.Donato snc, pec _______________, e-mail: _______________
Types of data processed
| Category of data | Exemplification of data types |
| Personal Data | name, surname, date of birth, address city and state of residence, landline and / or mobile telephone, fax, tax code, email address. |
| Bank data | IBAN, credit card and/or debit card |
| Web site usage | information concerning the modalities in which the web site is used and/or our communications are opened or forwarded. |
| Navigation data | log, origin IP address. |
The Data Controller does not require the Data Subject to provide particular data, or, according to the provisions of the GDPR (Article 9), personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as genetic data, biometric data intended to uniquely identify a natural person, data relating to the health or sexual life or sexual orientation of the person. In the event that the service requested from the Data Controller requires the processing of data, the interested party will receive a specific communication in advance and will be required to give appropriate consent.
HOW DATA IS COLLECTED FROM THE DATA SUBJECT OR INTERESTED PARTY
Your personal data is collected in the following circumstances:
• to provide our Services and make reservations through the website;
• by contacting us through the contacts on the website of the Data Controller;
• if you respond to our promotional campaigns through interest cards or through social networks.
The provision of data is optional. However, failure to provide the data deemed mandatory will prevent the correct use of the services provided that is from complying with the made request.
PURPOSE OF DATA COLLECTION
The personal data collected by registering on or subscribing to our sites are used by the Data Controller to follow up on the provision of the requested service, to manage and execute the contact requests forwarded by the interested party, to provide assistance and to fulfill the legal and regulatory obligations to which the Data controller is required according to the activities carried out. In no case shall the Data Controller resell the personal data of the interested party to third parties or use them for undeclared purposes.
In particular, the data of the interested party will be processed for:
• requests and/or information material
The processing of the data subject’s personal data takes place to carry out the activities resulting from the management of requests for information and contact and/or the sending of information material, as well as for the fulfillment of any other obligation arising.
• management of the contractual relationship and booking
The processing of the interested party’s personal data is carried out in order to execute the activities which result from the assignment of the assignment, the management of the payment as well as the fulfillment of any other contractual obligation.
• promotional activities on Services and Products similar to those to which the Data Subject has shown interest
The Data Controller, even without explicit consent, may use the contact details communicated by the Data Subject, for the purpose of direct sales of its Services, limited to the case in which they are Services similar to those being sold, unless the interested party does not explicitly object. This can take place in an automated way, via email. The data processing can be carried out if the interested party has not revoked his consent for the use of the data or if he has not opposed the processing.
The Data Controller can processes, also through its suppliers (third parties and/or recipients), the personal data of the interested party relating to online traffic to the extent which is deemed strictly necessary and anyway in a proportional way to ensure network and information security.
The Data Controller will promptly inform the Data Subjects, if there is a particular risk of violation of their data, without prejudice to the obligations deriving from the provisions of art. 33 of the GDPR relating to notifications of personal data violation.
COMMUNICATION TO THIRD PARTIES AND CATEGORIES OF RECIPIENTS
The data subject’s personal is also transmitted to third parties and/or recipients whose activity is necessary in order to carry out the activities related to the established relationship and to comply with certain legal obligations, such as:
Third party distributors and suppliers: Provision of services (assistance, consultancy …); External professionals / consultants and consulting firms: fulfillment of legal obligations, exercise of rights, protection of contractual rights, credit recovery.
Financial administration, public bodies, judicial authorities, supervisory and control authorities: fulfillment of legal obligations, defense of rights; lists and registers kept by public authorities or similar bodies on the basis of specific legislation, in relation to the contractual service. The Data Controller requires its third party suppliers and data processors to comply with security measures equal to those adopted for the interested party by restricting the perimeter of action of the person responsible to the processing related to the requested service.
The Data Controller does not transfer personal data to countries in which the GDPR is not applied (non-EU countries) unless otherwise specified, in which case the data subject will be informed in advance and his consent will be requested if necessary.
HOW WE KEEP YOUR DATA SECURE
The Data Controller uses all the security measures necessary to improve the protection and the maintenance of security, integrity and accessibility of your personal data.
The personal data of the interested party are stored in paper, computer and telematic archives located in EU countries where the GDPR is applied.
HOW LONG IS YOUR INFORMATION KEPT
We keep your personal data only for the time necessary to achieve the purposes for which they were collected or for any other legitimate related purpose.
The storage periods are listed below in relation to the different purposes listed above:
Fulfillment of contractual obligations: the data processed to fulfill any contractual obligation may be kept for the entire duration of the contract and in any case will be kept for more than the next following 10 years, in order to verify any pending case, including accounting documents (e.g. invoices).
Operational management and all its strictly connected purposes in relation to websites access: the data processed for this purpose may be kept for the entire duration of the contract and in any case will be kept for more than the next following 10 years.
In the event of disputes: in the event that it is made necessary to defend or act or even make claims against the data Subject or third parties, we may keep the personal data that we reasonably deem necessary for these purposes and for the time necessary to prosecute the claim in question.
SUBJECT’S RIGHTS
We guarantee access to your data, as well as, for all the data based on the contract, the right to request portability. You also have the right to request the limitation of processing and the update, modification or, if the law allows it, the deletion of your data.
You will always be allowed to contact us :
• via certified mail to the address: strada S. Donato snc
• online: to the email address info@perugiavechia.com
if you wish to:
• review, modify or delete the data you have provided us with (if no longer permitted to or obliged to keep it);
• oppose certain uses (for example for marketing communications);
• receive a copy of your provided data (in a readable format of common use);
• ask for any other information regarding the protection of your data.
We will do our best to respond to any inquiries in time and at no cost except when this requires an inordinate effort. In some cases, you may be required to verify your identity before we can process your request.
If you are not satisfied with the response received, you can make a complaint to the competent supervisory authority in your country (for Italy it is the Authority for the protection of personal data).
COOKIES POLICY NOTICE
The website collects information that may concern the user, his preferences, or the Internet access device used and is mainly used to adapt the functionality of the site to the user’s expectations, offering a better browsing experience and to send personalized promotional messages.
Furthermore, by continuing to browse, the user automatically consents to the use of cookies in accordance with this “Cookie policy”.
Below you can find out more about the various types of cookies used.
Without prejudice to the foregoing, we use the following categories of cookies for our websites and other online services:
Essential cookies
These cookies are necessary for the proper functioning of our websites and to use and/or improve the various functions and/or services requested.
Analysis cookies
These cookies allow us to refine our websites by monitoring and analyzing the users behavior.
In order to analyze how websites are used, the Data Controller also uses the “Google Analytics” web analysis service provided by Google.
(https://www.google.com/intl/it_it/analytics/learn/privacy.html)
The data does not allow the user to be personally identified.
Advertising and behavioral advertising cookies
These cookies are used by Società Agricola Perugia Vecchia S.S. to collect data on browsing habits and user preferences in order to develop a specific profile for the customization of the commercial offer, as well as to carry out market research or remote sales.
Third party cookies and Social media cookies
Our sites may allow the use of third-party cookies that may collect information on the user’s movements on the Internet.
Furthermore, some pages of our websites are characterized by the presence of the so-called “social plug-ins”, which allow us to share our contents on social media networks such as Facebook, YouTube, Instagram, Pinterest, Twitter.
For further information please read the following information:
Facebook:
Police notice: https://www.facebook.com/help/cookies/
Twitter:
Police notice: https://support.twitter.com/articles/20170514
Pinterest
Police notice: https://policy.pinterest.com/it/privacy-policy
Dylog: https://www.dylog.it/privacy
WAIVER OF COOKIES The user, at any time, can refuse to accept all or some of the cookies used by our websites, in fact each browser has specific configuration instructions.
For further in-depth analysis:
Google Chrome: https://support.google.com/chrome/answer/95647?hl=it
Mozilla Firefox: http://support.mozilla.org/it/kb/Attivare%20e%20disattivare%20i%20cookie
Internet Explorer: http://windows.microsoft.com/it-it/windows7/block-enable-or-allow-cookies
Apple Safari: https://support.apple.com/it-it/guide/safari/sfri11471/mac
GOOGLE ANALYTICS
Google Analytics cookies can be disabled by the user by following the procedure indicated by Google (https://tools.google.com/dlpage/gaoptout?hl=it).