INFORMATION TO USERS PURSUANT TO LEGISLATIVE DECREE 2003/196 AS AMENDED BY LEGISLATIVE DECREE 2018/101 OF ADAPTATION OF NATIONAL LEGISLATION TO THE PROVISIONS OF R. EU 2016/679.
This information has been prepared pursuant to Legislative Decree no. 196 of 30 June 2003, as amended by Legislative Decree 101/2018, as well as Articles 13 and 14 of Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data, and the free movement of such data, and describes what information we collect about our guests, visitors, users of the website, subjects who contact us for information requests.
It is aimed at users who connect and consult the website www.grandhotel-palace.it and use its web services. The information is provided only for the above mentioned site and not for other websites or other pages that may be consulted by the user through special links, even if contained on our site.
The website www.grandhotel-palace.it is owned by Grand Hotel Palace Srl and is managed entirely by the same.
1. Type of data processed and purpose of processing:
1.1 Navigation data
The computer systems and software procedures used to operate this website, as part of their normal operation, automatically acquire in the use of Internet communication protocols some personal data collected not to be associated with identified persons, but which by their very nature could, through processing and association with data held by third parties, allow users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters relating to the operating system and computer environment. These data are used only to obtain anonymous statistical information on the use of the site and to check its proper functioning and are deleted immediately after processing. The data could be used to ascertain responsibility in the event of hypothetical computer crimes against the site: except for this possibility, the data on web contacts do not persist for more than 24 months.
1.2 Data provided voluntarily by users/visitors.
The users/visitors, by connecting to this site, can also send their personal data contained in the appropriate electronic request forms in the different sections of the website to access certain services on request, or to make requests by e-mail. This implies the acquisition by the Company of the sender's address and/or any other personal data that will be processed by Grand Hotel Palace Srl exclusively for the purposes indicated in this declaration. Apart from that specified for navigation data, therefore, users / visitors are free to provide their personal data. Failure to provide such information may only result in the impossibility of obtaining what has been requested. Therefore, visitors are able to navigate the site even without disclosing personal information and data.
In order to use the services, the user may be required to provide some or all of the following data: name, surname, age, street, postal code, e-mail address, address, city, country, date of birth, telephone number, mobile phone number, fax number, period of stay, number of guests (adults and children), payment information, name and surname of additional guests (indication whether they are adults or children). However, additional information may also be required.
What exactly are cookies?
Cookies sent via the website www.grandhotel-palace.it
We use the following cookies:
Consent to cookies
Grand Hotel Palace Srl assumes that the user is in favour of the installation of cookies on his device. When you access our website, you will see a pop-up message requesting your consent to the installation of advertising cookies on your device. To give your consent, you must click on "Accept". Once you have given your consent, the message will not be displayed on subsequent visits.
2. Methods and purposes of processing.
The data acquired automatically are processed by automated tools, in accordance with the operations provided for in the Privacy Code, for all purposes related to navigation on this website.
The data provided directly by users / visitors, collected through the contact forms and stored, subject to specific consent, will be processed for purposes related to:
3. Data security
The systems are equipped with the appropriate and necessary security measures to prevent the loss of data, illicit or incorrect use and unauthorized access. In any case, the treatment will be carried out in compliance with all precautionary measures, which ensure the security and confidentiality.
The Company protects personal data through the application of internationally recognized security levels, as well as through security procedures that protect personal data:
4. Storage period.
5. Exercise of the rights of the data subject.
The interested parties have the right at any time to obtain confirmation of the existence or otherwise of such data and to know its content and origin, verify its accuracy or request its integration, updating, or correction.
Pursuant to the same legislation, they have the right to revoke their consent to the processing, to request the cancellation, transformation into anonymous form or blocking of data processed in violation of the law, and to oppose in any case, for legitimate reasons, to their treatment or to limit the treatment.
Requests should be sent by writing or contacting the data controller at the following addresses:
If you wish to revoke your consent to cookies at any time, you, or another person using your device, have the option of accepting or blocking cookies by changing your browser settings. If you choose to block cookies, you may not be able to make full use of the interactive features of the Grand Hotel Palace website, content and services. For more information about the types of cookies that can be installed on your device and how to refuse them, access the DAA tools here, Your Online Choices here or NEVER here. You can refuse Google Analytics here. In some cases, when the user opts for deletion, a new cookie (rejection cookie) is installed in his browser, which informs the third party provider to stop collecting data from the user's browser and prevents the receipt of advertisements.
The data subject shall also have the right to lodge a complaint with the supervisory authority in his or her Member State.
The site www.grandhotel-palace.it/ is not intended for use by minors, who are not authorized to make purchases through the sites listed. We understand the importance of protecting information for children, especially in an online environment, and therefore we do not knowingly collect or maintain personal information about children.
7. Holder of the treatment.
The owner of the processing of any personal data collected through this site is the Company, a company incorporated under the law Grand Hotel Palace Srl (Tax Code 08354550587/P.Iva 02015610591), with registered office in Terracina (Latina), Via Lungomare Matteotti 2.
Personal data may be processed within the limits and in the manner set out in this declaration by employees and collaborators of the Company designated as persons in charge or responsible for processing, who will receive adequate operating instructions and operate under the direct authority of the data controller.
An updated list of all data processors/providers can be requested from the data controller or the data processor by writing to the following e-mail address: email@example.com.
The data are stored by the Aruba provider in any case within the European Union for the entire time required by law.
8. Communication to third parties.
The user's personal data will not be disclosed. Personal data may be communicated to bodies and institutes for the fulfillment of legal obligations or to the judicial authority, if requested.
Through this website, the Company does not deliberately collect sensitive or judicial personal data.
Sensitive data include personal data revealing racial or ethnic origin, religious, philosophical or other beliefs, political opinions, membership of parties, unions, associations or organizations of a religious, philosophical, political or trade union, as well as personal data disclosing health and sex life. Criminal data includes personal data suitable for the disclosure of measures referred to in Article 3, paragraph 1, letters a) to o) and r) to u) of Presidential Decree no. 313 of 14 November 2002, on criminal records, the registry of administrative penalties dependent on crime and the related pending charges, or the status of defendant or suspect under Articles 60 and 61 of the Code of Criminal Procedure.
We recommend that you do not provide such information through this site. In the event that the communication becomes necessary, we invite you to send to the registered office of the Company by registered letter a special declaration containing the written consent to the processing of these sensitive information.
9. Data transfer abroad.
Any data acquired and collected while browsing the website are stored by the provider Aruba, are not transferred abroad and, however, should the need arise, it will be the Company's responsibility to take the necessary measures to ensure that such processing complies with the law.