Via Marinelli, 31, 33017 Tarcento (UD)
In this page, we describe how we use the personal details of the people who visit our site.
This information is provided in compliance with Article 13 of Legislative Decree 196/2003 (the “Data Protection Code”), affecting anyone interacting with the web services provided by the Data Controller CHER PAOLO – Via Marinelli, 31, 33017 Tarcento (UD) C.F. CHRPLA64M16L483X, that provides hotel services on behalf of Villa de Rubeis Florit (Tarcento, Udine), accessible online at:
The information refers exclusively to Villa de Rubeis Florit (Tarcento, Udine) site and not to any other sites accessed by the user from links on our site.
The information also takes account of Recommendation no. 2/2001, brought in by the European Data Protection Authorities acting as part of the Group set up by Article 29 of European Directive 95/46/EC on 17 May 2001 to set out the minimum requirements for collecting personal data online, and in particular the methods, time and nature of the information to be provided to users by the data owner when they connect to a website, regardless of the reason for the connection.
THE DATA CONTROLLER
In compliance with Article 28 of Legislative Decree 196/2003, the Data Controller is CHER PAOLO – Via Marinelli, 31, 33017 Tarcento (UD) C.F. CHRPLA64M16L483X, owner of Villa de Rubeis Florit (Tarcento, Udine), Tel +390415962333 – Fax: +390415962330 – email: email@example.com
An updated list of internal and external Data Controllers is available from the company on request.
THE DATA CONTROLLER
In compliance with Article 29 of Legislative Decree 196/2003, the Data Controller and System Administrator for the www.villaderubeisflorit.it website and the www.blastnessbooking.com online booking platform integrated in the site is BLASTNESS S.r.l. with registered offices at 27 Piazza J.F. Kennedy, 19125, La Spezia (SP), Tel. 0187 599737- Fax 0187 020349 – email: firstname.lastname@example.org.
LOCATION OF DATA HANDLING
The data handling relating to the web services on this site takes place at the offices of the owner and the external data controller.
No information from the web service will be disclosed by either company to third parties unless strictly necessary for the purposes of the data handling or required by law.
Personal details provided voluntarily on the website for making an online booking or signing up for the newsletter will be stored in the BLASTNESS Srl database, the owner of the hotel booking engine (www.blastnessbooking.com) used for the http://www.villaderubeisflorit.it website, and responsible for handling all the personal data associated with the site.
BLASTNESS, which manages Villa de Rubeis Florit (Tarcento, Udine) website, provides all the details acquired from the site to Cher Paolo, the Data Controller.
DATA HANDLING PURPOSES
The personal details provided voluntarily by users submitting requests for information on hotel services (prices, availability of rooms and conference rooms, etc.), signing up to the newsletter, making online bookings or simply applying for jobs by sending a CV in electronic format, will only be used to perform the service requested and will not be disclosed to third parties unless required by law or strictly necessary and relevant to fulfilling the requests.
In particular, personal details provided voluntarily by data subjects will be collected with computerised methods and handled using electronic equipment either directly or by appointed third parties (email or web hosting provider) for the following purposes:
to check the availability of the room requested using anonymous data entered such as arrival date, number of nights, number of adults and children;
to make and confirm bookings, providing credit card details as security;
to use the credit card provided as security to charge penalties for cancellation after the date specified in the booking confirmation, or failure to arrive on the date agreed (no-show procedure);
to send email marketing communications in compliance with paragraph 4, Article 130 of Legislative Decree 196/2003;
to answer questions on our hotel service (availability of rooms, prices, conference rooms, restaurant, etc.);
to sign up for the newsletter in order to receive periodic marketing or promotional communications;
to evaluate any CVs submitted according to internal recruitment needs;
to conduct anonymous statistical analyses (number of accesses, etc.);
to comply with current administrative, accounting, tax, legal and regulatory requirements.
The details we handle may include sensitive data, defined by paragraph d, Article 4 of Legislative Decree 196/2003 as “personal details that could reveal race or ethnic origin, religious, philosophical or other beliefs, political opinions, membership of political parties, trade unions, associations or religious, political or trade union organisations, in addition to personal details that could reveal state of health or sex life” provided voluntarily by you in the notes field on the booking form, as relevant to our services (food allergies, disabled guests, health information, etc.).
These details will be handled in compliance with Data Protection Authority authorisation no.5, which is limited to data and operations that are essential for meeting pre-contractual obligations that are part of the hotel’s activities, providing specific goods or services requested by the data subject.
In compliance with Article 26 of Legislative Decree 196/2003, any sensitive data will be handled by us with maximum confidentiality, and will not be disclosed.
Cher Paolo, reserves the right to assess CVs sent for potential employment positions in the hotel or which may occur in the future.
CVs considered of interest may be held for up to one year, and will be handled in full compliance with the minimum security measures set out in Articles 33, 34 and 35 of Legislative Decree 196/2003.
In any case, we recommend you follow these indications for submitting CVs in electronic format:
use the European format for compiling your CV;
submit your CV in pdf format;
avoid putting sensitive information on your CV (in particular regarding your state of health, religious, philosophical or political beliefs) that is not relevant to the job offer;
grant your consent to handle any sensitive data that may be relevant to your application (e.g. if you belong to a protected category).
The Company will provide adequate information under the terms of Article 13 of Legislative Decree 196/2003 during interviews with candidates.
The data in CVs will be handled for purposes strictly relating to staff assessment, recruitment or selection for long or short term employment or work experience, or to allow the selected candidate to prepare their degree thesis at our facilities.
DATA DISCLOSURE AND COMMUNICATION
Personal data acquired by Cher Paolo, through the www.villaderubeisflorit.it website may exclusively be handled by staff who have been officially appointed and trained in confidentiality and personal data security.
If necessary, the personal details of the data subject may be communicated to:
BLASTNESS Srl as external data handler;
public authorities, in compliance with the law and/or contractual obligations;
credit recovery agencies or banks for managing payments relating to your stay;
specifically appointed external tax consultants or companies;
service providers or consultants where necessary to allow the data subject to access the hotel’s services.
TYPES OF DATA HANDLED
The IT software necessary for this site to function collect certain types of personal data, the transmission of which is implicit in the use of internet communication protocols, as part of their normal operations.
This information is not collected in order to be associated directly with identified users, but by its nature it may allow for users to be identified when used and associated with data held by third parties (providers).
This category of data includes IP addresses or dominium names of the computers used when connecting to the site, the date and time of the request, URI (Uniform Resource Identifier) addresses of the resources requested, the size of the file obtained in response from the server, the numeric code indicating the status of the response from the server (successful, error, etc.) and other parameters relating to the user’s operating system and software environment.
This data is used exclusively to collect anonymous statistical information on the use of the site and to check that it is functioning correctly, and is eliminated immediately after handling. The data may be used by judicial authorities to assign liability in the case of hypothetical computer crimes damaging the site: except in this case, data on web contacts are not stored for more than seven days.
Data provided voluntarily by the user
When you voluntarily and explicitly send an email to the addresses indicated on this site, the sender’s address, along with any other personal data included in it, will be stored in order to answer the request.
Cookies are text files that are stored on your computer and read remotely by our servers or the servers of third parties used by us. The use of permanent technical cookies or session cookies (which are not stored for any length of time on the user’s computer, and are eliminated on closing the browser) is strictly limited to technically providing the service requested by the user and transmitting the session identification data (formed of random numbers generated by the server) necessary to allow you to explore the site securely and efficiently.
The technical cookies used by the site allow us to avoid using other IT techniques that could affect the confidentiality of user navigation.
The following table lists the third party cookies used:
Download cookies table: third party cookies list
How can I disable cookies?
Most browsers accept cookies automatically, but you can choose to refuse them or limit their use.
By disabling cookies, you may find problems when navigating the website or limitations using all the services on the site (such as bookings, accessing your private area, etc.).
If you don’t want your computer to receive and store cookies, you can change your browser security settings (Internet Explorer, Google Chrome, Safari, etc.).
If you want to change your cookie settings from the settings of the various browsers, follow these brief instructions for the four most popular browsers:
Microsoft Internet Explorer
Click on the “Tools” icon in the top right hand corner and select “Internet Options”. In the pop-up window, select the “Privacy” section where you can change your cookie settings.
Click on the spanner icon in the top right hand corner and select “Settings”. Select “Under the hood”, where you can change your cookie settings.
Select “Options” from the drop-down menu in the top left hand corner. In the pop-up window, select “Privacy” to change your cookie settings.
Select “Preferences” from the drop-down menu in the top right hand corner. Select “Security” to change your cookie settings.
DATA HANDLING METHODS
Personal data is handled in hard-copy format or using automatic tools only for the length of time strictly necessary for the purposes for which they are collected.
Specific security measures are observed to prevent the loss, incorrect or illegal use of the data or unauthorised access to it.
YOUR RIGHTS AS DATA SUBJECT
Data subjects are entitled to request confirmation of the existence or otherwise of the data, its contents and origin, verify its accuracy and request it to be integrated, updated or corrected (Article 7, Legislative Decree 196/2003).
In compliance with the same article, you are entitled to ask for any data handled in violation of the law to be deleted, rendered anonymous, blocked or, for legitimate reasons, to oppose its use.
Requests must be submitted to Cher Paolo, Tel. +39 041 5962333, Fax +39 041 5962330, email@example.com
You have the following rights:
Article 7 – Right to access personal data and other rights
1. The data subject is entitled to request confirmation of the existence of any personal data regarding them, even if they are not registered, and to request a copy of them in an intelligible format.
2. The data subject is entitled to be informed of:
a) the origin of the personal data;
b) the purposes and methods of handling;
c) the logic by which the handling takes place if using electronic tools;
d) the identification details of the Data Controller, Data Handlers and designated representative as per Article 5, paragraph 2;
e) the persons or categories to whom the personal data may be communicated or who may access the data in their role as designated representative within the State territory, managers or employees.
3. The data subject is entitled to request:
a) the data to be updated, corrected or, if desired, integrated;
b) the data to be eliminated, transformed into anonymous form or blocked if handled in violation of the law, including data which does not need to be stored for the purposes for which it was collected or subsequently handled;
c) confirmation that all persons to whom the data was communicated or disclosed were made aware of the operations and their contents set out in letters a) and b), unless this is impossible or results in a use of means that is clearly disproportionate to the rights in question.
4. The data subject is entitled to partially or totally oppose:
a) the handling of their personal data, even if relevant to the purpose for which they were collected, in the case of legitimate reasons;
b) the handling of personal data regarding them for the purposes of sending advertising material or direct sales, market research or commercial communications.