Hotel Arcom Palace

PRIVACY

データ構造

Hotel Arcom Palace Via Orvieto 14/I 00071 Pomezia (RM) Telefono: +39 06 91802118 Fax: +39 06 9120075 E-mail: info@arcompalace.it

会社データ

Ragione Sociale: Edilizia Romagna 87 Srl Sede legale: Via Orvieto 14/I 00071 Pomezia (RM) P.IVA / CF: 01923911000

Privacy

ABOUT THE NOTIFICATION

This section describes the management methods practised by the site in question regarding the processing of the personal data of its users.
In compliance with EU regulation 2016/679 (GDPR), Personal data Protection Code, this information is made available to those interacting with the web services of EasyConsulting S.r.l., hotel services provider for the Hotel Arcom Palace.

This information only relates to the website of Hotel Arcom Palace, and not to any other websites that may be visited by the user via its links.

The information is also in accordance with EU regulation 2016/679 (GDPR) that specifies some minimum requirements for online gathering of personal data and, in particular the methods, times and nature of the information that the data controllers must provide to users when they visit websites, regardless of the aims of said visit.


THE DATA CONTROLLER

In accordance with EU Regulation 2016/679 (GDPR), the data controller is Edilizia Romagna 87 Srl legally registered Via Orvieto 14/I 00071 Pomezia (RM), via their legal representative, C. F. and Registration Number in the Register of Companies of Rome 07975240586, VAT Number 01923911000, with registered office in Pomezia (RM) Via Orvieto 14 / I - CAP 00071, contacted at the e-mail address privacy@pec.arcompalace.it


DATA PROCESSING SITE

Data processing linked to the web services of this site occurs at the premises of the data controller.
No data made obtained from the web service is communicated to third parties unless strictly relevant to the aim of the processing or required by laws or regulations.
The EasyConsulting S.r.l. company which manages the website for the Hotel Arcom Palace, provides the data acquired from the site to Edilizia Romagna 87 Srl the data controller.


EXTERNAL DATA PROCESSOR

Pursuant to EU regulation 2016/679 (GDPR), External Data Processor, owner of the booking platform HOTELEASYRESERVATIONS, is Easy Consulting Srl company. based in Via Nicolo III n.4 - 00165 Rome (http://www.easyconsulting.com), which does not deal directly with the personal data of customers but carries out the activities of IT management (web site hosting and IT security measures) ).


DATA PROCESSING SITE

Data processing linked to the web services of this site occurs at the premises of Data Controller.
EasyConsulting S.r.l., which manages the website for Arcom Palace, provides the data acquired from the site to Edilizia Romagna 87 Srl (Data Controller), by adopting appropriate security measures.


DATA PROCESSING AIMS

Personal data supplied voluntarily and optionally by users who send requests to receive information on the hotel's services (prices, availability of the rooms and convention rooms, etc.), register for the newsletter, make online bookings or simply send employment requests by sending CVs in electronic form, are used only for completing the service requested and are not communicated to third parties unless required by law or where strictly relevant and necessary for fulfilling the requests.

In particular, personal data provided voluntarily by the data subject will be gathered through telematic means directly and/or through delegated third parties (companies for email services, companies for hosting the websites) for the following purposes:
- to allow the users to make and confirm the booking by providing credit card data as guarantee;
- to carry out specific services requested during booking;
- to use the credit card issued as guarantee for the possible debit of any penalty in the event of cancellation beyond the term allowed for cancelling the reservation as defined during booking, or in the event of non-arrival of guests on the agreed date (no-show procedure);
- to evaluate any CVs sent that are compatible with open internal positions;
- anonymous statistics (to evaluate the number of accesses, etc.);
- to fulfil the current administrative, accounting and tax obligations, as well as to comply with laws and regulations.


LAWFULLNESS of processing

The legal basis of the processing is the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;.

Apart from that specified for navigation data, the user is free to provide personal data to request the services offered by the company. Failure to provide such data may make it impossible to obtain the requested service.

If voluntarily provided in the field notes of the reservation form data included in the particular categories provided for in Article 9 of EU Regulation 2016/679 (also known as "sensitive data"), that is personal data suitable for revealing the racial and ethnic origin, religious beliefs, philosophical or other, political opinions, membership of parties, trade unions, associations or organizations of a religious, philosophical, political or trade union nature, as well as personal data suitable for revealing the state of health indispensable for provide specific services based on special needs and / or conditions (food allergies, disabled people, etc.), these data will be treated with the utmost care and confidentiality and exclusively for the purposes of the related conferment, based on consent from She lent by accepting this privacy policy and in compliance with the general authorization of the Guarantor Privacy no. 5/2016.

Data will not be disclosed.


DATA COMMUNICATION AND DIFFUSION

No data deriving from the web service is communicated to third parties if not strictly relevant the purpose of the processing or imposed by laws or regulations.

Personal data, if necessary, can be communicated to:

- EasyConsulting S.r.l. as external manager of the processing;

- to public bodies or offices according to legal and / or contractual obligations;

- to debt collection companies and banking institutions for the management of receipts and payments deriving from the execution of the stay;

- to any consultants and external companies specifically appointed to perform tax and tax advisory services on our behalf;

- to collaborators or companies providing services when the communication is necessary for the use of the services of the structure by the data subject.


PROCESSING METHODS

Personal data are processed using manual and automated tools, through the adoption and compliance with appropriate security measures in compliance with the provisions of the European Regulation 679/2016 (GDPR), so as to minimize the risk of destruction or loss, also accidental, of the data itself, of unauthorized access or of tprocessing not allowed or not in accordance with the purposes of the collection.

Personal data are processed exclusively by authorized persons, trained in matters of confidentiality and security of personal data.


DATA RETENTION

In full respect of the Art. 5.1. lett. e) GDPR, the collected data will be kept only for the time necessary to achieve the purpose for which they were collected, unless different requirements deriving from legal obligations.


Transfers of personal data to third countries

Personal data will be processed by Data Controller within the territory of the European Union.

If for technical, operational or marketing reasons it is necessary to use entities located outside the European Union or transfer some of the data collected to technical systems and services managed in the cloud and located outside the Union area European, the processing will be regulated in accordance with the provisions of Chapter V of the Rules and authorized on the basis of specific European Union decisions. All necessary precautions will therefore be taken to ensure the most complete protection of personal data by basing this transfer: a) on adequacy decisions of the third country recipients expressed by the European Commission; b) on appropriate guarantees expressed by the third party recipient pursuant to art. 46 of the Rules; c) on the adoption of binding corporate rules, so-called Corporate binding rules.


CV MANAGEMENT

Edilizia Romagna 87 Srl reserves the right to evaluate CVs received for vacancies within the hotel that are either current or may become available in the near future.

Any CVs considered of interest will be kept for up to a year and will be treated with complete respect of the minimum security requirements in compliance with EU regulation 2016/679 (GDPR).
Nonetheless, all candidates are asked to respect the following rules in transmitting their CVs in electronic form:
- EasyConsulting S.r.l. in their role of external data processor;
- trasmettendo il curriculum in formato pdf;
- public offices and organisations as a function of legal and/or contractual obligations;
- credit recovery companies and banking institutes for the management of payments resulting from the fulfilment services;
- eventual consultants and external companies commissioned specially to carry out tax and contribution consultation activities on our behalf;
- collaborators or companies providing services when the information is necessary for the use of the hotel's services by the data subject;


DATA SHARING

Inside the Company Edilizia Romagna 87 Srl personal data acquired from the website may be processed exclusively by personnel officially appointed and instructed in matters of confidentiality and security of personal data.

The personal data of the data subject, if necessary, can be communicated to:
- EasyConsulting S.r.l. in their role of external data processor;
- public offices and organisations as a function of legal and/or contractual obligations;
- credit recovery companies and banking institutes for the management of payments resulting from the fulfilment services;
- any consultants and external companies commissioned specially to carry out tax and contribution consultation activities on our behalf;
- collaborators or companies providing services when the information is necessary for the use of the hotel's services by the data subject.


CATEGORIES OF DATA GATHERED

Navigation Data

The software applications used in the functioning of this website acquire, during their normal running, some personal data the transmission of which is implied in the framework of the normal IP protocol of Internet communication. This information are not gathered to be directly associated with the identified interested parties, but which by their very nature could, through subsequent elaboration and correlation with data kept by third parties (providers), permit the identification of users.
This category of data includes IP addresses or dominion names of computers used by visitors to the site, the date and time of the request, URI (Uniform Resource Identifier) addresses of the resources requested, the size of the file obtained in answer from the server, the numerical code indicating the state of the reply given by the server (OK, error, etc.), and other parameters regarding the operative system and the computer environment of the user.
This data is used exclusively to gather anonymous statistical information regarding the use of the site and to control its correct functioning, and is cancelled immediately after processing. This data could also be used by judicial authorities to assess responsibility in the event of hypothetical computer crimes against the site; notwithstanding this eventuality, the data regarding web contacts is stored for no longer than seven days.


Data Provided Voluntarily by the User.

The optional, specific and voluntary sending of emails to the addresses indicated on this site includes the subsequent acquirement of the sender's address, which is necessary for replying to questions, as well as of any other personal data included in the email.


CONTENT THE USER - ADDRESS MANAGEMENT AND INVIO OF EMAIL MESSAGES:

Mailing List or Newsletter
This type of services allows you to manage a database of email contacts, phone contacts or any other type of contact used to communicate with you.
as the User's interaction with them, such as information about clicks on the links included in messages.

MailChimp (The Rocket Science Group, LLC.)
MailChimp is an email address management and emailing service provided by The Rocket Science Group, LLC.
Personal Data collected: email.
Place of processing: USA – Privacy Policy


INTERACTION WITH THE HOTEL THROUGH LIVE-COBOOKING PLATFORM:
This platform, if enabled, allows the hotel to communicate with the visitor through a chat on the website with the ability to interact via popup and activate a co-browsing session to display the browser window and assist the user during navigation. This platform does not collect or display sensitive data and the navigation data collected is limited to the official website of Hotel Arcom Palace and the HOTELEASYRESERVATIONS.COM booking platform. Other data such as IP are detected anonymously and are therefore neither registered nor communicated to the company.


INTERACTION WITH SOCIAL NETWORKS AND EXTERNAL PLATFORMSESTERNE:
This type of services allows you to interact with social networks or other external platforms directly from the pages of this Application.The interactions and information acquired by this Application are in any case subject to the User's privacy settings for each social network.If an interaction service with social networks is installed, it is possible that, even if Users do not use the service, it may collect traffic data related to the pages in which it is installed.

Google+ +1 button and social widgets (Google Inc.)
The +1 button and social widgets of Google+ are Google+ social networking services provided by Google Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy

Pulsante +1 e widget sociali di Google+ (Google Inc.)
Il pulsante +1 e i widget sociali di Google+ sono servizi di interazione con il social network Google+, forniti da Google Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy

Twitter social tweet and widget button (Twitter)
The Tweet button and social widgets on Twitter are Twitter social networking services provided by Twitter Inc.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy


RIGHTS OF THE DATA SUBJECT

The Data Subject has rights recognized by the European Regulation 679/2016 regarding personal data.

Requests can be forwarded to the Data Controller, by downloading from this page (www.arcompalace.it/privacy), the relative application form for the exercise of data subject rights (conforming to the model prepared by the Guarantor) and sending it, once completed, at the e-mail address: privacy@pec.arcompalace.it.

To download the Module, right-click and select "save object as".

Towards Data Processor, the requests must be addressed:

- By e-mail, at: privacy@easyconsulting.com

- Or by mail to EasyConsulting S.r.l., located in Via Nicolò III, 4 - 00165 Rome

In particular, the Regulation provide for the following rights of the data subject:

- the right to obtain confirmation that personal data concerning him is being processed and obtain access to his personal data and related information (art.15 EU Regulation - right of access by the data subject);

- the right to obtain the rectification of inaccurate personal data as well as to have incomplete personal data completed (art.16 EU Regulation - right of rectification);

- the right to obtain the erasure of personal data no longer necessary in relation to the purposes for which they were collected or otherwise processed, or : i) where the data subject withdraws consent on which the processing is based and there is no other legal ground for the processing, ii) the data subject objects to the processing; iii) the personal data have been unlawfully processed; iv) the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject (Article 17 EU Regulation - right to erasure and << to be forgotten >>);

- the right to obtain restriction of processing where the accuracy of personal data is contested, or the processing is unlawful and / or the data subject has objected to processing pursuant to article 21, paragraph 1, Reg. (art.18 EU Regulation - right to restriction of processing);

- the right to receive the personal data in a structured format, commonly used and machine readable format and to transmit those data to another controller without hindrance, when the processing is based on consent or on a contract and is carried out with automated means (art.20 EU Regulation - right to data portability);

- the right to object, for legitimate reasons, to processing (Article 21, paragraph 1 of the EU Regulation – right to object);

- the right to object to processing for direct marketing purposes and related profiling (art.21, paragraph 2, EU Regulation - right to object);

- the right not to be subjected to a decision based solely on automated processing, including profiling, which produces legal effects concerning him/ her or similarly significantly affects him /her., unless such a decision is necessary for the conclusion and / or execution of a contract between the data subject and the data controller , or is authorized by law or based on the explicit consent of the data subject (art.22 EU Regulation).

Finally, we remind you that you have the right to lodge a complaint with the Supervisory Authority (garante@gpdp.it - website http://www.gpdp.it).


Cookie