INFORMATION REGARDING THE PROCESSING OF CUSTOMERS’ PERSONAL DATA PURSUANT TO ART. 13 OF REGULATION (EU) 2016/679 (“GDPR”)

Dear navigator, you are viewing our website,

Pursuant to current legislation on the protection of personal data (EU Regulation no. 679 of 2016 and Privacy Code Legislative Decree 196/2003 as amended by Legislative Decree 101/2018), we wish to inform you that the processing of the same is our priority and is carried out with correctness and transparency, for lawful purposes in the protection of confidentiality and the rights of guests who choose us.

DATA CONTROLLER

METATUR CONSULTING srls, in Calata Trinita’ Maggiore, 53 -80134 Napoli

CONTACTS

Phone: +39 .081 0607948 – e-mail: metaturconsulting@gmail.com

1. TYPES OF DATA PROCESSED

The Data Controller collects and uses personal data voluntarily provided by the interested party, depending on the specific purposes pursued, as specified below:

contact data: name, surname, address, email, telephone, address of residence, email address, telephone/mobile number, images, date and place of birth, details of identity documents, also of any minors;

Tax and payment data: tax code, VAT number, information on payment methods and means, such as credit/debit cards, iban and accounts concerning online payment services;

– information on previously booked services, such as booking history, booked services and related amounts;

– information relating to your family and its members, for the purposes of booking and its management, such as the name and surname of the spouse, number of children and their age, as well as any other data necessary for the correct provision of services, including any intolerances, allergies, pathologies and health status of the guests, which require special precautions on the part of the staff assigned to the accommodation facilities, to whom these data may also be communicated for the aforementioned purposes;

Browsing data: like all websites, this site also uses log files in which information collected automatically during user visits is stored. The information collected may be the following: Internet Protocol (IP) address, browser type and parameters of the device used to connect to the site, name of the internet service provider (ISP), date and time of visit, web page of origin (referral) and exit of the visitor, country of origin, possibly the number of clicks;

– Cookies

2. PURPOSE, DURATION AND LEGAL BASIS OF THE PROCESSING

The processing is also carried out with the help of computerized means for the following purposes:

A) to acquire and confirm your reservation of accommodation services and ancillary services, and to provide the requested services;

Base giuridica : il trattamento è necessario all’esecuzione del contratto di cui Lei è parte o all’esecuzione di misure precontrattuali adottate su Sua richiesta. Il Suo consenso è richiesto solo nel caso in cui siano conferiti dati particolari. In caso di rifiuto a conferire i dati personali, non potremo confermare la prenotazione o fornirle i servizi richiesti

Conservazione: Il trattamento cesserà alla sua partenza, ma alcuni suoi dati personali potranno o dovranno continuare ad essere trattati per le finalità e con le modalità indicate nei punti successivi

B) to fulfill the obligation provided for by the “Consolidated text of public security laws” (article 109 R.D. 18.6.1931 n. 773) which requires us to communicate to the Police Headquarters, for public security purposes, the details of the clients accommodated according to the methods established by the Ministry of the Interior (Decree 7 January 2013).

Base giuridica: Il conferimento dei dati è obbligatorio e non richiede il suo consenso, e in caso di rifiuto a fornirli non potremo ospitarla nella nostra struttura.

Retention: The data acquired for this purpose are not stored by us;

C) to fulfill the current administrative, accounting and tax obligations. For these purposes, the processing is carried out without the need to acquire your consent. The data are processed by us and our representatives, and are communicated externally only in compliance with legal obligations. In case of refusal to provide the necessary data for the above obligations, we will not be able to provide you with the requested services;

Strong legal basis: Legal obligations

Storage: strong The data acquired for these purposes are stored by us for the time prescribed by the respective regulations (10 years, and even longer in the case of tax assessments);

D) to facilitate the registration procedures in case of your subsequent stays at our facility;

Strong legal basis: your consent, revocable at any time

Storage: your data will be kept for a maximum period of two years, and will be used when you are our guest again for the purposes referred to in the previous points

E) to send you our promotional messages and/or updates on the rates and offers practiced through Mailchimp;

Strong legal basis: your consent that you can revoke the consent at any time

Conservazione: Your data will be stored for a maximum period of two years and will not be communicated to third parties;

F) to verify the correct functioning of the site, exclusively in aggregate and anonymous form; for security purposes (spam filters, firewalls, virus detection) to block attempts to damage the site itself or in the case of harmful or criminal activity; for the purpose of communicating data to third parties who perform functions necessary or instrumental to the operation of the service;

Strong legal basis: the processing is necessary for the execution of the contract to which you are a party;

More information about the data retention period and the criteria used to determine this period can be requested by writing to the data holder.

BOOKING OFFICE

Personal data on reservations will be processed electronically and on paper for the sole purpose of guaranteeing the reservation of the room(s) under the agreed conditions. The booking management platform is owned by Octorate.com, the external data controller, who will communicate the data of the interested party to the accommodation facility for ordinary activities related to hospitality management. The data will be recorded within our electronic databases accessible to personnel duly appointed and instructed in matters of security and confidentiality of personal data.

To confirm the reservation, a credit card will be required as a guarantee, it being understood that the customer can decide to pay in cash at the end of the stay.

3. RECIPIENTS OF THE TREATMENT

Your data may be communicated to third parties, exclusively for technical and operational needs strictly related to the purposes listed above and in particular to the following categories of subjects:

• To the staff and collaborators of the Data Controller in their capacity as agents;
• To Entities, professionals, companies or other structures entrusted by us with the processing related to the fulfillment of administrative, accounting, commercial and management obligations related to the ordinary conduct of our economic activity, also for credit recovery purposes. The data processors are expressly appointed by the data controller on the basis of a written agreement pursuant to articles 28 and 29 of the European Regulation;
• To public authorities and Administrations for the purposes related to the fulfillment;
• To banks, financial institutions or other subjects for whom the transfer of data is necessary for the purpose of carrying out the activities of our Company, in particular in relation to the fulfillment, by us, of the contractual obligations assumed towards you;

The updated list of external managers is available at the registered office of the data controller. At any time you can request the updated list by contacting the data controller at the address and contacts indicated in this act.

The information may also be communicated whenever the communication may be necessary to fulfill requests from the Judicial or Public Security Authority. The data collected will not be disclosed under any circumstances. In this regard, we would like to point out that in the case of overnight stay at this facility, the Owner, by virtue of current Italian legislation, is obliged to transmit the data of the people who stay at the property for the night to the aforementioned Authorities.

4. DATA TRANSFERS

Personal data is stored on servers located in Italy, and in any case within the European Union. In any case, it is understood that the Data Controller, if necessary, will have the right to move the servers even outside the EU. In this case, the Data Controller ensures from now on that the transfer of non-EU data will take place in accordance with the applicable legal provisions, subject to the stipulation of the standard contractual clauses provided by the European Commission.