Information on the processing, communication, and dissemination of data, in application of the European Data Protection Regulation – -Reg. 679/2016 (GDPR)
This website collects some personal data from its users.
We care about your privacy and will use the personal information you have provided us only to serve you better and provide you with the requested information.
We will not sell your data to third parties and will not use them to send you spam e-mails.
Terme di Recoaro spa
Via fonti centrali sn
Recoaro Terme (VI) 36076
This data is collected through:
Contact forms (personal data supplied such as: name, surname, e-mail)
Google analytics, with anonymous IPs: usage statistics, duration of stay on the site, etc.
Pursuant to articles 13 and 14 of EU Regulation 2016/679 (GDPR), laying down provisions for the protection of individuals with regard to the processing of personal data, the Data Controller is required to provide interested parties with some information regarding the use of their personal data.
In this case, the undersigned Terme di Recoaro Spa, in the performance of its activities/functions needs to process information and personal data related to its organization, acting in the role of Data Controller under the GDPR.
The information and personal data provided by you or acquired within the contractual relationship with the undersigned, are treated in compliance with the laws in effect and the obligations of confidentiality that have always inspired our company.
PURPOSE OF DATA PROCESSING
The data processing is aimed at the pre-contractual and contractual management of the activities carried out on behalf of the client by Terme di Recoaro Spa Particular emphasis shall be placed on the aims of:
1. Commercial and pre-contractual management, in relation to all the activities that preceded the contractual stipulation;
2. Administrative and accounting management;
3. Management of services of supply, delivery and assistance of solutions and products supplied as per contract and/or order
4. After-sales commercial and promotional management, in relation to solutions, new products, organization of events, in line with the proposed services and solutions.
The processing will be carried out with the main support of electronic tools and may concern data and information present on computer or paper media, by authorized individuals.
In general, for the purposes mentioned above, as appropriate, the data will be stored at our company, at the customer’s IT infrastructure, at our datacenters, or at our suppliers’ datacenter, and will be communicated exclusively to the competent subjects, internal or external to the organization, as described below, for the completion of the services necessary for the correct management of the contractual relationship and the underlying services with guarantee of protection of the rights of the interested party.
LEGALITY AND LEGAL GROUNDS OF THE TREATMENT
The processing of personal data by the Controller is legitimized by the following conditions (art.6 of the GDPR):
The interested party has given his consent to the processing of his personal data for one or more specific purposes.
The processing is necessary for the execution of a contract of which the interested party is a party and for the possible execution of pre-contractual or post-contractual measures adopted at the request of the same.
The processing is necessary to fulfill a legal obligation to which the Data Controller is subject (in particular for administrative and accounting purposes).
For a detailed reading of the cookies used, click here.
Google Analytics – Anonymized IPs
This site collects, through Google analytics and its cookies, generic data on the behavior of users within it, the IP addresses are anonymized and no identification id is assigned to the user.
In this way, we can improve the quality of our service without collecting your personal data.
Since this data is collected by Google, it is also hosted in web spaces outside the European Union; in this context, Google acts as Data Processor.
Flamingo – Email archive and requests sent
We collect data sent through the contact forms, as well as any consent given and the collection date. This data is used only for Customer Service, without any commercial purpose.
At any time, you can contact us at firstname.lastname@example.org to request the sending, modification, or cancellation of this data, or part of it.
Archived contacts are periodically deleted, so after a certain period of time it will no longer be possible to request them.
This data is stored locally in our hosting space, hosted in Italy
Content embedded by other websites
Articles on this site may include embedded content (such as videos, images, articles, etc.). Content embedded by other websites behaves exactly the same way as if the visitor had visited the other website.
How long we keep your data
The data is kept only for the period necessary for the purposes for which they are processed or within the terms provided for by national and EU laws, rules and regulations to which the organization must comply (ex. accounting and tax regulations, etc.). It is expected that a periodic check will be carried out annually on the data processed and on the possibility of being able to delete it if no longer necessary for the intended purposes.
If you leave a comment, the comment and its metadata are kept indefinitely. This is how we can automatically recognize and approve any subsequent comments instead of keeping them in a moderation queue.
For users who register on our website (if any), we also store the personal information they provide in their user profile. All users can view, modify, or delete their personal information at any time (except for their username, which they cannot change). Website administrators can also view and edit this information.
Rights of the Data Subject
If you have an account on this site, or you have left comments, you can request to receive a file exported from the site with the personal data we have about you, including the data you have provided. You can also request that we delete all your personal data. This does not include data that we are obliged to keep for administrative, legal, or security purposes.
Where we host your data
Outside of your Google Analytics data, your data is kept on our servers, kept up-to-date and safe.
E-mails sent via the contact form are received by people trained to process such personal data and on secure computers.
Your Analytics and third-party Data is collected and hosted on servers outside the European Union of such third parties and securely managed according to applicable regulations.
If you upload images to the website, you should avoid uploading images that include embedded location data (EXIF GPS). Website visitors can download and extract any position data from the images on the website.
If you leave a comment on our site, you can choose to save your name, e-mail address and website in cookies. They are used for your convenience so that you do not have to re-enter your data when you leave another comment. These cookies will last for a year.
If you have an account and access this site, a temporary cookie will be set to determine if your browser accepts cookies. This cookie does not contain personal data and is deleted when you close the browser.
When you log in, several cookies will be set to save your login information and screen display options. The access cookies last two days, while the cookies for the screen options last one year. If you select “Remember me”, your access will continue for two weeks. If you log out of your account, access cookies will be removed. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie does not include personal data, but simply indicates the ID of the article you just edited. It expires after 1 day.
How we protect your data
This site protects your data through SSL encryption (also used when sending e-mails from contact forms).
The site itself is kept up-to-date and is protected by defense systems against cyber attacks. People who have administrative access to this site have received data security training.
What procedures we have set up to prevent data breaches
Our internal programs are programmed to notify us in case of detection of breaches or breaches of the site.