Ristorante Al Salisà | ©2024 All rights reserved
INFORMATION ON THE PROCESSING OF PERSONAL DATA FOR THIS WEB SERVICE PURSUANT TO ART. 13 REG. EU 679/2016
Dear user,
The current regulations require us to provide information regarding the processing of personal data for this web service (hereinafter also referred to as the “Service”) with reference to the processing of personal data of users/visitors who consult and use it.
This information notice is provided pursuant to EU Regulation 2016/679 (hereinafter also referred to as the "Regulation" or "GDPR") and subsequent amendments, to all users interacting with the Service. The validity of the information contained on this page is limited solely to the Service and does not extend to other external websites that may be accessible via hyperlink.
For the Regulation on the processing of personal data:
a) We, that is, the Entity whose data are indicated on the institutional website to which this service is connected, are the "Controller" of the Processing;
b) You are the "Data Subject", and you have the rights and obligations that we explain to you below.
1. PROCESSING
1.1. The Data Controller, whose details are indicated on the Entity's institutional website, will process the Data according to the principles of lawfulness, fairness, transparency, purpose and storage limitation, data minimization, accuracy, integrity, and confidentiality.
2. CATEGORIES OF DATA PROCESSED
2.1. Browsing data
The IT systems and software programs used for the operation of the site collect certain personal data whose transmission is implicit in the use of Internet communication protocols (e.g., IP addresses or domain names of the computers used by users connecting to the site, URI -Uniform Resource Identifier- addresses of the requested resources, time of the request, method used to submit the request to the server, size of the file obtained in response, numerical code indicating the status of the response from the server -successful, error, etc.- and other parameters related to the user's operating system and IT environment). Although this information is not collected to be associated with identified data subjects, by its nature it could, through processing and association with data held by third parties, allow users to be identified. This data is used solely for the purpose of obtaining anonymous statistical information on the use of the Service and to check its correct functioning. It should be noted that the aforementioned data could be used to ascertain responsibility in the event of computer crimes against the Service or other sites connected or linked to it: except for this eventuality, at present, web contact data does not persist for more than 7 days.
2.2. Cookies
A cookie is a small text file in which brief information relating to a user's activity on a website is collected and stored on the device that accessed the web service. In compliance with measures no. 229 of May 8, 2014 and 231 of June 10, 2021 of the Data Protection Authority, it is hereby informed that this web service uses exclusively technical cookies (which do NOT require consent): they are necessary for the functioning of the web service and allow access to its functions (so-called navigation cookies) and are mostly session cookies whose use is limited to the sole transmission of session identification data in the form of numbers automatically generated by the server necessary to allow safe and efficient browsing of the site and to manage authentication to online services and reserved areas. They are also used for setting certain preferences such as language and for analytical/monitoring functions to collect information, in aggregate form, on the number of users and how they visit the site in order to carry out anonymous statistical analyses for site optimization without the use of analytical cookies. Session cookies are not stored persistently on the user's computer and are deleted when the browser is closed. The session cookies used on this site avoid the use of other IT techniques potentially detrimental to the confidentiality of users' browsing and do not allow the acquisition of personal identification data of the user. Other technical cookies have a longer duration specified in the list below. No use is made of cookies for the transmission of personal information. No use is made of user profiling cookies.
2.3. Data voluntarily provided by the user
No personal data is required from the user to browse the website. However, any contact with the Data Controller, for example to request information via a form, or the spontaneous sending of messages, emails or traditional mail to the Data Controller's addresses, will result in the subsequent acquisition of the sender's personal data, necessary to respond to the requests, as well as any other personal data voluntarily included by the user in the relevant communications (the communication of personal data relating to a minor must be made by both parents or by a person exercising parental authority over the minor).
3. PURPOSES AND LEGAL BASES OF PROCESSING
3.1. The Data Controller carries out the Processing for the purpose of:
a) Allow you to browse and use the Service;
b) perform the requested Service or provision;
c) fulfill administrative, financial, accounting and/or tax obligations;
d) fulfill any obligation required by law and/or an order of the Public Authority;
e) if necessary, to assert or defend a right in court;
f) your data may also be processed in order to send you communications of public interest or public utility;
3.2. The legal bases of the Processing are as follows:
a) the need to allow you to browse and access the requested Web Service, as well as to provide the service itself;
b) perform as per the previous points 3.1 a-f;
c) the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Data Controller;
d) any tax data: need to fulfill obligations referred to in the previous points 3.1 c-e.
4. COMMUNICATION TO RECIPIENTS AND DISCLOSURE
4.1. The Data may be communicated to third-party Recipients (including Public Administration or Judicial Authorities) only to the extent strictly necessary in relation to the purposes mentioned above, or in any case only for the necessary requirements for the Service, or those required by law or by order of the Authority.
4.2. The categories of Recipients are as follows:
a) subjects necessary for carrying out the activities connected and consequent to the execution of the Service, bound by a data processing agreement (external processors);
b) Persons in charge and persons authorized by the Data Controller who have committed to confidentiality or have an adequate legal obligation of confidentiality (e.g. employees and collaborators of the Data Controller);
4.3. The Data Controller may also have to disclose Data to comply with legal obligations or to comply with orders from public authorities, including judicial authorities.
4.4. The Data will not be subject to disclosure.
5. DATA RETENTION PERIOD
5.1. The Data Controller retains your Data for the time strictly necessary to achieve the Purposes referred to in point 3.
5.2. Such data will be deleted when they are no longer necessary for the purposes indicated above, without prejudice to further retention obligations provided for by law.
6. NATURE OF DATA DISCLOSURE
6.1. The provision of Personal Data referred to in point 2.1 is necessary for navigation: failure to provide it would in fact make it impossible.
6.2. The communication of Personal Data referred to in point 2.3 is optional.
7. CONSEQUENCE OF REFUSAL TO PROVIDE DATA
7.1. As specified in the previous point 6.1, it is not technically possible to refuse to provide Navigation Data (insofar as they are Personal Data).
7.2 In case of refusal to provide the Personal Data referred to in point 2.3, it will not be possible to respond to requests and/or provide the service.
8. RIGHTS OF THE DATA SUBJECT
8.1. You, as the Data Subject, have the right to:
a) access your Data held by the Controller and obtain a copy of it;
b) to request its rectification and/or deletion, where and to the extent that the conditions are met;
c) request the Restriction of Processing, where and to the extent that the conditions are met;
d) to object, for reasons related to their particular situation, to the processing of personal data concerning them.
e) lodge a complaint with the Data Protection Authority (www.garanteprivacy.it).
9. THE DATA PROTECTION OFFICER
9.1. The Data Controller Entity has a Data Protection Officer (also "DPO"), whom you can contact at the address indicated on the institutional website of the Entity to which this Service is connected.
10. UPDATES OF INFORMATION
10.1. This information refers to the methods of processing the personal data of visitors during navigation and use of the web service. The possible entry into force of new sector regulations, as well as the constant review and updating of the Service, may require these methods to be changed over time. We therefore invite you to periodically consult this page. For this purpose, this document indicates the date of the update.
Last updated: April 16, 2024
Ristorante Al Salisà | ©2024 All rights reserved