PRIVACY - information and consent
(Valid for Italian legislation)
Hotel Residence Naturnserhof declares that data will be treated in respect of basic rights and liberties and
of the dignity of the person concerned, with particular reference to privacy,
personal identity and the right to protection of personal data.
The owner of the data treated is Hotel Residence Naturnserhof with head office at I-39025 Naturno(BZ), Via Stazione27.
Hotel Residence Naturnserhof reserves the right to modify or integrate this information on privacy at any time, particularly in light of modifications in the law or the introduction of new sector regulations.
Aims and purposes of data treatment:
- Compliance with legal obligations and obligations deriving from regulations, European Community regulations and civil and tax legislation;
- Compliance with contractual obligations towards the party concerned;
- Compliance with activities associated with the business of our company, such as the compilation of in-house statistics, invoicing and customer/supplier accounting;
- Commercial purposes such as the dispatch of commercial information (by post, fax and e-mail), marketing, market research, references, the collection, archiving and sharing with third parties of images of projects carried out by Hotel Residence Naturnserhof to be circulated in real time by means of computerised systems and our site www.naturnserhof.com;
- Safeguarding of credits and debt management;
- Insurance purposes, in particular credit insurance.
Dispatch of data
In relation to the purposes indicated above, your personal data will subsequently be communicated if required to:
the Public Administrations and Authorities where provided for by the law;
credit institutions with whom our company has commercial relationships for credit and debt management and financial mediation;
all public or private physical or legal entities (legal, administrative and fiscal consultancies, legal offices, chambers of commerce, etc) when the transmission of said data is necessary or functional to the carrying out of our business and in the ways and for the purposes described above.
Rights of the party concerned The data protection law gives the party concerned specific rights as per article 7. In particular, he may obtain from the data owner confirmation of the existence or otherwise of his personal data, even if not yet registered, and its communication in legible form. The party concerned may request information on the origin of the data, the purposes and methods of treatment and the logic applied in the case of treatment with computerised means, the details of the owner, persons responsible for data treatment and the parties and categories of parties to whom the data may be communicated or who may come to know of it. The party concerned may obtain the confirmation, control, correction, integration, cancellation, transformation in anonymous form or block of data treated in violation of the law. For legitimate reasons, he or she has the right to oppose the treatment of his or her personal data wholly or in part, even if relevant for the purposes for which it was acquired, or request the cancellation, transformation in anonymous form or block of the data treated. Without being required to give a reason, he or she may oppose treatment of the data for the purposes of the dispatch of publicity or direct selling material or for market research or commercial communications. These rights may be exercised by the party concerned or by his delegated representative by request addressed to the person in charge of data treatment, Götsch (Hotel Residence Naturnserhof, Via Stazione 27, 39015 Naturno ) or via e-mail to info@naturnserhof.com
1 Data protection information of the company to the Touristmanager
1.1 The company and the tourist manager
The company Hotel-Residence Naturnserhof***, Via Stazione 27, 39025 Naturno, Phone 0039 0473 667112, e-mail info@naturnserhof.com, („Company“) is the data controller with regard to the processing of personal data in the Tourist Manager, which it uses for guest management.
The company respects and protects the right to data protection and privacy and takes all measures required by law to protect the personal data of guests.
Subsequently, this data protection information will provide you with a quick and easy overview of which personal data of you as an interested party and/or guest will be processed for which purposes and on which legal basis. Furthermore, you will be informed about your rights under data protection law, the so-called data subject rights.
1.2 Data processing in the Touristmanager
With the Touristmanager, the establishment manages and processes in particular the data of its (potential) guests, namely name, address, services used and documents and correspondence relating thereto, date of birth, gender, nationality, country of birth, document data, accounting and payment data, interests made known, incompatibilities made known, disabilities or other health data, registration data and stay data. The company can also use this data to process the payment of the local tax, the notification of persons accommodated in guest establishments (police notification) and the necessary statistics. If the relevant data is not disclosed, the services cannot be provided by the establishment as a rule.
The legal basis for the processing is, on the one hand, the necessity for the fulfillment of the contract of the establishment with the guest or for the implementation of pre-contractual measures, which are taken at the request of the guest (Art. 6 para. 1 lit. b DSGVO) or - in particular with regard to any health data - the respective (explicit) consent (Art. 6 para. 1 lit. a DSGVO or Art. 9 para. 2 lit. a DSGVO), which can be revoked at any time vis-à-vis the establishment in accordance with the processes provided for the respective consent. The revocation can also be declared to the LTS by e-mail to gdpr@LTS.it, whereby the LTS will immediately forward the revocation to the company. With regard to the contractual data processing, the processing shall be carried out until the contractual purposes or the statutory archiving obligations cease to apply, in particular in accordance with tax and/or company law, or with regard to the legal basis of the consent until revocation.
For the technical operation of the Touristmanager, the Company uses IT service providers, namely the LTS - Landesverband der Tourismusorganisationen Südtirols, Gerbergasse 60, 39100 Bozen, Tel +39 0471 978060, Fax +39 0471 977661, e-mail: info@LTS.it, Web: www.LTS.it, ("LTS"), which may have access to the above-mentioned data. The Company has entered into the necessary agreements with the LTS in accordance with data protection law, so that the above-mentioned data are only processed lawfully and securely.
Dies ist eine Vorlage für LTS Mitglieder, die zu prüfen sowie an die eigene Realität und der
daraus resultierenden Datenschutzanforderungen anzupassen ist. LTS & Steger Consulting KG
übernehmen keinerlei Haftung, Anspruch auf Richtigkeit & Vollständigkeit für dieses Dokument.
2 Information about your data subject rights
2.1 Information on the rights of the data subjects
The data subject has the right to obtain confirmation from the controller as to whether personal data concerning him or her are being processed; if this is the case, he or she has a right of access to such personal data and to the information specified in Article 15 of the GDPR.
The data subject has the right to obtain from the controller the rectification without undue delay of inaccurate personal data concerning him or her and, where appropriate, the completion of incomplete personal data (Art. 16 GDPR).
The data subject has the right to obtain from the controller the erasure without delay of personal data concerning him or her, where one of the grounds described in Article 17 GDPR applies, for example, where the processing of the data is no longer necessary for the pursuit of the original purposes (right to erasure).
The data subject has the right to request the controller to restrict processing if one of the conditions listed in Art. 18 GDPR applies, for example if the data subject has objected to the processing.
The data subject has the right to receive the personal data concerning him or her that he or she has provided to a controller in a structured, commonly used and machine-readable format, and he or she has the right to transmit this data to another controller without hindrance from the controller to whom the personal data was provided, under certain circumstances, for example if the processing is based on consent and the processing is carried out with the help of automated procedures (right to data portability Art. 20 DSGVO).
The data subject has the right to object at any time, on grounds relating to his or her particular situation, to the processing of personal data concerning him or her. The controller shall then no longer process the personal data unless it can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defense of legal claims (Article 21 DSGVO).
Without prejudice to any other administrative or judicial remedy, any data subject shall have the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or the place of the alleged infringement, if the data subject considers that the processing of personal data concerning him or her infringes the GDPR (Art. 77 GDPR). In Italy, the competent supervisory authority is: Garante per la protezione dei dati personali.
2.2 Rights of the data subject
If you can exercise it, according to art. 7 of Legislative Decree 196/2003 and articles 15 to 22 of EU Regulation 679/2016, you have the right at any time:
(a) request confirmation of the existence or non-existence of personal data;
b) to obtain information on the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the personal data have been or will be disclosed and, where possible, the retention period;
c) to obtain the correction and deletion of data;
d) to obtain the restriction of the treatment;
e) (where applicable) to request data portability, i.e. to obtain data from a Data Controller in a structured format commonly used and read by an automated device, and to freely transfer such data to another Data Controller;
f) oppose the processing at any time, including in the case of treatment for direct marketing purposes;
Dies ist eine Vorlage für LTS Mitglieder, die zu prüfen sowie an die eigene Realität und der
daraus resultierenden Datenschutzanforderungen anzupassen ist. LTS & Steger Consulting KG
übernehmen keinerlei Haftung, Anspruch auf Richtigkeit & Vollständigkeit für dieses Dokument.
g) to oppose the automated decision-making process regarding natural persons, including procedures based on profiling.
h) to request from the Data Controller access to, rectification, cancellation or restriction of their processing, or to oppose their processing, in addition to the right to data portability;
i) to revoke the consent at any time, without prejudice to the lawfulness of the treatment based on the consent given before the revocation;
j) lodge a complaint with the Data Protection Authority in Rome, Piazza Venezia 11, official website of the Authority www.garanteprivacy.it.
The exercise of the rights is not subject to any particular form and is free of charge