ITA
ENG
1. Data Controller and contact details
The Data you provide as User of the Website will be processed by Divini Itinerari S.r.l.s. , C.F./P.IVA 03727830782, with registered office in VIA B. TELESIO, 51 - 87036 - RENDE (CS), who can be contacted at the e-mail address info@divinitinerari.it, as Data Controller (hereinafter," Owner or Divine Itineraries").
2. Types of data processed
The Data Controller may process, in accordance with this Information, the following personal data collected through the Site:
personal data (e.g. name, surname);
contact details (e.g. e-mail, telephone);
address data (e.g. address, zip code, city);
payment data (e.g. cardholder, number, CVC and CVP, expiry date);
navigation and geolocation data, collected through cookies and in accordance with the information on cookies provided below (e.g. IP address).
3. Purpose, Legal Basis and Explanation
|
Purpose |
Legal basis |
Activities |
Storage |
|
a) Reservation of experiences and purchase of food and wine experiences |
Execution of the contract and/or pre-contractual measures (article 6.1, letter b of the Regulation) |
We will process your personal data for the creation of a personal account, to speed up the purchase procedure, to allow you to view the status of reservations and receive updates, change personal settings and update your account. |
12 Months |
|
b) Administrative-accounting purposes |
Legal obligation (Article 6.1, letter c of the Regulation) |
We will process your personal data to fulfill any legal, accounting and tax obligations. |
10 Years |
|
c) Contact and customer care |
Execution of the contract and/or pre-contractual measures (article 6.1, letter b of the Regulation) |
We will process your personal data if you have requested information using the form in the "Contact us" section. |
12 Months |
|
d) Subscription to the Newsletter and communications with promotional content |
Consent (Article 6.1, letter a of the Regulation) |
Your personal data will be processed by Divini Itinerari and/or by one of its partners (independent data controller) for sending - by e-mail - communications with promotional, informative and/or advertising content in relation to services offered by Divini Itineraries and/or from one of its partners. You can stop receiving these communications, without any consequences for you (beyond the fact that you will no longer receive further communications of this kind from Divini Itinerari and/or one of its partners) by using the link at the bottom of each of these e- mail. |
12 Months |
|
e) Soft spam |
Legitimate Interest (art. 6.1, letter f of the Regulation) |
We will process your personal data to occasionally send you - by e-mail - communications regarding services similar to those you have purchased through the Divini Itinerari website. You can stop receiving these communications, without any consequences for you (beyond the fact that you will no longer receive further communications of this kind from Divini Itinerari) by using the link at the bottom of each of these e-mails. |
12 Months |
|
f) Detect or prevent fraudulent activity |
Legal obligation (Article 6.1, letter c of the Regulation) |
We may need to process your personal data in order to counter attacks by third parties on our IT systems or on our site. |
10 Years |
|
g) Compliance with orders from judicial or other public authorities |
Legal obligation (Article 6.1, letter c of the Regulation) |
We may have to provide your Data to judicial authorities or other public authorities by virtue of legal obligations or express requests. |
10 Years |
4. Nature of the contribution
The provision of data to take advantage of the Divini Itineraries offer is necessary for the provision of our services; without it, you will not be able to register and we will not be able to provide you with the functionality of our platform. Consent for the processing of your data for marketing purposes is optional and failure to provide it does not entail any negative consequences for your user experience.
5. Methods of data processing
Your personal data is processed with the support of computerized and/or paper means and is protected by adequate security measures capable of guaranteeing confidentiality and security. No fully automated decision making is intended.
6. Data communication
For the purposes indicated in par. 3, your personal data may be transferred to the following categories of recipients, located within the European Union:
Partner of Divini Itineraries, for which the communication of data is necessary in order to guarantee the services and/or products purchased (such as wineries, restaurants, SPAs, B&Bs) and agritourisms and who will process your data as independent Data Controllers of the Treatment;
service providers who provide assistance and/or advice to the Data Controller with reference to the activities of the sectors (for example legal and accounting).
subjects who need to access the data for purposes related to the contractual relationship in place with Divini Itinerari, within the limits strictly necessary for the performance of their duties (such as, for example, banks and credit institutions, IT service providers, hosting providers, communication and marketing);
subjects and authorities whose right of access to Users' personal data is expressly recognized by law, by regulations or by provisions issued by the competent authorities;
These subjects may act, depending on the circumstances, as independent Data Controllers or Data Processors. A complete list of Managers can be requested by contacting the Owner.
7. Overseas data transfers
We do not transfer data outside the European Economic Area. In any case, any transfer to third countries will take place according to one of the methods permitted by current law, such as for example the adoption of Standard Clauses approved by the European Commission, the selection of subjects adhering to international programs for the free circulation of data or operating in countries considered safe by the European Commission. Contact us for more information.
8. Interaction with Third Party Platforms
Through the pages of the Site it is possible to interact with third-party platforms (e.g. PayPal, Stripe, Facebook and Google). To know your information acquired from third-party platforms, you can consult the respective privacy policy.
9. Data Retention Terms
You have the right, at any time, to ask the Data Controller for access to your personal data (art. 15), rectification (art. 16) or cancellation (art 17) of the same, or limitation of treatment ( art. 18) or to oppose their treatment (art. 21), to the portability of your personal data (art. 20) and finally to lodge a complaint with the Supervisory Authority (Guarantor for the Protection of Personal Data). You will be able to assert your rights as expressed by EU Regulation 2016/679, by contacting the Data Controller, by sending an e-mail to info@divinitinerari.it or by writing to the office of the Data Controller indicated above.
10. Changes and Updates
The Owner reserves the right to make changes to this information whenever necessary. Users will be notified of relevant changes and additions via the Website.