2. Data and Purpose of the processing
We do not automatically collect any Data.
User Data will be processed for the following cases:
1. Manage and guarantee the request for information sent by the User through our online site, including the management of requests for information relating to job offers, online CV compilation and requests for the insertion of new job positions;
2. Provide the newsletter service;
3. Perform statistical analyses and proceed with internal customer profiling/registration.
In all the cases listed above, the User Data processed consists of non-sensitive personal data such as, for example, name, surname, residential address, email and telephone number.
In the case under 1) the Data will be processed only to allow the User to use the requested service and manage requests for information, sending applications, compiling CVs, requests for the insertion of new job positions.
The Data processed under point 1 are essential and indispensable to provide the requested service.
Therefore, if the User does not provide such Data, we will not be able to process the request.
In case sub 2) the Data will be processed, subject to the express consent of the User, in order to provide a newsletter service, which will be sent to the email address provided by the User, in order to inform the latter about news, promotions and events relating to VILLA ELENA products.
In case sub 2) the Data will be processed, subject to the express consent of the User, in order to provide a newsletter service, which will be sent to the email address provided by the User, in order to inform the latter about news, promotions and events relating to VILLA ELENA products.
In the case under 3), the Data will be processed, subject to the express consent of the User, for marketing and profiling purposes such as, for example, to analyse the User’s preferences in order to provide a promotional service in line with the preferences expressed during previous requests.
In any case, data processing takes place using electronic tools.
3. Storage and security: where and how do we store your Data?
Any Data that may be processed and collected will be kept in a private and protected server located in Italy.
The Data collected through the Site will not be kept by the Site manager but transmitted directly to VILLA ELENA which will keep them on the server referred to in this article.
The processing is carried out using computer and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated in point 2.
The Data are processed in such a way as to ensure adequate security and we take, for their protection, technical and organizational measures to prevent unauthorized or unlawful processing, loss, destruction or accidental damage to them.
4. Storage period and duration of processing
The Data collected under 1) art. 2 will be retained for the period necessary to guarantee the requested service, and for a period of time not exceeding the achievement of the purposes for which they are processed as provided for in point 2 and provided that such purposes do not cease to be lawful under applicable law, without prejudice to retention for a longer period if provided for by sector laws (e.g. tax legislation) and in any case for the period deemed necessary to demonstrate the correct fulfillment of the service (legitimate interest).
The Data collected under 2) and 3), art. 2 will be retained until the User revokes consent.
5. Disclosure, transmission and transfer of Data to third parties
The Data processed under 1) art. 2 will not be communicated and/or transferred to third parties, except to subjects strictly necessary to perform the service and exclusively for these purposes.
The Data possibly processed (including any IP addresses) under 2) and 3) art. 2 may be communicated and/or disclosed to third parties for statistical, profiling, commercial, advertising and marketing purposes.
In all cases, the Data Controller may share the acquired Data with other entities of the group, which may process them within the limits of this information and for the sole purposes for which consent was given.
6. Disclosures of Data for Security Reasons
We reserve the right to decipher, preserve and disclose all information that we may reasonably deem necessary to (i) satisfy requests from Public Authorities (ii) demonstrate the correct implementation of this Policy (iii) combat and prevent fraud or technical problems harmful to security (iv) respond to requests for assistance sent by the User.
7. Change of ownership
In the event of termination of the company that owns the processing or bankruptcy, transfer to a third party, change of corporate structure and/or ownership, the Data collected will be saved and protected in accordance with the terms established by this Policy or deleted.
8. User Rights
8.1. 8.1. Knowledge of Data
The User has the right, at any time, to obtain confirmation of the existence or otherwise of Data concerning him, even if not yet registered, and their communication in an intelligible form.
The User also has the right to obtain the updating, rectification or, when interested, the integration of the Data and to verify its accuracy and know its content, origin and duration of the Data retention period.
8.2. 8.2. Revocation of consent and deletion of Data
The User has, at any time, the right to request and obtain the cancellation of the Data and to revoke the consent previously given to their processing, without prejudice, in the latter case, to the lawfulness of the processing based on the consent before revocation. Requests for cancellation and revocation must be addressed to the Data Controller and must be able to be exercised as easily and by the same means by which the consent was given and the data were transmitted.
8.3. 8.3. Data Portability
The User has the right to receive in a structured, commonly used and machine-readable format the personal data concerning him/her and which have been provided to the Owner in the forms and pursuant to this Privacy Policy.
8.4. 8.4. Complaint
The User has the right to lodge a complaint with a supervisory authority if he/she notices violations of this Privacy Policy or of the applicable rules by the Data Controller.
9. Data Breach
In the event of a Data breach, the Data Controller shall notify the breach to the competent supervisory authority without undue delay and in any case within 72 hours of becoming aware of it.
Likewise, if a data controller has been appointed and the latter becomes aware of a data breach, he or she must inform the Data Controller without delay within 72 hours of becoming aware of it.
The Data Controller shall inform the User of any violations in the event of a high risk to the rights and freedoms of natural persons.
10. Changes to the Privacy Policy
We may make unilateral changes to this Privacy Policy at any time if necessary. In any case, if this were to happen, the User will be informed of any changes through appropriate publicity on this page.
11. Reference legislation
This Privacy Policy complies with the provisions of the relevant Italian law and European law (EU Reg. 679/2016 and in particular Articles 13 and 14).
12. Use of cookies
See the Cookie Policy page to learn more.
13. Contacts
For any questions or concerns regarding this Privacy Policy or its implementation or if you would like to request changes to the collection and/or deletion of Data, you can contact us at the following email address: villaelenarooms@gmail.com.
