Privacy policy

Privacy Policy of www.bellahotel, com

This Application collects some Personal Data from its Users.

Data Controller

Leonardo s.a.s
Via Preone, 6 — 25010 San Felice del Benaco (BS) Italy
Contact email: info@bellahotel.com

Types of Data Collected

Among the types of Personal Data collected by this Application, independently or through third parties, there are: email address, first name, last name, Cookie, Usage Data.

Full details on each type of Personal Data collected are provided in the dedicated sections of this privacy policy or through explanatory texts displayed before the Data is collected.

Personal Data may be freely provided by the User or, in the case of Usage Data, collected automatically during the use of this Application.

Mode and Place of Data Processing

Methods of Treatment

The Data Controller adopts appropriate security measures to prevent unauthorized access, disclosure, modification or destruction of the Data.

The processing is carried out using IT and/or telematic tools, with organizational methods and with logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, categories of persons in charge involved in the organization of the site (administrative, commercial, marketing, legal, system administrators) or external parties (such as third-party technical service providers, postal couriers, hosting providers, IT companies, communication agencies) appointed, if necessary, as Data Processors by the Data Controller, may have access to Data. The updated list of these subjects may be requested from the Data Controller at any time.

Legal Basis of the Treatment

The Data Controller may process Personal Data relating to Users if one of the following conditions exists:

• The User has given consent for one or more specific purposes.
• The processing is necessary for the execution of a contract with the User and/or for any pre-contractual obligations.
• The processing is necessary to fulfill a legal obligation to which the Data Controller is subject.
• The processing is necessary for the execution of a task of public interest or for the exercise of public authority vested in the Data Controller.
• The processing is necessary for the pursuit of the legitimate interest of the Data Controller or third parties.

It is always possible to request the Data Controller to clarify the concrete legal basis of each treatment and to specify if the treatment is based on a law, provided for by a contract or necessary to conclude a contract.

Place

The Data are processed at the Data Controller's operating offices and in any other place where the parties involved in the processing are located.

Storage Period

Personal Data is processed and stored for the time required by the purposes for which they were collected.

Therefore:

• Personal Data collected for purposes related to the execution of a contract between the Data Controller and the User will be retained until the execution of that contract is completed.
• Personal Data collected for purposes related to the legitimate interest of the Data Controller will be retained until such interest is satisfied. The User can obtain further information regarding the legitimate interest pursued by the Data Controller in the relevant sections of this document or by contacting the Owner.

The Data Controller may be obliged to keep Personal Data for a longer period in compliance with a legal obligation or by order of an authority.

At the end of the storage period, Personal Data will be deleted. Therefore, at the expiry of this deadline, the right of access, cancellation, rectification and the right to data portability can no longer be exercised.

Purposes of the Processing of Collected Data

User Data is collected to allow the Owner to provide its Services, fulfill its legal obligations, respond to executive requests or actions, protect its rights and interests (or those of its Users or third parties), detect harmful or fraudulent activities, as well as for the following purposes: Contacting the User, Interaction with external social networks and platforms, Viewing content from external platforms, Analysis, Hosting and backend infrastructure.

Details on the Processing of Personal Data

Analysis

The services in this section allow the Data Controller to monitor and analyze traffic data and are used to keep track of User behavior.

Google Analytics with anonymized IP (Google Inc.)
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google uses the Data collected to track and examine the use of this Application, to prepare reports on its activities and share them with other services developed by Google.
Personal Data processed: Cookies; Usage Data.
Place of processing: USA — Privacy Policy — Opt Out.

Contact the User

Mailing List or Newsletter (This Application)
By registering for the mailing list or newsletter, the User's email address is automatically added to a list of contacts to which email messages containing commercial and promotional information relating to this Application can be transmitted.
Personal Data processed: email address; first name; last name.

Contact Form (This Application)
By filling out the contact form with their data, the User consents to their use to respond to requests for information, quotes, or any other nature indicated by the form header.
Personal Data processed: email address; first name; last name.

Viewing Content from External Platforms

This type of service allows you to view content hosted on external platforms directly from the pages of this Application and to interact with them.

Google Fonts (Google Inc.)
Google Fonts is a font style visualization service managed by Google Inc. that allows this Application to integrate such content within its pages.
Personal Data processed: Usage Data; various types of Data as specified by the service's privacy policy.
Place of processing: USA — Privacy Policy.

Google Maps Widget (Google Inc.)
Google Maps is a map visualization service managed by Google Inc. that allows this Application to integrate such content within its pages.
Personal Data processed: Cookies; Usage Data.
Place of processing: USA — Privacy Policy.

Hosting and Backend Infrastructure

This type of service has the function of hosting Data and files that allow this Application to work, allowing distribution and providing a ready-to-use infrastructure to provide specific functionality of this Application.

ArubaCloud (Aruba S.p.A.)
ArubaCloud is a hosting service provided by Aruba S.p.A.
Personal Data processed: various types of Data as specified by the service's privacy policy.
Place of processing: Italy — Privacy Policy.

Interaction with Social Networks and External Platforms

This type of service allows you to interact with social networks or other external platforms directly from the pages of this Application.

Google+ +1 Button and Social Widgets (Google Inc.)
The +1 button and Google+ social widgets are services for interacting with the Google+ social network provided by Google Inc.
Personal Data processed: Cookies; Usage Data.
Place of processing: USA — Privacy Policy.

Facebook Like Button and Social Widgets (Facebook, Inc.)
The Facebook “Like” button and social widgets are services for interacting with the Facebook social network provided by Facebook, Inc.
Personal Data processed: Cookies; Usage Data.
Place of processing: USA — Privacy Policy.

Twitter Tweet Button and Social Widgets (Twitter, Inc.)
The Tweet button and Twitter social widgets are services for interacting with the Twitter social network provided by Twitter, Inc.
Personal Data processed: Cookies; Usage Data.
Place of processing: USA — Privacy Policy.

User Rights

Users can exercise certain rights with reference to the Data processed by the Data Controller.

In particular, the User has the right to:

• Revoke your consent at any time. The User can revoke the previously expressed consent to the processing of their Personal Data.
• Oppose the processing of your Data. The User may object to the processing of their Data when it takes place on a legal basis other than consent.
• Access your Data. The User has the right to obtain information on the Data processed by the Data Controller, on certain aspects of the processing and to receive a copy of the Data processed.
• Verify and ask for correction. The User can verify the correctness of their Data and request that they be updated or corrected.
• Obtain the restriction of treatment. When certain conditions are met, the User may request the limitation of the processing of their Data. In this case, the Data Controller will not process the Data for any other purpose other than their conservation.
• Obtain the cancellation or removal of your Personal Data. When certain conditions are met, the User may request the cancellation of their Data by the Data Controller.
• Receive your data or have it transferred to another owner. The User has the right to receive their Data in a structured, commonly used and machine-readable format and, if technically feasible, to obtain their unhindered transfer to another owner.
• File a complaint. The User may lodge a complaint with the competent personal data protection supervisory authority or take legal action.

Details on the Right to Oppose

When Personal Data is processed for a public interest, in the exercise of public powers vested in the Data Controller or for a legitimate interest of the Data Controller, Users have the right to object to the processing for reasons related to their particular situation.

Users are informed that, if their Data are processed for direct marketing purposes, they can object to the processing without providing any reason. To find out if the Data Controller processes Data for direct marketing purposes, Users can refer to the respective sections of this document.

How to Exercise Your Rights

To exercise the User's rights, Users can send a request to the Data Controller's contact details indicated in this document. Requests are filed free of charge and processed by the Data Controller as soon as possible, in any case within one month.

Cookie Policy

This Application makes use of Cookies. For more information and for detailed information, the User can consult the Cookie Policy.

Learn more about the treatment

Defense in Court

The User's Personal Data may be used for defense by the Data Controller in court or in the preparatory phases for its possible establishment from abuse in the use of this Application or related services by the User.

Specific Information

At the User's request, in addition to the information contained in this privacy policy, this Application may provide the User with additional and contextual information regarding specific services, or the collection and processing of Personal Data.

System Log and Maintenance

For needs related to operation and maintenance, this Application and any third-party services used by it may collect system logs, i.e. files that record interactions and that may also contain Personal Data, such as the User IP address.

Information Not Contained in This Policy

More information in relation to the processing of Personal Data may be requested at any time to the Data Controller using the contact details.

Response to 'Do Not Track' Requests

This Application does not support 'Do Not Track' requests. To find out if any third-party services used support them, the User is invited to consult the respective privacy policies.

Changes to This Privacy Policy

The Data Controller reserves the right to make changes to this privacy policy at any time by notifying Users on this page and, if possible, on this Application and, if technically and legally feasible, by sending a notification to Users through one of the contact details in his possession. Therefore, please consult this page frequently, referring to the date of the last modification indicated at the bottom.

If the changes involve treatments whose legal basis is consent, the Data Controller will collect the User's consent again, if necessary.

Last modified: 3 August 2024

For questions or requests about the privacy policy, contact us at info@bellahotel.com.