Privacy Policy – Data Processing Notice pursuant to Article 13 of EU Regulation No. 679/2016
This section contains information regarding the management of user data on the website hotelincanto.it, owned by Portasud Srl, with registered office in Villanova – Ostuni (BR), Via Consolato Veneziano 30, ZIP 72017, VAT No. 02533770745. Portasud Srl is a limited liability company duly registered with the Chamber of Commerce, Industry, Handicraft, and Agriculture of Brindisi (REA No. BR-153283) – certified email: portasudsrl2017@pec.it – CIS BR07400191000020705 – Region of Apulia.
This privacy policy is provided only for hotelincanto.it and not for any other websites that may be accessed by users via links contained within this site.
The purpose of this document is to provide information on the methods, timing, and nature of the information that data controllers must provide to users when connecting to the web pages of hotelincanto.it, regardless of the purpose of the connection, in accordance with Italian and European legislation.
This policy may be subject to changes due to the introduction of new regulations; users are therefore encouraged to consult this page periodically.
If the user is under the age of 16, pursuant to Article 8, paragraph 1 of EU Regulation 2016/679, consent must be authorized by a parent or legal guardian.
Data Processing
Data Controller – The data controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of processing personal data and is also responsible for security aspects.
For this website, the data controller is Mr. Giancarlo Antonio Lanzilotti, sole director of Portasud Srl, VAT No. 02533770745, REA No. BR-153283, PEC: portasudsrl2017@pec.it – CIS BR07400191000020705 – Region of Puglia.
Data Processor – The data processor is the natural or legal person, public authority, agency, or other body which processes personal data on behalf of the data controller.
Pursuant to Article 28 of EU Regulation 2016/679, Mr. Giancarlo Antonio Lanzilotti is also appointed as the data processor for hotelincanto.it.
Data Processing Location – Data processing related to the use of hotelincanto.it takes place at the registered office of Portasud Srl, in Villanova -Ostuni (BR), Consolato Veneziano 30, ZIP 72017.
Data Processing Methods – Like all websites, this one uses log files in which automated information collected during user visits is stored. This information may include:
Internet Protocol (IP) address;
Browser type and parameters of the device used;
Name of the Internet Service Provider (ISP);
Date and time of the visit; Referring and exit web pages;
Possibly, the number of clicks.
Such information is processed automatically and collected in aggregate form for the sole purpose of verifying site functionality and ensuring security. This data is processed based on the legitimate interests of the data controller.
For security purposes (spam filters, firewalls, virus detection), the automatically recorded data may also include personal data, such as the IP address, which could be used, in accordance with applicable laws, to block attempts to damage the website or other users.
These data are not used for user identification or profiling but only to protect the website and its users. This processing is based on the legitimate interests of the controller.
If the site includes a form to request information, it automatically collects certain identifying data from the user, including the email address. These data are voluntarily provided by the user when requesting services. By entering these data, the user explicitly accepts this privacy policy and consents to the data possibly being shared with third parties if required to fulfill specific user requests.
The data will be used exclusively to provide the requested service and will be stored only for the time necessary to deliver that service. Information made public by users through services or tools offered by the site is provided voluntarily and consciously. The site cannot be held responsible for any violations of the law by users. It is the user’s responsibility to verify they have permission to input personal data of third parties or content protected by national or international regulations.
Purpose of Data Processing
Data collected during the operation of the site is used exclusively for the above-mentioned purposes and is stored only as long as necessary to carry out said purposes, and in any case no longer than ten years.
Data collected for security purposes (e.g., blocking harmful access attempts) will be stored only as long as needed to achieve that purpose. Data Provided Voluntarily by the User As noted, the voluntary and explicit sending of emails to the addresses listed on this site entails the acquisition of the sender’s address and any other personal data included in the message.
Summary privacy notices will be progressively shown or made available on pages set up for specific services upon request.
Browser Configuration Support
Users can manage cookies through their browser settings. Deleting cookies may remove preferences previously set for the site. For more information and support, refer to your browser’s help pages.
User Rights
Under Article 13, paragraph 2 of EU Regulation 2016/679, users are informed of the existence of the following rights:
Right to access their personal data (Art. 15, EU Regulation); Right to update (Art. 7, para. 3, letter a, Italian Legislative Decree 196/2003), rectify (Art. 16, EU Regulation), or supplement (Art. 7, para. 3, letter a, D.Lgs. 196/2003);
Right to restrict processing (Art. 18, EU Regulation) or object to processing for legitimate reasons (Art. 21, EU Regulation); Right to data portability (Art. 20, EU Regulation);
Right to erasure (Art. 17, EU Regulation), anonymization, or blocking of data processed unlawfully, including data that does not need to be stored for the purposes for which it was collected (Art. 7, para. 3, letter b, D.Lgs. 196/2003);
Right to be informed that any of the above actions (rectification, deletion, etc.) have been communicated to those to whom the data was disclosed (Art. 7, para. 3, letter c, D.Lgs. 196/2003), unless impossible or requires disproportionate effort.
Requests may be sent to the data controller informally or using the template provided by the Italian Data Protection Authority, via email to: privacy@hotelincanto.it.
In the event of a violation, users have the right to lodge a complaint with the Garante per la Protezione dei Dati Personali (Italian Data Protection Authority).
Data Transfer Outside the EU
This website may share some collected data with services located outside the European Union, specifically through social plugins and Google Analytics.
Such transfers are authorized under Article 45, paragraph 1 of EU Regulation 2016/679 and do not require additional consent.
The companies involved ensure compliance with the Privacy Shield Framework.
No data will be transferred to third countries that do not meet the requirements of Article 45 and following of the Regulation.
Data Security
This website processes user data lawfully and correctly, implementing appropriate security measures to prevent unauthorized access, disclosure, modification, or destruction of data.
Processing is carried out using IT and/or telematic tools, following organizational procedures and logic strictly related to the purposes indicated.
In some cases, categories of authorized personnel (administrative, commercial, marketing, legal, system administrators) or external parties (third-party service providers, hosting providers, IT companies, communication agencies) may access the data.
Changes to this Policy
This document, published at hotelincanto.it, constitutes the privacy policy of this site.
It may be subject to changes or updates. In the event of significant changes or updates, users will be notified appropriately.
This document was last updated on the date indicated at the bottom of the page to comply with legal requirements, particularly the EU Regulation 2016/679 (GDPR).