Privacy Policy - Hotel The Park Fanano

WEBSITE PRIVACY POLICY

WHY THIS NOTICE

This page describes how the website is managed with regard to the processing of personal data of users who consult it.

It is an informative note for the protection of personal data provided also pursuant to art. 13 of EU Regulation 2016/679 (henceforth GDPR) to those who interact with the web services of theparkfanano.it accessible telematically from the address: https://www.theparkfanano.it corresponding to the home page or rather the initial page of the site. The information is provided only for the theparkfanano.it website and not for any other websites that may be consulted by the user via links.

This privacy statement is also inspired by Recommendation no. 2/2001 that the European authorities for the protection of personal data, brought together in the Group established by art. 29 of Directive no. 95/46/EC, adopted on 17 May 2001 to identify certain minimum requirements for the collection of personal data online and, in particular, the methods, timing and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection. The purpose of this privacy policy is to provide transparent information about the data collected by the theparkfanano.it website and the ways in which it is used. Consultation and interaction with this website on the part of the user may involve the release of information in the nature of personal data.

DATA CONTROLLER

The Data Controller of such data is Zenit Hotel & Leisure Srl, with registered office in Modena (Italy), Via Pietro Giardini 470 41126 Modena, in the person of Michelangelo Marinelli.

PURPOSES AND METHODS OF PROCESSING

Personal data will be processed by means of computerised/telematic instruments for purposes strictly necessary for consulting theparkfanano.it website and for purposes connected with and/or instrumental to such consultation. Such data are processed automatically and collected in an exclusively aggregate form in order to verify the correct functioning of the site, as well as for security reasons. The personal data provided by users forwarding contact requests are used for the sole purpose of performing the service or provision requested. Data will be processed using instruments and methods designed to ensure the confidentiality and security of the data, in compliance with the provisions of Articles 32 et seq. of the GDPR and in accordance with the relevant national legislation in force. Specific security measures are observed to prevent data loss, unlawful or incorrect use and unauthorised access.

LEGAL BASIS AND LAWFULNESS OF PROCESSING

The processing of personal data for the above purposes does not require consent as it is necessary to allow consultation of the theparkfanano.it website. The personal data provided by users who request dispatch of informative material (CDroms, newsletters, publications, etc.) are used for the sole purpose of performing the service or provision requested.

PLACE OF DATA PROCESSING

The processing operations connected to the web services of this website take place at the aforementioned premises and are carried out only by technical personnel, or by any persons authorised to carry out occasional maintenance operations. No data deriving from the web service is communicated or disclosed to third parties.

TYPE OF DATA PROCESSED AND RETENTION TIMES

Navigation data

The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. This information is not collected in order to be associated with identified interested parties, but by its very nature could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) notation addresses of the resources requested, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment. This data is used for the sole purpose of obtaining anonymous statistical information on the use of the site and to check its correct operation. The data could be used to ascertain responsibility in the event of hypothetical computer crimes to the detriment of the site.

Data provided voluntarily by the user

The optional, explicit and voluntary sending of electronic mail to the addresses indicated on this site entails the subsequent acquisition of the sender’s address, which is necessary to reply to requests, as well as any other personal data included in the message. This data is kept for the time necessary to process the requests received. After this time, your data will be anonymised or deleted, unless it is required to be kept for other, different purposes envisaged by express legal provisions (e.g. archiving purposes).

Cookies

No personal data of the users is acquired in this regard by the site.

We do not use cookies for the transmission of personal information, nor do we use c.d. persistent cookies of any kind, or systems for tracking users. The use of c.d. session cookies (which are not stored in a persistent way on the user’s computer and disappear with the closing of the browser) is strictly limited to the transmission of session identifiers (consisting of random numbers generated by the server) necessary to enable safe and efficient site exploration.

The c.d. session cookies used on this website avoid the use of other computer techniques potentially detrimental to the confidentiality of users’ browsing and do not allow the acquisition of personal data identifying the user. For more information about the type of cookies used, the purposes and how to disable it, the user can consult the specific section

NATURE OF PROVISION OF DATA AND CONSEQUENCES OF REFUSAL

Apart from that specified for browsing data, the user is free to provide Zenit Hotel & Leisure Srl with the personal data indicated in the request forms or in any case indicated in contacts with Zenit Hotel & Leisure Srl or to request the dispatch of informative material or other communications. Therefore, refusal to provide compulsory data will make it objectively impossible to pursue the processing purposes set out in this informative note and to obtain what has been requested.

RIGHTS OF THE INTERESTED PARTY

Pursuant to and for the purposes of the GDPR, you are granted the following rights as a Data Subject, which you may exercise vis-à-vis theparkfanano: a) the right to obtain from the Data Controller confirmation as to whether or not personal data concerning you are being processed and, if so, to obtain access to the personal data and information envisaged by Art. 15 of the GDPR and, in particular, those relating to the purposes of the processing, the categories of personal data concerned, the recipients or categories of recipients to whom the personal data have been or will be communicated, the storage period, etc. b) the right to obtain, where inaccurate, the rectification of personal data concerning you, as well as the integration of the same where they are considered incomplete, always in relation to the purposes of the processing (Art. 16); c) the right to erasure of data (‘right to be forgotten’), where one of the cases referred to in Art. 17 applies; d) the right to restriction of processing, in the cases provided for in Art. 18; e) the right to data portability pursuant to Art. 20; f) the right to object to the processing pursuant to Art. 21; g) the right to withdraw consent at any time without prejudice to the lawfulness of the processing based on consent given before the revocation, only for the purposes for which consent is the legal basis (Art. 7). These rights may be exercised by means of a request sent by registered letter with return receipt to the Data Protection Officer (DPO) at the following address Zenit Hotel & Leisure Srl, with registered office in Modena (Italy), Via Pietro Giardini 470 41126 Modena, or by e-mail to the following addresses: info@theparkfanano.it or by using the appropriate form available on the website of the Data Protection Authority http://www.garanteprivacy.it/.

Finally, please note that you have the right to lodge a complaint with the Garante per la Protezione dei Dati Personali or another supervisory authority pursuant to Article 13(2)(d) of the GDPR

CHANGES TO THIS POLICY

This Policy is subject to change. You are therefore advised to check this section regularly.

Last updated: 11 March 2025