Dear User:
we would like to inform you that EU Regulation 2016/679 governs the processing of personal data regarding natural persons. Pursuant to the above-mentioned Regulation, such processing will be based on the principles of fairness, lawfulness, transparency and protection of your personal data and your rights.
DATA CONTROLLER
The Data Controller is VENEZIA 1937 S.r.l. with registered office in Venice, 30124, Sestiere S. Marco 5278, Tax code/VAT number 04294270279, Email info@venezia1937.it, phone 0415334736.
The updated list of Data Protection Officers is stored at the registered office of the Data Controller.
PROCESSING PURPOSES
The personal data we process are needed to:
• handle requests for information regarding the Data Controller’s activities and any further requests for assistance from your part.
LEGAL BASIS OF THE PROCESSING
The legal bases of the processing are:
• Express consent with reference to the above-mentioned purposes.
CONSEQUENCES OF FAILURE TO PROVIDE PERSONAL DATA
Regarding any personal data processed for the purposes specified above, the provision of personal data is not a contractual obligation. Therefore, provision of your personal data is voluntary. However, in case of failure to provide such data, it will not be possible for us to handle your requests.
CATEGORIES OF PERSONAL DATA PROCESSED
In particular, we would like to inform you that we may process the following categories of personal data:
• Identification data
• Contact details
• Data concerning the types of services purchased or of your interest.
PARTIES WITH WHICH WE WOULD LIKE TO SHARE YOUR PERSONAL DATA
Your personal data will be processed by our staff in a strictly confidential way.
LOCATION OF THE PROCESSING
The processing of personal data collected by filling out the “Contact Us” section take place mainly at the registered office of the Data Controller. The personal data collected will not be disclosed and/or disseminated to third parties and will not be transferred to countries outside the EU.
DATA PROTECTION OFFICERS
To the extent of what falls under their duties, the following parties are appointed as external data protection officers (but not limited to):
• Professionals or service companies for managing and maintaining the website, operating on behalf of the Data Controller.
METHOD OF THE PROCESSING
This Privacy Policy relates to personal data submitted by the user (technically: the data subject) when filling out the “Contact Us” section on the website. We would also like to inform you that, as established by Art. 5 of the GDPR 679/2016, your personal data will be processed lawfully, fairly and transparently; it will be collected for specific, explicit, and legitimate purposes and later processed in a manner consistent with those purposes; it will be adequate, relevant and limited to what is necessary for the purposes for which they are processed; it will be accurate and, if necessary, updated; it will be stored in a form that allows the identification of the data subjects; it will be processed in a manner that ensures adequate security of personal data, including protection – through appropriate technical and organizational measures – from unauthorized or unlawful processing and accidental loss, destruction or accidental damage.
DATA STORAGE
The data collected will be processed for managing the requests and will be stored for a limited time corresponding to the processing and management of the requests, or until the data subjects requests their deletion.
RIGHTS OF THE DATA SUBJECT
The data subjects have the rights referred to in Articles 15, 16, 17, 18, 20 and 21 of the aforementioned EU Regulation and, in particular, the right to access their personal data, to ask for their rectification, updating, erasure, limitation of processing if incomplete, incorrect or collected in violation of the law, as well as the right to portability and to oppose the processing for legitimate reasons, by sending an e-mail to the following address: : info@venezia1937.it
The data subjects are also granted the right to lodge a complaint with the Data Protection Authority.