Privacy Policy

This page represents the “Privacy Policy” of this website and aims to provide information on how personal data of users interacting with this website, or using the services provided by it, are processed, as well as to provide the information required by Articles 13 and 14 of EU Regulation 2016/679.
This information is provided solely for this website and not for other websites that the user may access through links present on the pages of this site.

The EU Regulation 2016/679 on the protection of personal data (hereinafter, the “Regulation”) establishes rules regarding the protection of natural persons with respect to the processing of personal data, as well as rules relating to the free movement of such data, and safeguards the fundamental rights and freedoms of natural persons, particularly the right to personal data protection.

Article 4(1) of the Regulation defines “Personal Data” as any information relating to an identified or identifiable natural person (hereinafter, the “Data Subject”).

“Processing” means any operation or set of operations, performed with or without automated processes, applied to Personal Data or sets of Personal Data, such as collection, recording, organization, structuring, storage, adaptation or modification, retrieval, consultation, use, communication by transmission, dissemination or any other form of making it available, alignment or combination, restriction, erasure, or destruction (Article 4(2) of the Regulation).

Pursuant to Articles 12 et seq. of the Regulation, the Data Subject must also be informed of the appropriate information regarding the processing activities carried out by the data controller and the rights of Data Subjects.

Data Controller

Hotel Trovatore*** – Via Ugo Foscolo, 23 – Jesolo Lido (VE), Italy
Tel. +39 0421.971596
VAT Number: 03395930278 | REA: 304770 | Share Capital: €25,800.00 | Chamber of Commerce Venice
Email: info@hoteltrovatore.com

The Data Controller has not appointed a Data Protection Officer (DPO), as it is not required under Article 37 of the GDPR.

Purposes and Legal Basis of Processing

The user’s personal data will be processed for the purposes indicated below, based on the legal grounds specified:

  1. For the conclusion and proper performance of the contract to which the Data Subject is a party, or for pre-contractual measures taken at the Data Subject’s request, for the requested information and/or services/products, including subscription to newsletters; also to respond to requests sent by the Data Subject (information/products/services/newsletter subscription). The legal basis for these processing activities is Article 6(1)(b) of EU Regulation 2016/679.
  2. To periodically send, via remote communication technologies (email, phone, SMS, WhatsApp), commercial communications regarding the services, products, and activities offered by the Data Controller. The legal basis is consent under Article 6(1)(a) of EU Regulation 2016/679. The Data Subject may withdraw consent at any time for promotional or marketing purposes by clicking the unsubscribe link in each communication or writing to info@hoteltrovatore.com.
  3. To respond to requests sent by the user via email and/or website form. The legal basis is Article 6(1)(b) of EU Regulation 2016/679.
  4. To enable and ensure functional website navigation, as well as to guarantee an adequate level of security, integrity, and availability. The legal basis is the legitimate interest of the Data Controller under Article 6(1)(f).
  5. Analysis of statistical data, aggregated or anonymized, to monitor the proper functioning of the website, traffic, usability, and user interest. The legal basis is the legitimate interest of the Data Controller under Article 6(1)(f).
  6. To ascertain, exercise, or defend a right in legal proceedings. The legal basis is the legitimate interest of the Data Controller under Article 6(1)(f).
  7. To comply with obligations established by law, regulation, EU legislation, or an order of the Authority. The legal basis is compliance with a legal obligation under Article 6(1)(c) of the Regulation.

Types of Data

The following data may be collected and processed to achieve the purposes listed above:

  • Identification data
  • Contact data
  • Contractual relationship data
  • Data regarding the preferences and interests of the Data Subject

Browsing Data

The IT systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols. These are information not collected to be associated with identified subjects, but which, by their nature, could allow identification of users through processing and association with data held by third parties.

This category includes IP addresses or domain names of the computers used by users connecting to the site, URI addresses of requested resources, request time, method used to submit the request to the server, file size obtained in response, numeric code indicating server response status (success, error, etc.), and other parameters regarding the user’s operating system and IT environment.

These data are used solely to obtain anonymous statistical information on website usage and to check its correct functioning and are immediately deleted after processing. They may also be used to ascertain liability in the event of hypothetical computer crimes against the site.

Refusal to Provide Data

Except for browsing data, users/visitors are free to provide their personal data. Providing such data may be necessary, as refusal could prevent the conclusion or proper execution of the contract to which the Data Subject is a party and/or the fulfillment of legal obligations imposed on the Data Controller.

Providing data for processing activities requiring consent is optional; failure to provide such data will not prevent access to the products/services offered by the Data Controller. Even if consent is given, the Data Subject may subsequently object, in whole or in part, to the processing of their personal data for the purposes outlined above by submitting a request to the Data Controller using the contact details provided above.

Source of Data

Data will be provided by the Data Subject or collected from third parties.

Processing Methods

In accordance with Article 5 of the Regulation, personal data will be:

  1. processed lawfully, fairly, and transparently;
  2. collected and recorded for specified, explicit, and legitimate purposes and subsequently processed in ways compatible with those purposes;
  3. adequate, relevant, and limited to what is necessary for the purposes for which they are processed;
  4. accurate and, where necessary, kept up to date;
  5. processed in a manner that ensures an adequate level of security;
  6. stored in a form that permits identification of the Data Subject for no longer than necessary to achieve the purposes for which they are processed.

Processing will be carried out using manual, IT, and telematic tools with organizational and processing logic strictly related to the purposes themselves and in any case in a manner that ensures the security, integrity, and confidentiality of the data in accordance with the measures provided by applicable law.

Data Communication

Personal data may be communicated to authorized processors, as well as to external data processors appointed by the Data Controller (the full list of external processors is available from the Data Controller), responsible for managing the purposes described above. With the Data Subject’s consent, data may also be communicated to third-party sponsors and/or commercial partners of the Data Controller for the purposes indicated in Section 3 of “Purposes of Processing.” Data may also be communicated to other subjects acting as independent data controllers.

Data Disclosure

Personal data will not be publicly disclosed.

Transfer of Data Abroad

For the purposes described above, personal data will be processed within the European Economic Area (EEA). If transferred to third countries, in the absence of an adequacy decision by the European Commission, applicable regulations on the transfer of personal data to third countries, such as the Standard Contractual Clauses provided by the European Commission, will be respected.

Data Retention

Generally, personal data will be retained for the time strictly necessary to achieve the purposes for which they were collected and processed, including any retention period required by applicable law, and in any case for a maximum of 10 years from the termination of the relationship with the Data Controller, and for a maximum of 2 years for purposes requiring consent, except where the Data Controller needs to defend a legal right.

Data Subject Rights

Under Articles 15 to 21 of EU Regulation 679/2016 and national law, the Data Subject may, within the limits and conditions provided by law, exercise the following rights:

  • Request confirmation of the existence of personal data concerning them (right of access);
  • Know the source of the data;
  • Receive intelligible communication of the data;
  • Obtain information about the logic, methods, and purposes of processing;
  • Request updates, corrections, additions, deletion, anonymization, or blocking of unlawfully processed data, including data no longer necessary for the purposes for which they were collected;
  • File a complaint with the supervisory authority (Data Protection Authority);
  • Exercise all other rights recognized under current legislation.

Requests to exercise these rights can be made informally by contacting the Data Controller at the addresses indicated above.

Exercise of Rights

To exercise their rights, users may send a request to the Data Controller via email: info@hoteltrovatore.com

Cookies

This site uses only technical cookies necessary for operation and navigation.
No profiling or third-party cookies are used.
For more information, see the Cookie Policy.

Updates

The Data Controller reserves the right to modify this information at any time. Changes will be published on this page with the date of the update indicated.

Last updated: 31/10/2025