PRIVACY NOTICE FOR THE ONLINE CUSTOMER/USER

This page is intended to inform users of this site about how it manages the processing of their personal data, as required by Articles 13 and 14 of European Regulation No. 679/2016 – General Data Protection Regulation. This policy also fully complies with Recommendation No. 2/2001, which the European data protection authorities, gathered in the Working Party established by Article 29 of Directive No. 95/46/EC, adopted on May 17, 2001 to identify minimum requirements for the collection of personal data online and, in particular, the methods, timing, and nature of the information that data controllers must provide to users when they connect to web pages, regardless of the purpose of the connection. Visiting this site may result in the processing of data relating to identified or identifiable individuals.

Please note that consent mechanisms will be clear, brief, and easily understandable. If the original conditions for which consent was requested change, for example, if the purpose of data processing changes, further consent will be required pursuant to European Regulation No. 679/2016. Furthermore, all consent forms collected will be documented separately from any other company documents.

Your personal data will not be disclosed, and you may exercise the rights set forth in Articles 11-20 of European Regulation no. 679/2016 by writing to Hotel Cavour srl, Via Fatebenefratelli, 21 – Milan, VAT no. 00704970151, info@hotelcavour.it.

The data controller is Hotel Cavour srl, with registered office in Via Fatebenefratelli, 21 – Milan.

The processing operations connected to the web services of this site take place at the aforementioned headquarters and at the headquarters of the site's service provider and are handled only by company personnel, or by any persons in charge of occasional maintenance operations.

All data acquired through the online services offered by Hotel Cavour srl will not be communicated or disclosed to other parties without the user's express consent. Personal data provided by users who request informational materials (information requests, etc.) is used solely to perform the requested service and is disclosed to third parties only if necessary for that purpose.

Types of data that can be acquired

Browsing data

Our computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the use of Internet communication protocols.

The above information is not collected specifically to be associated with identified data subjects, but given its nature, it could, through processing and association with data held by third parties, allow users to be identified.

This category of data includes the IP addresses or domain names of the computers used by users connecting to the site, the URI (Uniform Resource Identifier) addresses of the requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in response, the numerical code indicating the status of the response given by the server (successful, error, etc.) and other parameters relating to the operating system and the user's IT environment.

This data is used solely to obtain anonymous statistical information on the use of the site and to monitor its proper functioning. The data may be used to ascertain liability in the event of hypothetical computer crimes against the site and may be disclosed to judicial authorities upon their explicit request.

Data provided voluntarily by the user

The optional, explicit, and voluntary sending of emails to the addresses listed on this site entails the subsequent acquisition of the sender's address, which is necessary to respond to requests, as well as any other personal data included in the message, as well as any data collected through the data collection forms dedicated to the online Services.

Personal data is processed using automated tools for the time strictly necessary to achieve the purposes for which it was collected.

Specific security measures are observed to prevent data loss, illicit or incorrect use, and unauthorized access.