This page contains information concerning the administration of the website, and in particular with regard to the processing of user data. It consists of a privacy notice required by the legislative authority pursuant to Article 13 of European Regulation 679/2016 – on the protection of natural persons with regard to the processing of personal data – hereafter referred to as the GDPR – for all individuals visiting the website
The privacy notice applies only to the website and not to any other websites that may be accessed via links appearing on the site.
Furthermore, this information notice corresponds to Recommendation 2/2001 adopted 17 May 2001 – Minimum requirements for the online collection of personal data – by the Working Party established in accordance with Article 29, Directive 95/46/EU of the European Parliament on the Protection of individuals with regard to the processing of personal data.
The data controller warrants, in accordance with the statutory provisions, that personal data will be processed taking into account the rights and basic freedoms, and the dignity of the party concerned, and in all cases in accordance with the law and with due regard for the protection of privacy. In particular, data will be processed in accordance with the principles of legality, good faith, transparency, purpose limitation, data minimisation and storage limitation, integrity, accuracy and confidentiality.
As a result of possible changes to the statutory provisions, or the implementation of new technologies on the website that might affect current processing methods, as well as organisational changes to the privacy structure of the data controller, it may be necessary to revise and update this information.
Specific information notices regarding certain services or data processing may be published on the corresponding pages of this website or communicated directly.
Rights owner of the processed data
The party responsible for data processing (“Titolare del trattamento”) is Villa Dorothee – Schennastr. 63 – 39017 – Schenna (BZ) – Südtirol, T. +39 339 5406168 – F. +39 0473 943893 – IT01700590217 – www.villadorothee.com – firstname.lastname@example.org in the person of its President and legal representative pro tempore.
You can contact the DPO (data protection officer) by sending an e-mail to: email@example.com
Type of data processed
“Personal data” are all information referring to an identified or identifiable natural person, who may be recognised either directly or indirectly, in particular by means of correlation to an identifier, such as a name, an identification number, location data, an online user name or to one or more specific characteristics that are an expression of the physical, physiological, genetic, psychological, economic, cultural or social identity of this natural person.
Navigation data, data supplied voluntarily by users of /visitors to the website, and cookies and similar technologies are among the type of personal data that are processed.
- Navigation Data
The information systems and software procedures utilised by this internet presence collect some personal data as part of their normal function, the transmission of which is technically necessary – using the Transmission Control Protocol – to surf the internet at all. This is information that is not collected in order to identify the relevant user, although – by processing and assigning the data of third parties – based on the nature of the data it would be possible (e.g. IP address, domain name of the computer used to visit the site). These data are used solely to obtain anonymous, statistical information about visits to the site and whether it is functioning correctly. The data could be used, in the event of damage being caused deliberately to the site, to determine the initiator, and would be saved in this case. These data will not be forwarded or disseminated; if requested, they must be made available to the postal police, the court authorities and the judicial police. Navigation data may be used to determine liability in cases of IT offences to the disadvantage of the website.
- Voluntary nature of data provision
The optional, explicit and voluntary sending of electronic mail and/or transmission of personal data entails the acquisition of the address and/or other possible personal data of the sender that is needed in order to respond or to perform the required service. A failure to provide this voluntary data could lead to the desired result not being achieved. This data can only be forwarded to third parties if it is required for the purpose of handling enquiries. The forwarding of data to third parties for marketing and profiling purposes is not permissible.
- Cookies and similar technologies
What are cookies?
Cookies are small strings of text that websites visited by a user send to their terminal, where they are stored and then retransmitted to the same sites the next time the same user visits that site. For the purposes here, the cookies are separated into technical and profiling, depending on the function for which they are used, and into first party and third party cookies, depending on the subject that installs them.
- Technical cookies
Technical cookies are used for the sole purpose of transmitting a communication on an electronic communications network or, as strictly necessary, for sending to the provider of a service of a company the information explicitly requested by the subscriber or user to deliver that service” (see art. 122 paragraph 1 of the Italian privacy code). Cookies can be defined as browsing or session cookies (that guarantee normal browsing and use of the web site), cookie analytics (assimilated with technical cookies where they are used directly by the site operator to collect information, in aggregate form, on the number of users and on how they visit the same site) and functionality cookies (these allow the user to navigating according to a set of criteria, such as language, in order to improve the service provided to the same).
- Profiling cookies
Profiling cookies are used to send advertising messages in line with the preferences expressed by the user in the context of browsing the net.
- Third-party cookies
Taking account of the different subject that installs the cookies on the user’s terminal, depending on whether it involves the same operator of the site that the user is visiting, or the operator of a different site that installs the cookies through the first one, a definition is made of either first-party cookies or third-party cookies.
In order to offer an optimal browsing experience the visited website could make use of all or part of the following own and/or third parties, cookies
- Session cookies (local)
It is a technical cookie with a memory function on the user’s decisions made within the website which is erased once the user exits. In an E-commerce website this cookie is also used to store the products added to the cart.
- Google Analytics (third-party)
- Facebook (third-party)
These cookies are used by the site to study and improve its advertising, with remarketing actions, in order to send the user messages in line with their interests. More information, also in relation to the methods through which it is possible to disable these cookies, can be found at the following link: https://www.facebook.com/help/cookies/ To select/deselect the cookie click here http://www.youronlinechoices.com/uk/your-ad-choices
- Adwords (third-party)
These cookies are used by the site to study and improve its advertising, with remarketing actions, in order to send the user messages in line with their interests. More information, also in relation to the methods through which it is possible to disable these cookies, can be found at the following link: https://support.google.com/adwords/answer/24077857hMt To select/deselect the cookie click here http://www.google.com/settings/ads
How to disable, remove or block cookies?
The visited website allows the selection/deselection of individual cookies in the manner illustrated below but please be aware that, in case of deactivation, full enjoyment of the site may not be guaranteed.
- Open Firefox.
- At the top of the Firefox window, click on the ‘Firefox’ button and then select ‘Options’.
- Select the ‘Privacy’ panel.
- Set ‘Firefox will:’ to ‘Use custom settings for history’. Uncheck ‘Accept cookies from sites’ to disable cookies.
- Click ‘OK’ to close the Options window.
- Open Internet Explorer.
- Click the ‘Tools’ button, and then click ‘Internet Options’.
- Click the ‘Privacy’ tab, and then, under ‘Settings’ move the slider to the top to block all cookies, and then click ‘OK’.
- Open Google Chrome.
- Click on the tool icon.
- Select Settings’.
- Near the bottom of the page, click ‘Show advanced settings’.
- In the ‘Privacy’ section, click ‘Content settings’.
- To disable cookies, select ‘Block sites from setting any data’.
- Open Safari.
- Choose ‘Preferences’ in the toolbar and then click ‘Privacy’ (You can find the tool bar which looks like a gearwheel, above and on the right in the Safari window.)
- In the ‘Block cookies’ section, you can specify if and when Safari should accept cookies from websites To see an explanation of the options, click the Help button (question mark)
- If you want to see which websites store cookies on your computer, click Details.
Purpose of and legal basis for the processing of data
The personal details transmitted by the user via the website are processed for the following purposes:
- statistical analysis/research on the basis of aggregated or anonymised data, without the user being identified, in order to be able to assess the functions of the website and its user-friendliness and interest;
- completion of data collection forms for the purpose of receiving the newsletter or general messages by email;
- the performance of a contract, to which the data subject is party, or for the performance of pre-contractual measures at the request of the person concerned;
- in order to fulfil a legal obligation to which the website is subject;
- to justify, assert or defend against legal claims or, in the case of actions taken by the courts, in the context of their judicial activities.
The lawfulness of the processing of personal data (legal basis) is subject to the conditions set out in art. 6 paragraph 1 of the 2016/679 European Regulation.
Mandatory or voluntary communication of data and possible consequences of a failure to provide it
Personal data is communicated on a voluntary basis; however, refusing to provide it may mean that it is impossible to deal with an enquiry or a legal obligation, or that the website may not function fully.
Recipient(s) of the personal data
The personal data may, in addition to the party responsible for data processing (‘titolare del trattamento’), be processed by an order processor or by representatives / persons who have access to personal data and who are subordinate to the controller or order processor, who have been appointed and adequately trained for this purpose.
Personal data may be communicated to third parties for the purposes of handling enquiries, including for the sending of emails, analysing the functional capability of the website, executing legal obligations or with prior consent.
Personal data shall only be retained for the time that is absolutely essential for the fulfilment of the above mentioned purposes and compliance with the associated statutory requirements. Once this period has elapsed, the data shall be destroyed or anonymised.
Existence of automated decision-making
No decision-making takes place based solely on the automated processing of personal data that could produce an adverse legal effect on the data subject or have a similarly significant negative impact upon them.
Rights of the data subject
The data subject has the right to access their personal data, to have that data corrected or deleted, the right to limit its processing, the right of objection, the right to data transmission, to complain to the responsible national regulatory authority ( Garante della Privacy: www.garanteprivacy.it), provided that an infringement in the processing of personal data is suspected, plus all other rights recognised by the prevailing statutes (Articles 15 et seq GDPR). If approval has been granted for the processing of personal data, then the data subject has the right to withdraw this approval.
Links to other websites
The website may contain links to other websites that are not administered by the owner and with which the owner has no joint proprietorship of personal data. The owner shall not be liable for the content and security measures used by these websites, and expressly rejects any liability.
Art. 37, paragraph 2 of the Regulation (EU) 2016/679 of the European Parlament and of the Council of 27 April 2016 provides the obligation for public authorities or public bodies to designate a Data Protection Officer.