PRIVACY POLICY  (UE) 2016/679

The Data Controller is
Trattoria La Gargotta S.r.l. – p.i. 05008880485 – Via Vicchio e Paterno 19, Bagno a Ripoli FI – info@trattorialagargotta.com (hereinafter, for brevity, the Owner) respects the privacy of all individuals who visit its site and any information collected is used primarily to respond to requests that are forwarded and secondly to improve the service provided.

 

Types of Data collected

The details of the data that could be collected and processed by the owner are listed below:
Personal data (name, surname, telephone, e-mail, tax code, date of birth, residence, company details, name of guests and beneficiaries);

Method and place of treatment of the collected data
Such data will be processed by the Owner with the sole purpose of carrying out the requested service or one or more operations requested, specifically:

1) Provision of information/clarification to the user on the services provided
2) Online reservation of the on-site catering service.
3) Information to the User during maintenance on the site or any inefficiencies. 
4) Sending of commercial communications – only with further explicit consent

Methods of treatment
The Holder shall take appropriate security measures to prevent unauthorised access, disclosure, modification or destruction of Personal Data. The processing is carried out by computer and/or telematic means, with organizational methods and with logic strictly related to the purposes indicated. In addition to the Data Controller, in some cases, other parties involved in the organization (administrative, commercial, legal, system administrators) or external parties (such as third party technical service providers, hosting providers, IT companies, communication agencies) may also have access to the Data and may be appointed, if necessary, Data Processors by the Data Controller. The updated list of Managers may always be requested from the Data Controller.

In any case, specific security measures are observed to prevent loss of data, illicit or incorrect use and unauthorized access.

The processing operations connected to the web services of this site take place at the operational headquarters and are only handled by the appointed data processor or by technical personnel instructed and instructed in the processing. No data deriving from the web service is communicated or disseminated.

The processing of the data reported in the previous paragraph is carried out for the purposes listed below:
Purposes related to contractual obligations and pre-contractual measures adopted at the request of the person concerned;
Obligations provided for by laws, regulations and Community legislation, by provisions issued by authorities empowered to do so and by supervisory and control bodies. In particular, fulfilment of fiscal or accounting obligations;
Customer management (communications with the customer; administration of tax receipts, orders, invoices; selections in relation to the needs of the company);

Location
The Data are processed at the operating offices of the Owner and in any other place where the parties involved in the processing are located. For further information, please contact the Data Controller.

Retention period
Data shall be kept for a period not exceeding that necessary to fulfil the purposes for which they are processed. The appropriate retention period is defined in relation to the purposes and compliance with applicable legal obligations or for the legitimate interest of the owner.

The data relating to the navigation logs, if recorded, will be kept by the Owner for a period of 12 months. We also inform you that the data you provide will be processed for the entire duration of the contractual relationship between us and further stored only for the period provided for the fulfillment of legal obligations, unless it is necessary to keep them further to defend or enforce a right or to fulfill any other legal obligations or orders of the authorities.

At the end of the retention period the Personal Data will be deleted. Therefore, upon expiry of this term, the right of access, cancellation, rectification and the right to portability of the Data may no longer be exercised.

User Rights

Users may exercise certain rights with regard to the Data processed by the Owner. In particular, the User has the right to:
The User may revoke his or her consent to the processing of his or her Personal Data as expressed above in accordance with Art. 7 of GDPR 679/2016.
Opposing the processing of your Personal Data. The User may object to the processing of his/her Data when it is carried out on a legal basis other than in accordance with the following provisions