The Data Controller is SIALM – SOCIETA’ ITALIANA PER GLI ALBERGHI DEL LAGO MAGGIORE S.P.A. in P.zza Castello, 9 – 20121 Milano (MI), C.F. – P.I. 09517030152, in person of G.L. Mariani (also state the name of any Data Processor)
Types of data processed
The computer systems and software procedures used to operate this website automatically acquire, in their regular operation, some personal data which are implicitly transmitted when using internet communication protocols.
This is information that is not collected in order to be associated with identified data subjects but which by its nature could, through association and processing with data held by third parties, allow users to be identified.
This category includes data relating to IP addresses, domain names of the computers used by users connecting to the website, URI (Uniform Resource Identifier) addresses of the resources requested, time of the request, method used to submit the request to the server, size of the file obtained in reply, numerical code indicating the status of the reply provided by the server (successful, error, etc.) and other parameters relating to the user’s operating system and computer environment.
These data are used only to obtain anonymous statistical information on use of the website and to check that it is working properly and are deleted immediately after processing. The data could be used to ascertain liability in the event of hypothetical computer crimes against the website: without prejudice to this possibility, at present data on web contacts are not held for any longer than 365 days.
Data provided voluntarily by the user
The recording of personal data, including sensitive data, on the appropriate page of the website, for the purposes of requesting services, accessing the Website’s reserved areas, sending of the newsletter, as well as the optional, explicit and voluntary sending of emails to the addresses specified in this website, involves subsequent acquisition of the sender’s address, required in order to reply to the requests, and of any other personal data entered.
Specific summary information shall be progressively provided or visualised in the pages of the website to be used for special on-demand services.
No personal data are intentionally acquired by the website.
The use of session cookies (which are not persistently stored on the user’s computer and are deleted when the browser is closed) is strictly limited to the transmission of session identifiers (made up of random numbers generated by the server) required to allow safe and efficient exploration of the website.
The session cookies used in this website avoid the use of other computer technology that could potentially compromise the user’s confidentiality when browsing and do not allow the acquisition of personal data that identifies the user.
Optional disclosure of data
Notwithstanding the information provided on browsing data, the user is free to provide the personal data stated in the service request forms, or stated in the contacts with our offices to request the sending of the newsletter, of informative material and of other communications.
Failure to provide said data may mean that it is impossible to process the request.
Personal data are processed with automated and manual tools for the time strictly necessary to achieve the purposes for which they were collected.
Specific safety measures are observed to prevent the loss of data, unlawful or improper use and unauthorised accesses.
Data subjects’ rights
The data subjects are entitled to exercise the following rights at any time: access to, accuracy check, updating, rectification, integration, oblivion, processing limitation, notification, portability and opposition.
The data subjects also have the right to request the erasure, the rendering into anonymous form or the block of the data processed in violation of the law, as well as to oppose in any case for legitimate reasons their processing.
The requests should be addressed to the following email address: email@example.com