INFORMATION NOTICE ON PROCESSING OF PERSONAL DATA
of the Users visiting the website of the “Bike Tour Sardinia SRL Unipersonale” pursuant to Article 13 of the EU Regulation 2016/679
WHAT IS THIS INFORMATION?
The information provided below describes, as required by the EU Regulation 2016/679, the processing operations performed on the personal data of the Users visiting BTS Active Holidays website
www.biketoursardinia.com
The information provided does not concern other online websites, pages or services that can be accessed via hyperlinks on the above websites but relate to resources outside the “Bike Tour Sardinia SRL Unipersonale” domain.
DATA CONTROLLER
Visiting the website above may result into processing data relating to identified or identified natural persons.
The data controller is: “Bike Tour Sardinia SRL Unipersonale” Via San Gavino 6, 09030 Sardara (SU) Italy E-Mail: [email protected]
WHICH DATA IS PROCESSED
The data processed is the navigation data and the data provided spontaneously by the user.
Navigation data
The computer systems and software procedures used to operate this website acquire, during their normal operation, some personal data whose transmission is implicit in the communication protocols of the Internet. This information is not collected to be associated with identified interested parties, but by their very nature could, through processing and association with data held by third parties, enable users to be identified. This category of data includes IP addresses or domain names of computers used by users connecting to the site, URI (Uniform Resource Identifier) of requested resources, the time of the request, the method used to submit the request to the server, the size of the file obtained in reply, the numerical code indicating the status of the response from the server (successful, error, etc..) and other parameters regarding the operating system and the user’s IT environment.
Data provided directly by the user
This category includes all personal data provided voluntarily by the user (for example, when requesting for information by calling the numbers provided on the website or writing to the e-mail addresses indicated on the site).
Contact form. The User, by entering their data into the contact form, agrees to use them for responding to requests for information, estimate, or any other kind indicated by the form. If you’ve checked the option desiring to receive commercial and promotional communication via our newsletter inherent only to our activities, we will insert you on our mailing list. (Reference to newsletter entry) Personal Data collected: email address, first name and last name.
Newsletter. The User’s email address is added to a list of contacts to which email messages containing information, including commercial and promotional information, relating to this Application may be transmitted. Personal Data collected: email address, first name and last name.
WHAT ARE THE PURPOSES AND LEGAL BASES OF THE PROCESSING?
Navigation data: purposes and legal bases
Navigation data is used only to obtain anonymous statistical information on the use of the website, for site security purposes and to verify its proper functioning and could be used to determine responsibility in the event of possible cyber crimes against the website. The legal basis for the processing of such data is the legitimate interest and the legal obligation in case of requests by the authorities.
For the use of cookies please refer to the cookie policy.
Data provided directly by the user: purposes and legal bases
The personal data provided by the user on an optional basis are used only to process any requests made and to implement legal obligations and/or pre-contractual obligations and/or contractual obligations arising from the relationship about the case in question.
The legal bases for the processing of such data are therefore: a legal obligation and the execution of pre-contractual and contractual obligations.
Newsletter. Personal data submitted by the user through the dedicated form are used to allow the interested party to subscribe to the newsletter and receive regular promotional and commercial information sent to the indicated e-mail address.
The legal basis of the processing of such data is the given consent, as the interested party signs up for a service that involves sending promotional e-mails.
If necessary, the data can also be used on the base of the legitimate interest of the owner to carry out defensive activities or to assert or defend a right in court.
HOW IS THE DATA MANAGED?
The collected data are processed by computer and only residually using paper.
For the processing of data in connection to the web site services the Holder uses servers located within Europe and computer systems located at the headquarters of the owner. The collected data will not be transferred abroad.
They adopted adequate technical and organizational measures and appropriate to ensure an adequate level of security and prevent the loss of data, illegal or incorrect use and unauthorized access.
The data conferred directly by the person concerned are kept for the time strictly necessary to give course to the requests of the person and then canceled, without prejudice to the cases for assignment (against which the data may be maintained for the entire duration of the relationship and in accordance with legal requirements), and the defensive needs (which might make it necessary an additional conservation).
The navigation data is not retained for more than seven days and are deleted immediately after their combination, subject to any need for detection of crime by the judiciary.
Newsletter: Data Management. The newsletter is managed through MailChimp, and your email address is memorized on the MailChimp servers (outside of the European Union) and periodically in the list backups made by the “Bike Tour Sardinia SRL Unipersonale” management. Click here to review the MailChimp privacy policy. When you register or cancel your registration, Mailchimp may send a notification with your data to the Discover Trieste email inbox, managed by Aruba. MailChimp, like every newsletter management platform, provides information about who opens the newsletters and clicks on links; we use this information to understand if the information contained in the newsletter is interesting and act accordingly. You can stop receiving the newsletter at any time through the link available at the bottom of every message. Please note: after you cancel your newsletter subscription, MailChimp nevertheless stores the information of former subscribers to prevent them from being reinserted into the mailing list.
WHAT HAPPENS IF THE DATA IS NOT PROVIDED?
With the exception of the navigation data necessary to implement computer and telematic protocols, the provision of data by users through the various methods made available is free and optional.
However, failure to provide the same data will make it impossible to proceed with requests submitted or which the user intends to submit.
WHO CAN ACCESS THE DATA?
The data will be processed by the Company’s employees and by collaborators authorized by the latter to process the data. The data may also be accessed by consultants or companies providing IT supply and assistance services for purposes related to the activities carried out on behalf of the owner and by consultants for the management of litigation and legal assistance in the event of any disputes that may require their involvement.
The person concerned may request the list of external subjects who carry out their activities as data controllers.
WHAT ARE THE RIGHTS OF THE PERSON CONCERNED?
The interested party can assert his rights as expressed in articles 15, 16, 17, 18, 19, 20, 21 of EU Regulation 2016/679, by contacting the Data Controller, writing to [email protected] .
The law accords the interested party concerned the right to ask the data controller for access to personal data and their rectification or deletion or to limit the processing of personal data concerning him or her or to object to their processing, in addition to the right to data portability.
The interested party is informed that, in the event that he/she considers that the processing of his/her personal information takes place in infringement of the provisions of the GRDP, he/she has the right to lodge a complaint with the Supervisory Authority, as laid down by article 77 of the Regulation or to seize the opportune seats of law (article 79 of the Regulation).