Privacy policy
PURPOSE OF THIS POLICY
This Privacy Policy contains important information about the personal data collected when you visit this Website, whether as a registered or unregistered user, and explains how such data are used. Where applicable, it also describes how data provided by the user or collected during service provision by ALBERGO RISTORANTE IL GIARDINO DAFELICIN SAS DI ROCCA F.D. & C. (hereafter “the Company”) are processed, including data gathered through other interactions with the Company. This document complements any other privacy information provided in those contexts.
This document includes important information about:
- PERSONAL DATA PROCESSING
- PERSONAL DATA COLLECTED
- PURPOSES OF PERSONAL DATA PROCESSING
- DISCLOSURE OF PERSONAL DATA
- CHILDREN’S PRIVACY
- STORAGE, ACCESS AND TRANSFER OF PERSONAL DATA
- SECURITY AND CONFIDENTIALITY OF PERSONAL DATA
- DATA ACCESS RIGHTS – MANAGING CHOICES
- DATA RETENTION
- LINKS, ADVERTISERS, SPONSORS AND ADVERTISING
- DATA CONTROLLER – COMPANY CONTACTS
- POLICY UPDATES – COMMUNICATIONS
ACCEPTANCE
By visiting the Website, using its services or interacting with the Company, the user confirms to have read and understood this Privacy Policy and agrees that the Company may collect, use, store, transfer, and disclose personal data in accordance with this Policy. Unless already registered, the Company may request explicit consent (e.g., by ticking a box) if required by applicable law. If you do not agree with the terms of this Privacy Policy, please refrain from using the Website, creating an account, or otherwise submitting any personal data.
1. PERSONAL DATA PROCESSING
“Personal Data” refers to any information that allows the Company to identify a user (or a third party whose data is provided), either directly or indirectly, including data related to service purchases or voluntarily shared through the Website or directly at our premises. Data processing is carried out in accordance with EU Regulation 2016/679 (GDPR) and any relevant national legislation.
2. PERSONAL DATA COLLECTED
Data sources
The Company collects personal data only when voluntarily provided by the user, including:
– submitting an enquiry via the Website;
– making a search on the Website;
– contacting the Company via comments or questions;
– subscribing to email newsletters or service updates;
– confirming a reservation;
– providing contact data such as a mobile number to receive the privacy form by email;
– exchanging emails, SMS or other messages with the Company.
If users provide personal data of third parties (e.g., family members, other guests), they are responsible for ensuring that these third parties are informed and have consented as required.
Data categories
Depending on the purpose, the Company may collect and use:
- Personal details (name, surname, gender, date of birth, nationality, etc.)
- Contact details (address, email, phone, mobile, fax)
- Payment details (card data, passport number if needed for tax/AML reasons)
- Service-related data (purchases, VAT number, complaints, refunds)
- Preferences and profile (purchase habits, chosen room type, profession, education, lifestyle)
- Family information (marital status, anniversary dates, number of children, etc.)
3. PURPOSES OF PERSONAL DATA PROCESSING
Depending on user interaction, personal data are used to:
– Manage services requested, including administrative and accounting activities, warranties, fraud prevention, and customer communication
– Comply with legal obligations (e.g. AML laws, EU regulations)
– Handle specific service requests and newsletter subscriptions
– Manage customer relationships (if registered):
i) Send promotional offers and newsletters
ii) Conduct market analysis and surveys
iii) Create user profiles for personalised services and experiences
iv) Providing personal data is necessary for the above purposes. Failure to provide such data may prevent service provision but will not affect website browsing or general access.
4. DISCLOSURE OF PERSONAL DATA
Personal data may be shared with:
– Affiliated companies, distributors and service providers acting under instruction
– Third parties for analytics, marketing, hosting, technical and organisational services
– Payment service providers and fraud control agencies (as independent data controllers)
– Legal entities in the event of mergers, acquisitions or corporate restructuring
– Public authorities where legally required (court orders, police requests, etc.)
5. CHILDREN’S PRIVACY
This Website and the Company’s services are not intended for individuals under 18. No data are knowingly collected from minors. If such data are found, they will be deleted. Users under 18 are asked to refrain from using the Website and should request an adult to complete bookings.
6. STORAGE, ACCESS AND TRANSFER OF PERSONAL DATA
Data processing occurs mainly via electronic systems, with access restricted to authorised staff trained in data protection and confidentiality. Systems include access controls and security layers.
7. SECURITY AND CONFIDENTIALITY OF PERSONAL DATA
Appropriate technical and organisational measures have been implemented to protect personal data from loss, unauthorised access or disclosure. However, no system is completely secure. Users are encouraged to:
– Keep software and antivirus up to date
– Protect their login credentials
– Regularly change their passwords
In the event of a suspected data breach, the Company will notify affected users as required by law.
8. DATA ACCESS RIGHTS – MANAGING CHOICES
Users have the right to:
– Access their data
– Correct or update their data
– Request data deletion
– Object to processing or withdraw consent
– Request data portability
To exercise these rights, users may contact the Company at: [email protected] or by post to the Company’s registered address.
9. DATA RETENTION
Data will be retained for the duration of the service relationship or as required by legal and regulatory obligations (e.g. 10 years for tax/accounting purposes). Marketing and profiling data will be kept only as long as allowed by law and then permanently anonymised or deleted.
10. LINKS, ADVERTISERS, SPONSORS AND ADVERTISING
The Website may contain links to other Company-owned or third-party websites. Personal data shared on such websites are subject to their own privacy policies, and the Company is not responsible for their data handling practices.
11. DATA CONTROLLER – COMPANY CONTACTS
The data controller is Albergo Ristorante Il Giardino Da Felicin Sas Di Rocca F.D. & C., Via Vallada 18, Monforte d’Alba (CN), Italy.
This applies to data collected at:
– Felicin - Villa Stella
– Felicin - Ristorante Albergo Dimora Storica
– Felicin - Palazzo Boeri Panoramic Suites
– Felicin - Dimora del centro
– Website www.felicin.it
For queries or to exercise your rights, contact: [email protected]
12. POLICY UPDATES – COMMUNICATIONS
The Company reserves the right to amend this Privacy Policy at any time. Changes will be published on this page and may be notified via email or website notices, where appropriate. Continued use of the Website after changes constitutes acceptance of the updated policy.
This Privacy Policy contains important information about the personal data collected when you visit this Website, whether as a registered or unregistered user, and explains how such data are used. Where applicable, it also describes how data provided by the user or collected during service provision by ALBERGO RISTORANTE IL GIARDINO DAFELICIN SAS DI ROCCA F.D. & C. (hereafter “the Company”) are processed, including data gathered through other interactions with the Company. This document complements any other privacy information provided in those contexts.
This document includes important information about:
- PERSONAL DATA PROCESSING
- PERSONAL DATA COLLECTED
- PURPOSES OF PERSONAL DATA PROCESSING
- DISCLOSURE OF PERSONAL DATA
- CHILDREN’S PRIVACY
- STORAGE, ACCESS AND TRANSFER OF PERSONAL DATA
- SECURITY AND CONFIDENTIALITY OF PERSONAL DATA
- DATA ACCESS RIGHTS – MANAGING CHOICES
- DATA RETENTION
- LINKS, ADVERTISERS, SPONSORS AND ADVERTISING
- DATA CONTROLLER – COMPANY CONTACTS
- POLICY UPDATES – COMMUNICATIONS
ACCEPTANCE
By visiting the Website, using its services or interacting with the Company, the user confirms to have read and understood this Privacy Policy and agrees that the Company may collect, use, store, transfer, and disclose personal data in accordance with this Policy. Unless already registered, the Company may request explicit consent (e.g., by ticking a box) if required by applicable law. If you do not agree with the terms of this Privacy Policy, please refrain from using the Website, creating an account, or otherwise submitting any personal data.
1. PERSONAL DATA PROCESSING
“Personal Data” refers to any information that allows the Company to identify a user (or a third party whose data is provided), either directly or indirectly, including data related to service purchases or voluntarily shared through the Website or directly at our premises. Data processing is carried out in accordance with EU Regulation 2016/679 (GDPR) and any relevant national legislation.
2. PERSONAL DATA COLLECTED
Data sources
The Company collects personal data only when voluntarily provided by the user, including:
– submitting an enquiry via the Website;
– making a search on the Website;
– contacting the Company via comments or questions;
– subscribing to email newsletters or service updates;
– confirming a reservation;
– providing contact data such as a mobile number to receive the privacy form by email;
– exchanging emails, SMS or other messages with the Company.
If users provide personal data of third parties (e.g., family members, other guests), they are responsible for ensuring that these third parties are informed and have consented as required.
Data categories
Depending on the purpose, the Company may collect and use:
- Personal details (name, surname, gender, date of birth, nationality, etc.)
- Contact details (address, email, phone, mobile, fax)
- Payment details (card data, passport number if needed for tax/AML reasons)
- Service-related data (purchases, VAT number, complaints, refunds)
- Preferences and profile (purchase habits, chosen room type, profession, education, lifestyle)
- Family information (marital status, anniversary dates, number of children, etc.)
3. PURPOSES OF PERSONAL DATA PROCESSING
Depending on user interaction, personal data are used to:
– Manage services requested, including administrative and accounting activities, warranties, fraud prevention, and customer communication
– Comply with legal obligations (e.g. AML laws, EU regulations)
– Handle specific service requests and newsletter subscriptions
– Manage customer relationships (if registered):
i) Send promotional offers and newsletters
ii) Conduct market analysis and surveys
iii) Create user profiles for personalised services and experiences
iv) Providing personal data is necessary for the above purposes. Failure to provide such data may prevent service provision but will not affect website browsing or general access.
4. DISCLOSURE OF PERSONAL DATA
Personal data may be shared with:
– Affiliated companies, distributors and service providers acting under instruction
– Third parties for analytics, marketing, hosting, technical and organisational services
– Payment service providers and fraud control agencies (as independent data controllers)
– Legal entities in the event of mergers, acquisitions or corporate restructuring
– Public authorities where legally required (court orders, police requests, etc.)
5. CHILDREN’S PRIVACY
This Website and the Company’s services are not intended for individuals under 18. No data are knowingly collected from minors. If such data are found, they will be deleted. Users under 18 are asked to refrain from using the Website and should request an adult to complete bookings.
6. STORAGE, ACCESS AND TRANSFER OF PERSONAL DATA
Data processing occurs mainly via electronic systems, with access restricted to authorised staff trained in data protection and confidentiality. Systems include access controls and security layers.
7. SECURITY AND CONFIDENTIALITY OF PERSONAL DATA
Appropriate technical and organisational measures have been implemented to protect personal data from loss, unauthorised access or disclosure. However, no system is completely secure. Users are encouraged to:
– Keep software and antivirus up to date
– Protect their login credentials
– Regularly change their passwords
In the event of a suspected data breach, the Company will notify affected users as required by law.
8. DATA ACCESS RIGHTS – MANAGING CHOICES
Users have the right to:
– Access their data
– Correct or update their data
– Request data deletion
– Object to processing or withdraw consent
– Request data portability
To exercise these rights, users may contact the Company at: [email protected] or by post to the Company’s registered address.
9. DATA RETENTION
Data will be retained for the duration of the service relationship or as required by legal and regulatory obligations (e.g. 10 years for tax/accounting purposes). Marketing and profiling data will be kept only as long as allowed by law and then permanently anonymised or deleted.
10. LINKS, ADVERTISERS, SPONSORS AND ADVERTISING
The Website may contain links to other Company-owned or third-party websites. Personal data shared on such websites are subject to their own privacy policies, and the Company is not responsible for their data handling practices.
11. DATA CONTROLLER – COMPANY CONTACTS
The data controller is Albergo Ristorante Il Giardino Da Felicin Sas Di Rocca F.D. & C., Via Vallada 18, Monforte d’Alba (CN), Italy.
This applies to data collected at:
– Felicin - Villa Stella
– Felicin - Ristorante Albergo Dimora Storica
– Felicin - Palazzo Boeri Panoramic Suites
– Felicin - Dimora del centro
– Website www.felicin.it
For queries or to exercise your rights, contact: [email protected]
12. POLICY UPDATES – COMMUNICATIONS
The Company reserves the right to amend this Privacy Policy at any time. Changes will be published on this page and may be notified via email or website notices, where appropriate. Continued use of the Website after changes constitutes acceptance of the updated policy.